From 69aaf5c0b4941a4617f1412a2645d696bb3cf4e0 Mon Sep 17 00:00:00 2001 From: Andrei Tsaregorodtsev Date: Tue, 19 Nov 2024 15:58:27 +0100 Subject: [PATCH] fix: several minor fixes in the docs --- src/DIRAC/FrameworkSystem/ConfigTemplate.cfg | 2 +- .../FrameworkSystem/Service/TornadoTokenManagerHandler.py | 6 ++---- 2 files changed, 3 insertions(+), 5 deletions(-) diff --git a/src/DIRAC/FrameworkSystem/ConfigTemplate.cfg b/src/DIRAC/FrameworkSystem/ConfigTemplate.cfg index b017114a699..5abdb0e94e4 100644 --- a/src/DIRAC/FrameworkSystem/ConfigTemplate.cfg +++ b/src/DIRAC/FrameworkSystem/ConfigTemplate.cfg @@ -29,7 +29,7 @@ Services # Section to describe TokenManager system TokenManager { - Port = 9180 + Port = 9181 # Description of rules for access to methods Authorization { diff --git a/src/DIRAC/FrameworkSystem/Service/TornadoTokenManagerHandler.py b/src/DIRAC/FrameworkSystem/Service/TornadoTokenManagerHandler.py index beb323bc491..b010f0fbb2d 100644 --- a/src/DIRAC/FrameworkSystem/Service/TornadoTokenManagerHandler.py +++ b/src/DIRAC/FrameworkSystem/Service/TornadoTokenManagerHandler.py @@ -1,8 +1,6 @@ -"""TokenManager service is a HTTPs-exposed service responsible for token management, namely storing, updating, +"""TornadoTokenManager service is a HTTPs-exposed service responsible for token management, namely storing, updating, requesting new tokens for DIRAC components that have the appropriate permissions. -.. note:: As a newly created service, it will not support the old DIPS protocol, which is living to its age. - .. literalinclude:: ../ConfigTemplate.cfg :start-after: ##BEGIN TokenManager: :end-before: ##END @@ -17,7 +15,7 @@ :alt: https://dirac.readthedocs.io/en/integration/_images/TokenManager_getToken.png (source https://github.com/TaykYoku/DIRACIMGS/raw/main/TokenManagerService_getToken.ai) The client has a mechanism for caching the received tokens. -This helps reduce the number of requests to both the service and the Identity Provider (IdP). +This helps reducing the number of requests to both the service and the Identity Provider (IdP). If the client has a valid **access token** in the cache, it is used until it expires. After that you need to update. The client can update it independently if on the server where it is in ``dirac.cfg``