Practice: token creation

To create a new named token, navigate to the TOKENS tab and click the + button. centered

Practice: token creation

Tokens created during the exercises will be useful in the chapters that follow.

Always give meaningful names to your tokens.

Exercise 1 — invite token

Create a custom invite token to invite your colleague to a group:

  1. First, create a group with a meaningful name e.g. "$yourName_token_practice".
  2. Click on the Create custom token action row.
    • Choose a token Type as Invite.
    • Choose a token Invite type as Invite user to a group.
    • Select the previously created group.
  3. Customize however you like the group privileges to be granted upon consuming the token.
  4. Set the Usage limit to 1.
  5. Add a consumer caveat, whitelisting two of your colleagues — the ones on your left and right.
  6. The newly created token will appear in the sidebar.

  1. Copy the token and pass it to the colleague on your left.
  2. After you receive a token from the colleague on your right:
    • Click on the Consume button in the TOKENS tab.
    • Paste in the received token.
    • Accept the invitation to the group.

 

  1. Now, copy the token and pass it to the colleague on your right.
  2. Try to consume the token received from the colleague on your left. It should fail due to the exceeded usage limit.

Exercise 2 — identity token

Create an identity token confined with some caveats:

  1. Click on the Create custom token action row.
    • Give the token a meaningful name, e.g. "Identity token".
    • Choose a token type as Identity.
  2. Expand the Caveats tab:
    • Set the Expiration date to the end of Friday.
    • Allow token usage for Europe region.
  3. Click on the Create token button.

Exercise 3 — Onezone REST access token

Create a token suitable for Onezone REST access:

  1. Choose the suitable template from the token creation menu.
  2. Examine the caveats that are added by default.

Exercise 4 — read-only access token

Create a read-only access token to one of your spaces, restricted to the Workshops group.

  1. You may use the READ-ONLY DATA ACCESS template.
  2. Add appropriate Consumer and Path caveat, choosing one of your spaces.

Exercise 5 — service/interface access tokens

Create the following tokens, using appropriate templates:

  • Oneclient access
  • Oneprovider REST/CDMI access
  • Onepanel REST access

Stay calm

All the tokens will be used in the chapters that follow.

Token deletion, revocation, and confinement will be practiced too.

Next chapter:

Other data management interfaces (Oneclient, OneS3, OnedataFS, OnedataRestFS) — lecture