I’m looking for best practices to configure an HTCondor environment that allows an authenticated user to submit jobs via the SOAP API and execute that job in the environment as the submitting user.
The only documented authentication method I saw for the SOAP API is SSL. Anyone heard of or used something different? Like Kerberos? Assuming a successfully authenticated user to the API, would the API be able to successfully submit the job as the running user?
The HTCondor documentation regarding impersonation was clear and I’ve successfully submitted and executed a job as the submitting user in an environment from a shell. However, it’s unclear whether or not the same behavior is possible through the SOAP API.
Any ideas, thoughts, or use cases would be greatly appreciated.