VOMS::Lite - Perl extension for VOMS Attribute certificate creation


  use VOMS::Lite qw( Issue );;
  my $ref=VOMS::Lite::Issue( \@certs, $ReqAttribs );
  my %hash=%$ref;
  my $derAC=%hash{AC};
  my @errors=%hash{Errors};
  my @warnings=%hash{Warnings};
  my @attributes=%hash{Attribs};
  my @targets=%hash{Targets};


VOMS::Lite Provides an Issue routine which reads a configuration file in $ENV{'VOMS_CONFIG_FILE'} or else (if root) /etc/grid-security/voms.config, or else ~/.grid-security/voms.conf.

Active lines in the config file must have the form: ^\s*([a-zA-Z0-9_-]+)\s*=\s*(.+?)\s*$ i.e. $1 = $2 This will set values in the %conf hash (which is exported).

  CertDir    = Path to Trusted CAs
  VOMSCert   = Path to VOMS Issuing Certificate
  VOMSKey    = Path to VOMS Issuing Key
  AttribType = (Database|GridMap)    \     }
    DBUser=username                  }- If AttribType=Database
    DBPass=password                  } DBNAME / - where N is [0-9]+ and unique
  Lifetime   = Lifetime of AC in seconds
  Server     = FQDN of VOMS server (used in AC itself)
  Port       = Port of VOMS server (used in AC itself)

If AttribType=GridMap is specified then the files ~/.grid-security/grid-mapfile.d/VOname or /etc/grid-security/grid-mapfile.d/VOname must exist. VOMS::Lite supports any number of VOs specified this way. The format of a VOMS grid-mapfile is similar to the Globus grid-mapfile:

"/Slash/delimited/DN/of/EEC" Group(, OtherGroup)*(, Role=role)*(, Capability=capability)* ...


%conf by default. Issue if specified.



RFC3281 and the VOMS Attribute Specification document from the OGSA Athuz Working Group of the Open Grid Forum Also see gLite from the EGEE.

This module was originally designed for the SHEBANGS project at The University of Manchester. now

Mailing list,

Mailing list,


Mike Jones <>


Copyright (C) 2006 by Mike Jones

This library is free software; you can redistribute it and/or modify it under the same terms as Perl itself, either Perl version 5.8.3 or, at your option, any later version of Perl 5 you may have available.