[Date Prev][Date Next] [Chronological] [Thread] [Top]

(ITS#6523) idassert marks proxyAuthz as non-critical

Full_Name: Pierangelo Masarati
Version: HEAD/re24
OS: irrelevant
URL: ftp://ftp.openldap.org/incoming/
Submission from: (NULL) (
Submitted by: ando

RFC 4370 requires the criticality flag to be present and set to TRUE.  I also
note that slapd by default tolerates this behavior, and provides the disallow
proxy_authz_non_critical directive to behave in strict accordance with RFC

I've introduced a corresponding proxy-authz-[non-]critical flag in idassert.