[Date Prev][Date Next] [Chronological] [Thread] [Top]

RE: saslAuthz{To|From}

To: "Howard Chu" <hyc@highlandsun.com>
Subject: RE: saslAuthz{To|From}
From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>
Date: Sat, 13 Dec 2003 11:34:41 -0800
Cc: "'Pierangelo Masarati'" <ando@sys-net.it>, "'Randall S. Winchester'" <rsw@sendmail.com>, <openldap-devel@OpenLDAP.org>
In-reply-to: <001b01c3c1ae$452a3490$8601a8c0@CELLO>
References: <3FDB3EE0.7080902@sys-net.it> <001b01c3c1ae$452a3490$8601a8c0@CELLO>

At 11:20 AM 12/13/2003, Howard Chu wrote:
>I think adding a mech specifier is a really bad idea. 

Quite likely.

Maybe we should just have
        u:userid[@realm]

and just imply a mech of "authz" when authzid comes from policy
information.  Otherwise, the mech associated with the authentication
is implied.

(and then just deal with the @realm issues the best we can for now.)

Kurt

Follow-Ups:
- RE: saslAuthz{To|From}
  - From: "Pierangelo Masarati" <ando@sys-net.it>

References:
- Re: saslAuthz{To|From}
  - From: Pierangelo Masarati <ando@sys-net.it>
- RE: saslAuthz{To|From}
  - From: "Howard Chu" <hyc@highlandsun.com>

Prev by Date: Re: saslAuthz{To|From}
Next by Date: RE: saslAuthz{To|From}
Index(es):
- Chronological
- Thread