[23698] in Kerberos
Re: Question about krb5_kuserok() and .k5login
daemon@ATHENA.MIT.EDU (Matthew N. Andrews)
Mon Apr 11 20:08:51 2005
Message-ID: <425B1158.2090106@slackers.net>
Date: Mon, 11 Apr 2005 17:07:52 -0700
From: "Matthew N. Andrews" <matt@slackers.net>
MIME-Version: 1.0
To: kerberos@mit.edu
In-Reply-To: <200503031546.j23Fk9EV009132@server1.hurderos.com>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
Errors-To: kerberos-bounces@mit.edu
--- usefull discussion cut ---
>
> As long as we are headed in that direction would it make sense to the
> Kerberos community for us to begin looking at the issues that would
> need to be addressed with providing an alternate fulfillment hook for
> krb5_kuserok? Considering the discussions on the topic, extending
> functionality for krb5_kuserok would seem to be an obvious candidate
> for inclusion into the plug-in architecture.
>
> Any comments or suggestions would be welcome.
>
>
I for one would love to see a mechanism for retrieving authorization
data from an ldap directory. some sort of plaintext mapping file support
would also probably be nice(system, not user managed).
-Matt Andrews
>>--Sam
>
>
> Best wishes for a productive end of the week to everyone.
>
> }-- End of excerpt from Sam Hartman
>
> As always,
> Dr. Greg 'GW' Wettstein
> ------------------------------------------------------------------------------
> The Hurderos Project
> Open Identity, Service and Authorization Management
> http://www.hurderos.org
> ________________________________________________
> Kerberos mailing list Kerberos@mit.edu
> https://mailman.mit.edu/mailman/listinfo/kerberos
>
>
________________________________________________
Kerberos mailing list Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos