[4971] in Kerberos

home help back first fref pref prev next nref lref last post

Stub GSS-API implementations (was Re: GSS-API details)

daemon@ATHENA.MIT.EDU (Jonathan I. Kamens)
Thu Apr 13 17:56:47 1995

To: kerberos@MIT.EDU
Date: 13 Apr 1995 15:46:05 GMT
From: jik@cam.ov.com (Jonathan I. Kamens)

In article <199504131425.KAA29293@gza-client1.cam.ov.com>, Paul.Wernick@cl.cam.ac.uk (Paul Wernick) writes:
|> I want to implement a non-working stub version (returning probably
|> hard-coded dummy values) of a GSS-API-compliant authentication system
|> to allow me to develop systems using such facitilies without the need
|> to get a real authentication system working.

As an alternative to this, you might consider OpenVision's OpenV*Secure
product, which comes with a "trust" GSS-API mechanism -- any client is allowed
to acquire credentials as anyone, and the identity returned to the server is
always whatever identity the client specified.

(No, we don't actually use this mechanism in the product :-); it's just there
for testing purposes and for developers who want to use UNIX authentication in
conjunction with GSS-API as part of a migration path to real GSS-API
authentication.)

-- 
Jonathan Kamens  |  OpenVision Technologies, Inc.  |   jik@cam.ov.com

home help back first fref pref prev next nref lref last post