directory-commits mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From elecha...@apache.org
Subject svn commit: r1443639 - in /directory/site/trunk/content/apacheds: kerberos-ug/1.1.1-realms.mdtext kerberos-ug/1.1.2-principals.mdtext kerberos-user-guide.mdtext
Date Thu, 07 Feb 2013 18:15:17 GMT
Author: elecharny
Date: Thu Feb  7 18:15:17 2013
New Revision: 1443639

URL: http://svn.apache.org/r1443639
Log:
Added a page

Added:
    directory/site/trunk/content/apacheds/kerberos-ug/1.1.2-principals.mdtext
Modified:
    directory/site/trunk/content/apacheds/kerberos-ug/1.1.1-realms.mdtext
    directory/site/trunk/content/apacheds/kerberos-user-guide.mdtext

Modified: directory/site/trunk/content/apacheds/kerberos-ug/1.1.1-realms.mdtext
URL: http://svn.apache.org/viewvc/directory/site/trunk/content/apacheds/kerberos-ug/1.1.1-realms.mdtext?rev=1443639&r1=1443638&r2=1443639&view=diff
==============================================================================
--- directory/site/trunk/content/apacheds/kerberos-ug/1.1.1-realms.mdtext (original)
+++ directory/site/trunk/content/apacheds/kerberos-ug/1.1.1-realms.mdtext Thu Feb  7 18:15:17
2013
@@ -3,8 +3,8 @@ NavPrev: 1.1-introduction.html
 NavPrevText: 1.1 - Introduction
 NavUp: 1.1-introduction.html
 NavUpText: 1.1 - Introduction
-NavNext: 1.1.2-principal.html
-NavNextText: 1.1.2 - Principal
+NavNext: 1.1.2-principals.html
+NavNextText: 1.1.2 - Principals
 Notice: Licensed to the Apache Software Foundation (ASF) under one
     or more contributor license agreements.  See the NOTICE file
     distributed with this work for additional information

Added: directory/site/trunk/content/apacheds/kerberos-ug/1.1.2-principals.mdtext
URL: http://svn.apache.org/viewvc/directory/site/trunk/content/apacheds/kerberos-ug/1.1.2-principals.mdtext?rev=1443639&view=auto
==============================================================================
--- directory/site/trunk/content/apacheds/kerberos-ug/1.1.2-principals.mdtext (added)
+++ directory/site/trunk/content/apacheds/kerberos-ug/1.1.2-principals.mdtext Thu Feb  7 18:15:17
2013
@@ -0,0 +1,60 @@
+Title: 1.1.2 - Principals
+NavPrev: 1.1.1-realms.html
+NavPrevText: 1.1.1 - Realms
+NavUp: 1.1-introduction.html
+NavUpText: 1.1 - Introduction
+NavNext: 1.1.3-keys.html
+NavNextText: 1.1.3 - Keys
+Notice: Licensed to the Apache Software Foundation (ASF) under one
+    or more contributor license agreements.  See the NOTICE file
+    distributed with this work for additional information
+    regarding copyright ownership.  The ASF licenses this file
+    to you under the Apache License, Version 2.0 (the
+    "License"); you may not use this file except in compliance
+    with the License.  You may obtain a copy of the License at
+    .
+    http://www.apache.org/licenses/LICENSE-2.0
+    .
+    Unless required by applicable law or agreed to in writing,
+    software distributed under the License is distributed on an
+    "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
+    KIND, either express or implied.  See the License for the
+    specific language governing permissions and limitations
+    under the License.
+
+# Principals
+
+The Kerberos **Principal** is any entity to which the server can assign a **Ticket**. Typically,
we can think of three kinds of **Principals** :
+
+    * Users
+    * Services
+    * hosts
+
+Each **Principal** is unique in the Kerberos database. This is the way we identify the entity.
+
+A Kerberos **Principal** is a combinaison of three parts :
+    
+    * the name (the primary)
+    * an optional instance
+    * the realm they are associated with
+
+The optional instance is used to provide more than one role to an entity, without having
to create N **Principal** for a single user (an administrator is also a normal user, and it's
good to qualify the user by adding his admin qualificiation in one **Principal** to create
a new and easy to remember **Principal**)
+
+The **Principal** syntax is the following :
+
+    :::text
+    <primary> ['/' <instance>]* '@' <realm>
+
+<DIV class="info" markdown="1">
+For hosts, we use "host" as a primary, and the instances are the hostnames.
+</DIV>
+
+Those are examples of valid **Principals**
+
+    ::test
+    john@APACHE.ORG
+    john/admin@APACHE.ORG
+    host/www.apache.org/apache.org@APACHE.ORG
+    ldap/www.apache.org@APACHE.ORG
+
+

Modified: directory/site/trunk/content/apacheds/kerberos-user-guide.mdtext
URL: http://svn.apache.org/viewvc/directory/site/trunk/content/apacheds/kerberos-user-guide.mdtext?rev=1443639&r1=1443638&r2=1443639&view=diff
==============================================================================
--- directory/site/trunk/content/apacheds/kerberos-user-guide.mdtext (original)
+++ directory/site/trunk/content/apacheds/kerberos-user-guide.mdtext Thu Feb  7 18:15:17 2013
@@ -28,7 +28,7 @@ This guide will describe how it works.
 * [1 - What is Kerberos](kerberos-ug/1-kerberos.html)
     * [1.1 - Introduction](kerberos-ug/1.1-introduction.html)
         * [1.1.1 - Realms](kerberos-ug/1.1.1-realms.html)
-        * [1.1.2 - Principal](kerberos-ug/1.1.2-Principal.html)
+        * [1.1.2 - Principals](kerberos-ug/1.1.2-principals.html)
         * [1.1.3 - Keys](kerberos-ug/1.1.3-keys.html)
         * [1.1.4 - KDC (Key Distribution Center)](kerberos-ug/1.1.4-kdc.html)
         * [1.1.5 - Database](kerberos-ug/1.1.5-database.html)



Mime
View raw message