directory-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Ersin Er" <ersin...@gmail.com>
Subject Re: [SASL] Authentication Level = Strong
Date Sun, 08 Apr 2007 09:43:15 GMT
Hi Enrique,

This is great news! Is there any test cases that we can build some ACI
tests on top of? (I did not see it in your last commit but maybe I
missed it in your previous commits.)

-- 
Ersin

On 4/8/07, Enrique Rodriguez <enriquer9@gmail.com> wrote:
> Hi, Directory developers,
>
> I committed 'strong' X.501 authenticationLevel support to the SASL
> branch.  So, if you Bind with any of the SASL mechanisms (CRAM-MD5,
> DIGEST-MD5, GSSAPI), your user principal for acquiring LdapContexts
> now has the authenticationLevel set to 'strong'.
>
> I mention this because I'm not sure how to *really* test it.  All the
> current tests pass.  I'm not yet familiar with the ACI subsystem, so
> any pointers to tests that could be used as a starting point to test
> access based on authentication level would be appreciated.
> Alternatively, those of you more familiar with ACI can now work on
> tests that take advantage of this new capability.
>
> Also, besides access control, is there anywhere else the
> authentication level matters?
>
> Enrique
>


-- 
Ersin

Mime
View raw message