directory-kerby mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Zheng, Kai" <kai.zh...@intel.com>
Subject RE: AdToken usage ?
Date Mon, 04 Jan 2016 05:18:07 GMT
Not yet. There were two PDFs in the docs folder that document about it. They're still drafts
but we're still pushing on that.
Review comments are welcome. Thanks.

Regards,
Kai

-----Original Message-----
From: Emmanuel Lécharny [mailto:elecharny@gmail.com] 
Sent: Thursday, December 31, 2015 4:38 PM
To: kerby@directory.apache.org
Subject: Re: AdToken usage ?

Le 31/12/15 04:19, Zheng, Kai a écrit :
> AD-TOKEN is an authorization data that wraps a token. When ticket is issued to honor
a request with token credential, an authorization data in the type can be created and put
into the ticket. The token or the token derivation can be wrapped in the data, so in application
side, the authz data and the token can be queried and retrieved to enforce fine-grained authorization
control using the richful token attributes.

Is there a RFC that describes it ?

Mime
View raw message