Re: GSS_Inquire_name()

To: Luke Howard <lukeh at padl.com>
Subject: Re: GSS_Inquire_name()
From: Nicolas Williams <Nicolas.Williams at sun.com>
Date: Tue, 15 Sep 2009 15:31:21 -0500
Cc: "kitten at ietf.org" <kitten at ietf.org>
Delivered-to: kitten at core3.amsl.com
In-reply-to: <9A980EBA-02D0-430F-A273-285685D61C8B at padl.com>
List-archive: <http://www.ietf.org/mail-archive/web/kitten>
List-help: <mailto:kitten-request@ietf.org?subject=help>
List-id: Common Authentication Technologies - Next Generation <kitten.ietf.org>
List-post: <mailto:kitten@ietf.org>
List-subscribe: <https://www.ietf.org/mailman/listinfo/kitten>, <mailto:kitten-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www.ietf.org/mailman/listinfo/kitten>, <mailto:kitten-request@ietf.org?subject=unsubscribe>
References: <AF1D4318-2678-458E-B6E4-406D8D8F802F at kth.se> <200909140938.26528.leifj at sunet.se> <A261EDF3-32B8-478E-BDC8-98D7CE2D7424 at kth.se> <200909141007.20611.leifj at mnt.se> <9A980EBA-02D0-430F-A273-285685D61C8B at padl.com>
User-agent: Mutt/1.5.7i

On Tue, Sep 15, 2009 at 10:06:47PM +0200, Luke Howard wrote:
> >>Are all names in all or just the one that are not in asserted/
> >>authenticaticated names ?
> >>
> >>Love
> >
> >Do you mean "are there attributes that are neither asserted nor
> >authenticated?"
> 
> As an implementer this left me completely confused too.
> 
> BTW, see:
> 
> 	http://k5wiki.kerberos.org/wiki/Projects/VerifyAuthData
> 
> for actual implementation experience.

I can't quite remember what I had intended :(

I think I must have meant 'all_attrs' to be the union of the other two
purely for conviennce.  But on second (or third) thought I can't see why
an app might care for attrs without caring as to whether they are
authenticated or asserted.

(Also, there is the more general problem of what entity authenticated a
given attribute.  But for now I think GSS_Inquire_name() is plenty good
enough, minus the all_attrs argument anyways.)

Nico
--

Follow-Ups:
- Re: GSS_Inquire_name()
  - From: Love Hörnquist Åstrand

References:
- GSS_Inquire_name()
  - From: Love Hörnquist Åstrand
- Re: GSS_Inquire_name()
  - From: Leif Johansson
- Re: GSS_Inquire_name()
  - From: Love Hörnquist Åstrand
- Re: GSS_Inquire_name()
  - From: Leif Johansson
- Re: GSS_Inquire_name()
  - From: Luke Howard

Prev by Date: Re: GSS_Inquire_name()
Next by Date: Re: GSS_Inquire_name()
Previous by thread: Re: GSS_Inquire_name()
Next by thread: Re: GSS_Inquire_name()
Index(es):
- Date
- Thread

Re: GSS_Inquire_name()

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.