[saga-rg] security info in streams...
Andre Merzky
andre at merzky.net
Thu Jun 23 04:18:50 CDT 2005
Hi All, John,
the streams interface has a security info object, which
allows to get information about the 'other' side of the
stream.
That overlaps somewhat with the context we intend to use to
specify/query security information. Also, they are very
similar: both are extending the attrributes interface, and
specify a set of attributes to be supported.
I'd like to propose to merge both, and use a read only
context for security info in the stream interface. It makes
sense to have dedicated GetXXX methods I think, for those
attributes which are required.
What do you think?
Cheers. Andre.
PS.: I know its summer, so you are probably all too lazy to
dig through the doc for this :-) Here are the context and
the security info:
SecurityInfo:
interface SecurityInfo extends-all SAGA.Attribute {
/* These methods are shortcuts for typical
* information that would be used to
* make authorization decisions based on
* connection information. However, the
* the validity of the information is
* dependent on the security model implementation.
* Typically, the information is stored using
* the SAGA.Attribute interface. The data
* returned by the sample methods below are
* also available via the Attribute interface.
*/
void getSourceUserName (out string name);
void getSourceDN (out string DN);
void getSourceHost (out string hostname);
void getSourcePort (out int port);
}
Context:
enum contextType {
X509 = 0,
SSH = 1,
Kerberos = 2,
UserPass = 3
};
interface Context extends-all SAGA.Attribute {
constructor (in contextType type);
getType (out contextType type);
}
--
+-----------------------------------------------------------------+
| Andre Merzky | phon: +31 - 20 - 598 - 7759 |
| Vrije Universiteit Amsterdam (VU) | fax : +31 - 20 - 598 - 7653 |
| Dept. of Computer Science | mail: merzky at cs.vu.nl |
| De Boelelaan 1083a | www: http://www.merzky.net |
| 1081 HV Amsterdam, Netherlands | |
+-----------------------------------------------------------------+
More information about the saga-rg
mailing list