[saga-rg] security info in streams...

Andre Merzky andre at merzky.net
Thu Jun 23 04:18:50 CDT 2005 

Hi All, John, 

the streams interface has a security info object, which
allows to get information about the 'other' side of the
stream.

That overlaps somewhat with the context we intend to use to
specify/query security information.  Also, they are very
similar: both are extending the attrributes interface, and
specify a set of attributes to be supported.

I'd like to propose to merge both, and use a read only
context for security info in the stream interface.  It makes
sense to have dedicated GetXXX methods I think, for those
attributes which are required.  

What do you think?

Cheers. Andre.


PS.: I know its summer, so you are probably all too lazy to
dig through the doc for this :-)  Here are the context and
the security info:

 SecurityInfo:

    interface SecurityInfo extends-all SAGA.Attribute {
      /* These methods are shortcuts for typical
       * information that would be used to
       * make authorization decisions based on
       * connection information.  However, the
       * the validity of the information is 
       * dependent on the security model implementation.
       * Typically, the information is stored using
       * the SAGA.Attribute interface.  The data 
       * returned by the sample methods below are
       * also available via the Attribute interface.
       */
      void getSourceUserName   (out string name);
      void getSourceDN         (out string DN);
      void getSourceHost       (out string hostname);
      void getSourcePort       (out int    port);
    }

 Context:

    enum contextType {
      X509            = 0,
      SSH             = 1,
      Kerberos        = 2,
      UserPass        = 3
    };

    interface Context extends-all SAGA.Attribute {
      
      constructor (in  contextType type);
      getType     (out contextType type);
      
    }


-- 
+-----------------------------------------------------------------+
| Andre Merzky                      | phon: +31 - 20 - 598 - 7759 |
| Vrije Universiteit Amsterdam (VU) | fax : +31 - 20 - 598 - 7653 |
| Dept. of Computer Science         | mail: merzky at cs.vu.nl       |
| De Boelelaan 1083a                | www:  http://www.merzky.net |
| 1081 HV Amsterdam, Netherlands    |                             |
+-----------------------------------------------------------------+

More information about the saga-rg mailing list