Project

General

Profile

Task #2518

Bug #2516: cn.getLogRecords() errors vs. cn-dev

refactor SessionAuthorization.doFilter()

Added by Rob Nahf about 12 years ago. Updated about 12 years ago.

Status:
Closed
Priority:
Normal
Assignee:
Rob Nahf
Category:
d1_cn_solr_extensions
Target version:
Sprint-2012.11-Block.2.2
Start date:
2012-03-22
Due date:
% Done:

100%

Milestone:
CCI-1.0.0
Product Version:
*
Story Points:
Sprint:

Description

to handle the unregistered subject more accurately.

options that seem consistent with stated behavior:

1) allow authorization to proceed using only the client subject (no added subjects from subjectInfo)
2) use (and trust) the subjectInfo supplied in the session from the client certificate
3) allow authorization to proceed using only public and authenticatedUser

History

#1 Updated by Rob Nahf about 12 years ago

  • Status changed from New to Closed
  • % Done changed from 0 to 100

updated to use the subjectInfo provided in the certificate if it's there.

Also available in: Atom PDF

Add picture from clipboard (Maximum size: 14.8 MB)