< Previous by Date	Date Index	Next by Date >
	Thread Index

[reSIProcate] realms in repro proxy

From: Rohan Mahy <rohan@xxxxxxxxxx>
Date: Sun, 15 May 2005 10:53:03 -0700

Hi,

Currently the repro web admin effectively ignores realms by setting therealm to the domain name when you add a user. I understand that youmight have a user who has one set of Digest credentials (username,password, realm) but has multiple AORs (possibly in different domains).This would indicate a 1:n relationship between digest credentials andan AOR. However, for some AORs (like sales@xxxxxxxxxxx) it could beauthenticate with one of several digest credentials. This indicates ann:n relationship.

I would like to punt on this for release 0.1, but I also want toexplore what would be necessary to make this work. Expressing thiskind of relationship with a database means that you need to have atable of credentials, a table of accounts, and a table that expressesthe valid authorization relationships between the two. Getting theadmin UI to do this correctly without making it harder to use in the"ordinary" case could be tricky.


thoughts welcome.

thanks,
-rohan

Prev by Date: Re: [reSIProcate] tarball 0.9.0-4631
Next by Date: Re: [reSIProcate] Release version number bumping to 0.9.0
Previous by thread: [reSIProcate] basicCall?
Next by thread: [reSIProcate] Mistake in the definition of the password methods in the Class Uri
Index(es):
- Date
- Thread