[Pki-devel] [PATCH] 0167..0175 external authentication support
Fraser Tweedale
ftweedal at redhat.com
Wed Apr 19 06:17:21 UTC 2017
On Thu, Mar 16, 2017 at 05:50:37PM +1000, Fraser Tweedale wrote:
> On Tue, Mar 07, 2017 at 11:16:37AM +1000, Fraser Tweedale wrote:
> > Hi team,
> >
> > Please review the attached patches, which add support for external
> > authentication (e.g. GSS-API/SPNEGO).
> >
> > These patches depend on some other outstanding patches:
> > 0157, 0158, 0165, 0166.
> >
> > You can review the whole branch (including those commits just
> > mentioned) on GitHub:
> > https://github.com/dogtagpki/pki/compare/master...frasertweedale:feature/1359-gssapi
> >
> > Thanks!
> > Fraser
>
> 7 patches acked by alee; pushed to master:
>
> 67d51413323e1d55fdc04ca5edf5d9f05afb0ebe Update ACLInterceptor to support external principals
> ef84ef36be06944a7f6338ed022f13e066cd5c32 Update SessionContextInterceptor to handle external principals
> 76f60251f7e1b2f1f9ad1752121c0c5cb1cb5b8b Update AuthMethodInterceptor to handle external principals
> 433c7b70d7dd8609dea31b28aee042e48a41ac9f Add IAuthToken implementation for external principals
> 00cf1cd2c6b9f5d8116921e4c3f1d07e7708388e Add groups and request attributes to external principals
> 4cf87aa3babc4c7d8ea60a46cb548ebfee493ae4 CertProcessor: extract method setAuthTokenIntoRequest
> 295cb2f175711a85f371c0fa93c584ad235066e4 Define AgentCertAuthentication token keys in IAuthToken
>
> Thanks,
> Fraser
>
Remaining commits pushed to master:
* b099b631bb49e17e0aa4cd8c7a818ba1c923ec92 Add authn manager that reuses auth token from session
* dcc42ad4ed7fcbc566b7cf7ce1cbfae93b24a9a9 Add ExternalProcessConstraint for request validation
* f67071910c6b74790f7ad75329f05e599076dee4 CertProcessor: set external principal attributes into request
* a35c6cde1047e305142bec839b8953d90008c127 Allow arbitrary user data in cert request
More information about the Pki-devel
mailing list