On 6/1/11 11:36 AM, "Sam Hartman" <[log in to unmask]> wrote:
>How will this work for Apache?
>In that context, will mod-auth-gss be in a good position to know what
>the issuer is?
In the Apache case, we have more options since I have code surrounding the
relevant logic that's involved. Whatever configuration or processing is
involved to come up with the issuer could be done by mod-auth-gss (and set
into an additional Apache property) or can be done by the SP itself.
With the current scenario, there is no "SP proper", just a callable
interface to attribute related code that's invoked directly by the
mechanism already.
-- Scott
|