When using `sec.potocol gsi` with `-authzfun:libXrdSecgsiAUTHZVO.so` and `-authzfunparms with empty vo2usr` , the behavior is to extract the user name from the certificate's /CN field. This commit refactors the name extraction to only the first CN encountered. A text limitation to N characters is respected, where N = length of entity.vorg. Previously, it would grab all the text after the CN field, stopping either at the end or when N characters were met. You can view, comment on, or merge this pull request online at: https://github.com/xrootd/xrootd/pull/732 -- Commit Summary -- * Refactor user name extraction from certificate CN -- File Changes -- M src/XrdSecgsi/XrdSecgsiAuthzFunVO.cc (17) -- Patch Links -- https://github.com/xrootd/xrootd/pull/732.patch https://github.com/xrootd/xrootd/pull/732.diff -- You are receiving this because you are subscribed to this thread. Reply to this email directly or view it on GitHub: https://github.com/xrootd/xrootd/pull/732 ######################################################################## Use REPLY-ALL to reply to list To unsubscribe from the XROOTD-DEV list, click the following link: https://listserv.slac.stanford.edu/cgi-bin/wa?SUBED1=XROOTD-DEV&A=1