And I disagree here...
The idea of the code is to separate authentication from
authorization totally.
Hence it collects all the available information to be submitted to the
authorization layer.
Calling a function that extract VOMS attributes means asking
whether there is any VOMS attribute, hence failing means
"there are no attributes" but does not exclude other means
of authentication for that connection.
The point I'm trying to make here is that the VOMS extraction
function should just extract or tell that there is nothing to extract,
because the responsibility of deciding what to do is elsewhere
in the code path.
Fabrizio
Il 02/07/20 11:42, Elvin Sindrilaru ha scritto:
> I totally agree - the XrdHttpProcol code is wrong. This issue is to mark
> that part needs to be fixed.
>
> —
> You are receiving this because you are subscribed to this thread.
> Reply to this email directly, view it on GitHub
> <https://github.com/xrootd/xrootd/issues/1236#issuecomment-652904276>,
> or unsubscribe
> <https://github.com/notifications/unsubscribe-auth/ABJBUT3IHGCMN7QBZFQJ3W3RZRI77ANCNFSM4OOWIFAA>.
>
—
You are receiving this because you are subscribed to this thread.
Reply to this email directly, view it on GitHub, or unsubscribe.
[
{
"@context": "http://schema.org",
"@type": "EmailMessage",
"potentialAction": {
"@type": "ViewAction",
"target": "https://github.com/xrootd/xrootd/issues/1236#issuecomment-652910555",
"url": "https://github.com/xrootd/xrootd/issues/1236#issuecomment-652910555",
"name": "View Issue"
},
"description": "View this Issue on GitHub",
"publisher": {
"@type": "Organization",
"name": "GitHub",
"url": "https://github.com"
}
}
]
Use REPLY-ALL to reply to list
To unsubscribe from the XROOTD-DEV list, click the following link:
https://listserv.slac.stanford.edu/cgi-bin/wa?SUBED1=XROOTD-DEV&A=1