[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
(ITS#6523) idassert marks proxyAuthz as non-critical
Full_Name: Pierangelo Masarati
Version: HEAD/re24
OS: irrelevant
URL: ftp://ftp.openldap.org/incoming/
Submission from: (NULL) (129.72.141.24)
Submitted by: ando
RFC 4370 requires the criticality flag to be present and set to TRUE. I also
note that slapd by default tolerates this behavior, and provides the disallow
proxy_authz_non_critical directive to behave in strict accordance with RFC
4370.
I've introduced a corresponding proxy-authz-[non-]critical flag in idassert.
p.