You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@qpid.apache.org by "ASF GitHub Bot (JIRA)" <ji...@apache.org> on 2016/02/22 15:46:18 UTC
[jira] [Commented] (DISPATCH-200) Flexible mapping from x.509
certificates to an identity
[ https://issues.apache.org/jira/browse/DISPATCH-200?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15157078#comment-15157078 ]
ASF GitHub Bot commented on DISPATCH-200:
-----------------------------------------
Github user ganeshmurthy closed the pull request at:
https://github.com/apache/qpid-dispatch/pull/42
> Flexible mapping from x.509 certificates to an identity
> -------------------------------------------------------
>
> Key: DISPATCH-200
> URL: https://issues.apache.org/jira/browse/DISPATCH-200
> Project: Qpid Dispatch
> Issue Type: New Feature
> Components: Container
> Reporter: Ted Ross
> Assignee: Ganesh Murthy
> Fix For: 0.7
>
>
> x.509 certificates contain structured data. It is necessary to be able to generate a unique identity from a certificate for the purpose of indexing into access policy.
> The proposed feature will contain a descriptor that is part of an ssl-profile configuration that specifies the format and content of the identity in terms of the fields of a certificate.
> For example, the identity can be the certificate fingerprint, or the distinguished name, or the combination of more than one field.
> A further enhancement is to provide a secondary mapping from the above identity to a configured nickname. For example, a user may want to use the fingerprint as the identity field but wishes to write policy and view management data containing a more friendly "display" name rather than the raw fingerprint.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@qpid.apache.org
For additional commands, e-mail: dev-help@qpid.apache.org