On Thu, Aug 01, 2002 at 01:09:15PM -0400, Daniel Berlin wrote:
>
> On Thursday, August 1, 2002, at 12:37 PM, Karl Fogel wrote:
>
> > Justin Erenkrantz <jerenkrantz@apache.org> writes:
> >>> Was anyone going to take this one/already done it but not submitted
> >>> it?
> >>> If not, i can probably do the whole thing tomorrow.
> >>
> >> Go for it. =) -- justin
> >
> > +1 :-)
>
> Just a warning to those working on clients:
>
> I'm adding a password only authenticator to go along with the user+pass
> and username-only authenticators already existing in the ra layer.
>
> This is because encrypted private keys in certs only need a password.
> Sorry that it gives you guys another thing to implement, but, I really
> don't want to just ask for user+pass and ignore the username given.
> Seems hackish.
>
>
Are you planning on using the config file to figure out what
certs should be used, what CAs to trust, etc?
OpenSSL already has a (complex) configuration mechanism of its
own; maybe we can set up a trusted CA inside ~/.subversion, and
do things that way? This may sound like more trouble than it's
worth, but building our own PKI would be pretty complicated.
--ben
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@subversion.tigris.org
For additional commands, e-mail: dev-help@subversion.tigris.org
Received on Thu Aug 1 20:21:05 2002