Details
-
New Feature
-
Status: Open
-
Major
-
Resolution: Unresolved
-
None
-
None
-
None
Description
In TokenPreauth, when KDC receives a token, after token is authenticated and a ticket is determined to be issued for the token user, it will need to generate a new authorization data to wrap the token information. Services can extract the token information (identity attributes) from the ticket for fine-grained authorization.
Attachments
Issue Links
- relates to
-
DIRKRB-126 Implementing TokenPreauth mechanism
- Resolved