[omniORB] Security/Authentication
darryl
developer@csrules.dyndns.org
Thu Feb 27 05:11:02 2003
Well, the intent is also to use SSL for encryption
and possibly client side certificates, however,
I still need to know who the clients are for
a role based access control.
-Darryl
> On Thursday 27 February 2003 06:46, darryl wrote:
>> I've taken a gander at the mailing list archives, this
>> seems to be a question that has been asked in the past
>> but i could not find any consensus. Is
>> it a bad idea to hand out "sessions" kind of like
>> in a web application then specifically pass the session
>> id with each call?
>
> I have done this in the past. It is really just access control,
> not security. It isn't exactly elegant, but it works and it is
> portable.
>
> --
> Bruce Fountain (fountainb@switch.aust.com)
> Senior Software Engineer
> Union Switch and Signal Pty Ltd
> Perth Western Australia
> tel: +618 9256 0083
>
> -------------------------------------------------------
>
> --
> Bruce Fountain (fountainb@switch.aust.com)
> Senior Software Engineer
> Union Switch and Signal Pty Ltd
> Perth Western Australia
> tel: +618 9256 0083
> _______________________________________________
> omniORB-list mailing list
> omniORB-list@omniorb-support.com
> http://www.omniorb-support.com/mailman/listinfo/omniorb-list