On 11/2/2012 4:30 PM, Benjamin Kaduk wrote: > On Thu, 1 Nov 2012, Simon Wilkinson wrote: > >> >> On 1 Nov 2012, at 03:42, Benjamin Kaduk wrote: >>> I think we can only make a weak statement in this document, and >>> proposed as such in my commit: >>> <t hangText="expiration">The time, expressed as an rxgkTime, at >>> which >>> - this token expires.</t> >>> + this token expires. The expiration time MAY be set >>> administratively >>> + by the server, and SHOULD reflect the expiration time of the >>> + underlying GSSAPI credential.</t> >>> >>> The server application has freedom to lower, or increase, the expiry >>> time of the underlying credential, but should take that underlying >>> credential into account as appropriate for the application. >> >> I'm happy with the intent behind this, although I wonder if the wording > > Okay. Does jaltman have objections to the intent behind it?
I am ok with the intent.
signature.asc
Description: OpenPGP digital signature
