[
https://issues.apache.org/jira/browse/DIRKRB-542?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15301591#comment-15301591
]
Jiajia Li commented on DIRKRB-542:
----------------------------------
Thank you for the explanation.
bq. This is related to the Asn1 modifications. Items were filled in where there
were none, which is invalid and makes it impossible to re-encode.
I read the patch carefully again, found that in
PkinitAnonymousAsRepCodecTest.java, the KdcDhKeyInfoField.DH_KEY_EXPIRATION
item is none, and when decoding, the new implementation will not set the
default KerberosTime.
> Kerby Authorization
> -------------------
>
> Key: DIRKRB-542
> URL: https://issues.apache.org/jira/browse/DIRKRB-542
> Project: Directory Kerberos
> Issue Type: Sub-task
> Reporter: Gerard Gagliano
> Assignee: Gerard Gagliano
> Attachments: ADAll.patch, ad.patch, ad2.patch, ad3.patch, adtest.patch
>
>
> Kerby lacks Authorization classes. Authorization types from RFC 1510, 4120,
> 4537, 4556, 6711 and 7751 will greatly enhance the usability of Kerby.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
