i) What is being done with the statement following Comparison of Certificates. Is it the certificate from the database is matched with the certificate got as argument from the user which is assigned to variable cert.
The comparison checks that the used certificate is identical with the stored certificated. After this point the user is authenticated.
$operator = getRole ($cert);
This line identifies the role of the user which presents the certificate.
ii)If the owner_method is CERTIFICATE_SERIAL or ANY then the owner is assumed as superuser (CA Authority) Am I right?
No.
CERTIFICATE_SERIAL --> load serial of affected cert >0 --> load cert --> get role from cert 0 --> "superuser"
ANY --> "superuser"
iii) Also the loadRoles function is not at all used by the grantAccess function. What is the purpose of the function then?
loadRoles returns all available roles. The function will be used by scripts which generating or editing requests.
Michael -- ------------------------------------------------------------------- Michael Bell Email (private): [EMAIL PROTECTED] Rechenzentrum - Datacenter Email: [EMAIL PROTECTED] Humboldt-University of Berlin Tel.: +49 (0)30-2093 2482 Unter den Linden 6 Fax: +49 (0)30-2093 2704 10099 Berlin Germany http://www.openca.org
------------------------------------------------------- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf _______________________________________________ Openca-Users mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/openca-users
