On Tue, Jun 5, 2018, at 09:26, Pieter Vandepitte wrote:
> I follow the concerns of Patrick,
>
> I'm neither a fan of the [LOGIN-SECURITY]. Isn't it enough to specify
> that a server MUST ignore the value of <pw> if the loginSec extension is
> used?
That could be a solution too, and would work for further versions.
> I don't know if I overlooked it, but it seems that there's only support
> for password based login and provisioning. Do you plan to support other
> things like digest authentication?
I agree that it could be useful and I forgot about that, it could be a good
idea to make something more generic at the same time, to handle other kind of
authentications.
There is already a VeriSign EPP extension for 2 factors auth, I do not find it
online anymore but I implemented it and it was for namespaces:
http://www.verisign.com/epp/authExt-1.0
'http://www.verisign.com/epp/authSession-1.0
but it was more for domain:update operations.
--
Patrick Mevzek
_______________________________________________
regext mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/regext
