const CORBA::PolicyType SecConstructionPolicy = 1001;
const CORBA::PolicyType SecInteroperabilityPolicy = 1002;
const CORBA::PolicyType SecTrustedAuthorityPolicy = 1000;
struct TrustedAuthority { Security::MechanismType mechanism; Security::Opaque security_name; long auth_distance; };
This structure is used as an element of the Trusted Authority Policy.
This structure associates a mechanism type with a security name and a authentication distance.
The type of the security name is a sequence of octets. However, it must be in a special format according to the API workings of ORBAsec SL2. (See the orbasec.Name or orbasec.corba.Name class defintion for details on how to use these encodings.)
The authentication distance is the distance, which is in a metric specific to the security mechanism, of the maximum distance the trusted authority is allowed from the authenticated principal.
Each security name has associated with it, a type, such as an X.500 directory name, a Kerberos Name, RFC822 email address, etc. ORBAsec provides a tool for encoding, decoding and creating these names so that the fit the definition.
struct TrustedAuthorityPolicyContent { TrustedAuthorityList own_trusted_authorities; TrustedAuthorityList client_peer_trusted_authorities; TrustedAuthorityList server_peer_trusted_authorities; };
This structure is used to be the contents of a Trusted Authority Policy. It contains the Trusted Authorities for authenticating own principals, client principals (if we are the server), and server principals (if we are the client).
This structure is given to
typedef sequence<TrustedAuthority> TrustedAuthorityList;
Generated by the ORBacus IDL-to-HTML translator (non-commercial)