Task #1559
closed
Enable wildcard in authorize section of NFD configuration file
Added by Yingdi Yu over 10 years ago.
Updated over 10 years ago.
Description
The authorize section in NFD configuration specifies how to validate NFD command interest.
For some NFD command interest (such as Face management), validation may not be required.
Therefore it would be desired to support wildcard in the authorize section.
An example would be:
authorize
{
certfile any
privileges
{
faces
}
}
Since NFD use CommandInterestValidator, this change also requires CommandInterestValidator to support wildcard.
- Description updated (diff)
All ControlCommands SHOULD be validated.
If some operation does not need validation, it SHOULD NOT be designed as a ControlCommand.
Yes. Nobody argues that they "should". The other thing is that we should have a simple ability to turn this validation off, at least for the initial roll out.
This issue is to make sure we have consistent dumb (no-verify) behavior for RIB management and and other FIB management tasks (another option would be to switch FIB authorization to validator-config, but I would expect this to take much longer that this simple hack).
- Status changed from New to Code review
- % Done changed from 0 to 100
- Status changed from Code review to In Progress
- % Done changed from 100 to 0
- Status changed from In Progress to Code review
- % Done changed from 0 to 100
- Status changed from Code review to Closed
Also available in: Atom
PDF
Updated by 
Updated by 
Updated by