IETF-SSH archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

Re: Publickey subsystem draft posted



> Also, the restrictions actually stored need not match the restrictions
> listed in the add request.  This could allow sysadmins to force
> restriction templates.

This sounds like a good plan.  From a GUI perspective, though, it'd be
nice to have a facility to additionally have operations to:

a) List restrictions the sever supports.
b) Discover which of those restrictions will be compulsorily applied.

The first enables presenting a list of checkboxes to the user (with, for
those restrictions the client know
 of, human-friendly text).  The second allows certain of those checkboxes
to be compulsorily checked, thereby (hopefully) avoiding user confusion
about the restrictions applied to the key.

-- 
Jon Bright
Lead Programmer, Silicon Circus Ltd.
http://www.siliconcircus.com




Home | Main Index | Thread Index | Old Index