Re: [Beepcore-java-users] Requireing a profile

SourceForge Headquarters 1320 Columbia Street Suite 310 San Diego, CA 92101 +1 (858) 422-6466

This seems like a bit overkill to me.  If you think about tuing profiles
as a layer below the application profiles then a profile should have no
knowledge of the tuing profile that is operating under it.

Shouldn't it be the responsibilty of the core API to establish a chain
of dependancies that can be setup when the server session listener (in
this can TCPSessionCreator) is created?

If a simple dependancy scheme is implemented that would mean that all
supported profiles could be advertised upon the first greeting and
return error codes when start requests are attempted without proper
authentication or security in place.

For example:

3 profiles exist in parallel, Echo, TLS and SASL/OTP

Echo profile requires that SASL/OTP be in place.

SASL/OTP requires TLS

in this case you would need custom protocols for each profile to
properly handle this situation. =20

thoughts?

--Kevin Kress

On Sun, 2002-08-04 at 19:44, William J. Mills wrote:
> I think this is a case where the profiles need to do the right thing, rat=
her than
> the core functionality.  I may be wrong. =20
>=20
> SASL sets a state in the session, but to some extent it is the profiles w=
hich
> must honor this.  Tuning profiles which casue a new greeting to be exchan=
ged
> give the opportunity to register new profiles, and advertise them at that=
 time,
> which would do what you want, but SASL/ANONYMOUS does not cause a tuning =
reset=20
> in this way (as far as I know).
>=20
> So for the ECHO example, you'd need a custom version that checks authenti=
cation=20
> in it's start message handler.
>=20
> Someone please correct me if I am mistaken.
>=20
> -bill
>=20
> On Sun, Aug 04, 2002 at 05:20:46PM -0700, Kevin Kress wrote:
> > In the SASL profile (or possibly a TLS) what is the mechanism used to
> > send out "530" errors if the server wants to require authentication.=20
> >=20
> > For example, when a server starts up, it registers both, SASL/ANONYMOUS
> > and ECHO... the desired result being that until the SASL/ANONYMOUS has
> > set credentials in the Session, all other startChannel messages (in thi=
s
> > case ECHO) will return with a <error code=3D'530'> .=20
> >=20
> > If this is not done yet, where might it fit best?  A function of Sessio=
n
> > for the error sending?  Possibly ProfileRegistry for initial setup or
> > TCPSessionCreator to setup the required auth?
> >=20
> > thoughts?=20
> >=20
> > --Kevin Kress=20
> >=20
> >=20
> >=20
> >=20
> > -------------------------------------------------------
> > This sf.net email is sponsored by:ThinkGeek
> > Welcome to geek heaven.
> > http://thinkgeek.com/sf
> > _______________________________________________
> > Beepcore-java-users mailing list
> > Bee...@li...
> > https://lists.sourceforge.net/lists/listinfo/beepcore-java-users
>=20
--=20
Kevin Kress
kk...@my...

GnuPG Key ID: 92949032
Fingerprint : B7F9 2B08 6FC8 35CA 5B64  BD34 6A8B 325C 9294 9032

See Keyserver: http://www.keyserver.net/en/findkey.html
(search for "Kevin Kress" or "0x92949032")

Get GnuPG or PGP at http://www.pgpi.org