int checkAccess (const char *subjectDN, const char *subjectCA, const char *resource, CapCert* cert, AKMessage* mesg)

Given an authenticated principal name which consists of an x509 distinguished name for a user, and the x509 distinguished name of the Certificate Authority which issued the user's x509 cert, and the name of the resource, returns a capability certificate if any rights are granted

Documentation

Given an authenticated principal name which consists of an x509 distinguished name for a user, and the x509 distinguished name of the Certificate Authority which issued the user's x509 cert, and the name of the resource, returns a capability certificate if any rights are granted. Note: akentiInit must be called prior to this call.
Returns:
0 if succesful (user is not denied access)
Parameters:
subjectDN - [in] the user for whom we are checking access
subjectCA - [in] the CA that issued the subject's cert
resource - [in] name of the resource for which access is checked
cert - [out] a pointer to a capability certificate
AKMessage - [out] a message grouped with a status code
See Also:
freeAKMessage

alphabetic index hierarchy of classes


this page has been generated automatically by doc++

(c)opyright by Malte Zöckler, Roland Wunderling
contact: doc++@zib.de