Previous | Table of Contents | Next |
This specification defines a new GIOP service context element type, the security attribute service (SAS) element.
The SAS context element may be used to associate any or all of the following contexts with GIOP request and reply messages:
• Identity context, to be accepted based on trust
• Authorization context, including authorization-based delegation context
• Client authentication context
A new context_id has been defined for the SAS element.
const ServiceId SecurityAttributeService = 15;
The context_data of a SAS element is an encapsulation octet stream containing a SAS message body marshalled according to the
CDR encoding rules. The formats of the SAS message bodies are defined in the next section.
struct ServiceContext { ServiceId context_id; sequence <octet> context_data;
};
At most one instance of this new service context element may be included in a GIOP request or reply.