Open tofu-rocketry opened 2 years ago
There's probably two issues here: Supporting RFC4514 style (i.e. comma separated) for a services HOST_DN field and supporting them for user identity strings.
I think the first question for both is what approach we take to transitioning from slash to comma:
Seems like something worth consulting the community about
Seems like something worth consulting the community about
Yeah, it might need a community-wide coordinated change as the slash-separated format does seem to persist in other grid places.
The slash separated DN format is quite old now and produces inconsistent results with some tools (e.g. OpenSSL, depending on version). Comma separated seems to be the way to go for future compatibility.
This will need coordination with any services that make use of the DN fields (e.g. APEL).