| Previous | Next | Contents | Index |
PMDF supports translating between "external usernames" (what the user types into their client as the username) and "internal usernames" (e.g., the name of a PMDF MessageStore or PMDF popstore account). This can, for instance, be used as part of support for "virtual domains": hosting multiple pseudodomain names on a single system.
A RULESET security ruleset definition section can include an option:
TRANSLATE=name |
name would be defined with a
USERNAME_TRANSLATE section of the form:
[USERNAME_TRANSLATE=name] IMAGE=unix-path-or-openvms-logical-or-nt-dll FUNCTION=entry-point |
FUNCTION option can be omitted if the entry-point is
called sasl_canonuser_init. Contact Process Software for
information on writing site-supplied username translation functions.
The following pre-defined username translations are provided:
DEFAULT
Splits the username at a percent character,%, or at sign character,@, and treats the right-hand side as a user/virtual domain. This is the default behavior. The user/virtual domain is used, for example, when authenticating against popstore accounts to correspond to the popstore user domain. This value is not supported when authenticating against system accounts.ASCII-NOCASE
Same as DEFAULT, but converts ASCII characters on the left-hand side to lower case.IDENTITY
This passes the username through without any translation.
| Previous | Next | Contents | Index |