[OpenAFS] Some questions about the future of OpenAFS

Derrick J Brashear shadow@dementia.org
Wed, 1 May 2002 12:21:36 -0400 (EDT)

On Wed, 1 May 2002, Douglas E. Engert wrote:

> AFS has done the authorization via the PTS. Will this continue to
> work the same way? 

For the moment. Something obviously needs to be done about it, but for
instance switching to LDAP would be dangerous for fileserver performance
reasons and because LDAP is not strictly a superset of PTS functionality.

> Would you map foreign users to local users in the PTS?

Would be nice to have the ability, it's certainly high on the list for a
next-generation version of the service.

> Will foreign users be allowed on ACLs? 

In PTS groups, or on ACLs? They're not the same.

> Do you still have the AFS ID? Do these need to be UUIDs?

As long as you still have local users you're mapping to, there's no reason
it needs to change. It may be that it should, but it's not required.