libre.sh/keycloak-scim
4
0
Fork 0
Code Issues 15 Pull requests Releases 1 Activity Actions

noticed a typo while writing up PR

Browse source
This commit is contained in:
Matthew Helmke 2017-12-19 05:44:34 -06:00 committed by Stian Thorgersen
parent 05c51e1c41
commit 663a2a75a3
1 changed files with 1 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
server_admin/topics/authentication/x509.adoc
View file

@ -12,7 +12,7 @@ A typical workflow is as follows:
- The x.509 client certificate authenticator validates the client certificate as follows: - The x.509 client certificate authenticator validates the client certificate as follows:
* Optionally checks the certificate revocation status using CRL and/or CRL Distribution Points * Optionally checks the certificate revocation status using CRL and/or CRL Distribution Points
* Optionally checks the Certificate revocation status using OCSP (Online Certificate Status Protocol) * Optionally checks the Certificate revocation status using OCSP (Online Certificate Status Protocol)
* Optinally validates whether the key usage in the certificate matches the expected key usage * Optionally validates whether the key usage in the certificate matches the expected key usage
* Optionally validates whether the extended key usage in the certificate matches the expected extended key usage * Optionally validates whether the extended key usage in the certificate matches the expected extended key usage
- If any of the above checks fails, the x.509 authentication fails - If any of the above checks fails, the x.509 authentication fails
- Otherwise, the authenticator extracts the certificate identity and maps it to an existing user - Otherwise, the authenticator extracts the certificate identity and maps it to an existing user