This redundancy was induced because the PAC was embedded in service tickets and flowed as a single security entity from the client to the server.
这种冗余是由于PAC是嵌入在服务令牌中并且作为一个安全实体在客户机与服务器之间进行流转而引起的。
Since the user network group membership information didn't change between the logins, the server pulls in the same PAC structure as in Session 1.
由于该用户的网络组成员关系在这两次登录之间并没有发生改变,因此服务器所获取的PAC结构就与会话1中的完全相同。
Since the PAC is not already cached on the server, as verified against the incoming PAC ID, the server pulls in the user's PAC (containing group-membership information) for authorization.
由于PAC现在还不在服务器的缓存中,因此在对传来的PAC ID进行验证的同时,服务器还会获取该用户的PAC(其中包含了组成员信息)进行授权。
应用推荐