Re: [radext] draft-ietf-opsawg-ucl-acl: User Access Control Group ID RADIUS Attribute

mohamed.boucadair@orange.com Thu, 12 October 2023 15:06 UTC

Return-Path: <mohamed.boucadair@orange.com>
X-Original-To: radext@ietfa.amsl.com
Delivered-To: radext@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id EDF5EC13AE26; Thu, 12 Oct 2023 08:06:12 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.104
X-Spam-Level:
X-Spam-Status: No, score=-2.104 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H5=0.001, RCVD_IN_MSPIKE_WL=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, UNPARSEABLE_RELAY=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=orange.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id pUs2kUWbSn3L; Thu, 12 Oct 2023 08:06:08 -0700 (PDT)
Received: from smtp-out.orange.com (smtp-out.orange.com [80.12.210.122]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 5D4DAC1522DB; Thu, 12 Oct 2023 08:06:07 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=orange.com; i=@orange.com; q=dns/txt; s=orange002; t=1697123168; x=1728659168; h=to:cc:subject:date:message-id:references:in-reply-to: mime-version:from; bh=siLkhN7jfSszLlZYSQtceldyVAP61TzKEX7BOWEhYuY=; b=BVYDj+qXlcF176R5bw1B0+YEUqk7GrS4xiWDVzbj02TWe/azaTUjb3VW NqtC4GujVc6BDTBq7SSNf6BL4DKEDPfPGTiCbj7SCxOEQXtsVA0/sPY+a cedHjz+3b3HwzhcaOhS4pRf7hb5rOnYc+diFDxs5m3vUYjLel9IjfTK68 tCQyGd4lVPTWTIr6rN/H3CH+gH46fsItl7PiS5x6ntrBolRxzOn5aZJB0 yvbfffd2H3J1URkL5YoLyOFtme9DrOK+xBh0bGmwWuzRSkZv2q+g5a5H6 tlAit7nbkPt/wWny34TtsRAA/MYz+J2TGq8VZiPOun+m45Sj+9QJx3qUs Q==;
Received: from unknown (HELO opfedv3rlp0c.nor.fr.ftgroup) ([x.x.x.x]) by smtp-out.orange.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 12 Oct 2023 17:06:05 +0200
Received: from unknown (HELO opzinddimail8.si.fr.intraorange) ([x.x.x.x]) by opfedv3rlp0c.nor.fr.ftgroup with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 12 Oct 2023 17:06:05 +0200
Received: from opzinddimail8.si.fr.intraorange (unknown [127.0.0.1]) by DDEI (Postfix) with SMTP id 0536E7649D9; Thu, 12 Oct 2023 17:06:05 +0200 (CEST)
Received: from opzinddimail8.si.fr.intraorange (unknown [127.0.0.1]) by DDEI (Postfix) with ESMTP id BADD0764A7C; Thu, 12 Oct 2023 17:05:36 +0200 (CEST)
Received: from smtp-out365.orange.com (unknown [x.x.x.x]) by opzinddimail8.si.fr.intraorange (Postfix) with ESMTPS; Thu, 12 Oct 2023 17:05:36 +0200 (CEST)
Received: from mail-he1eur04lp2050.outbound.protection.outlook.com (HELO EUR04-HE1-obe.outbound.protection.outlook.com) ([104.47.13.50]) by smtp-out365.orange.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 12 Oct 2023 17:05:35 +0200
Received: from DU2PR02MB10160.eurprd02.prod.outlook.com (2603:10a6:10:49b::6) by PAWPR02MB10143.eurprd02.prod.outlook.com (2603:10a6:102:362::11) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.6863.36; Thu, 12 Oct 2023 15:05:34 +0000
Received: from DU2PR02MB10160.eurprd02.prod.outlook.com ([fe80::82bf:2264:fe9e:512e]) by DU2PR02MB10160.eurprd02.prod.outlook.com ([fe80::82bf:2264:fe9e:512e%4]) with mapi id 15.20.6863.032; Thu, 12 Oct 2023 15:05:34 +0000
From: mohamed.boucadair@orange.com
X-TM-AS-ERS: 10.106.160.156-127.5.254.253
X-TM-AS-SMTP: 1.0 c210cC1vdXQzNjUub3JhbmdlLmNvbQ== bW9oYW1lZC5ib3VjYWRhaXJAb 3JhbmdlLmNvbQ==
X-DDEI-TLS-USAGE: Used
Authentication-Results: smtp-out365.orange.com; dkim=none (message not signed) header.i=none; spf=Fail smtp.mailfrom=mohamed.boucadair@orange.com; spf=Pass smtp.helo=postmaster@EUR04-HE1-obe.outbound.protection.outlook.com
Received-SPF: Fail (smtp-in365b.orange.com: domain of mohamed.boucadair@orange.com does not designate 104.47.13.50 as permitted sender) identity=mailfrom; client-ip=104.47.13.50; receiver=smtp-in365b.orange.com; envelope-from="mohamed.boucadair@orange.com"; x-sender="mohamed.boucadair@orange.com"; x-conformance=spf_only; x-record-type="v=spf1"; x-record-text="v=spf1 ip4:80.12.66.32/28 ip4:80.12.210.96/28 ip4:80.12.70.34/31 ip4:80.12.70.36 include:spfa.orange.com include:spfb.orange.com include:spfc.orange.com include:spfd.orange.com include:spfe.orange.com include:spff.orange.com include:spf6a.orange.com include:spffed-ip.orange.com include:spffed-mm.orange.com -all"
Received-SPF: Pass (smtp-in365b.orange.com: domain of postmaster@EUR04-HE1-obe.outbound.protection.outlook.com designates 104.47.13.50 as permitted sender) identity=helo; client-ip=104.47.13.50; receiver=smtp-in365b.orange.com; envelope-from="mohamed.boucadair@orange.com"; x-sender="postmaster@EUR04-HE1-obe.outbound.protection.outlook.com"; x-conformance=spf_only; x-record-type="v=spf1"; x-record-text="v=spf1 ip4:40.92.0.0/15 ip4:40.107.0.0/16 ip4:52.100.0.0/14 ip4:104.47.0.0/17 ip6:2a01:111:f400::/48 ip6:2a01:111:f403::/49 ip6:2a01:111:f403:8000::/50 ip6:2a01:111:f403:c000::/51 ip6:2a01:111:f403:f000::/52 -all"
IronPort-Data: A9a23:7uOQbKBiBj1NBRVW/+Lkw5YqxClBgxIJ4kV8jS/XYbTApDMj3jEOy 2BMC2nSPfeDZ2GnKdlwao/k9hlQ7cKBy95jTANkpHpgcSlH+JHPbTi7wuYcHM8wwunrFh8PA xA2M4GYRCwMZiaA4E3ra9ANlFEkvYmQXL3wFeXYDS54QA5gWU8JhAlq8wIDqtYAbeORXUXV4 rsen+WFYAX+gmYtaDpOg06+gEgHUMra6WpwUmMWNagjUG/2zxE9EJ8ZLKetGHr0KqE88jmSH rurIBmRpws1zj91Yj+Xuu+Tnn4iG9Y+CTOzZk9+AMBOtPTgShsaic7XPNJEAateZq7gc9pZk L2hvrToIesl0zGldOk1C3Fl/y9C0aJu/b3JcGKd8s2oyW7WUnvT4NUxAU9sIthNkgp3KTkmG f0wBQ03NkzGp8/vhbWxR69rm9gpK9TtMMUHoHZ8wDrFDPEgB5feX6HN4twe1zA17ixMNa+GO 4xFNnw2N1KdO3WjOX9PYH46tOKvhnD6fjEeolWIrqM76mnJ5Atr2b7iPZzefdniqcB9xxzB9 z+epjmR7hcyKsal8QSXw1WQtMzzwnj1BY4sF6S46as/6LGU7jdKU0ZODAHTTeOCok6gXfpFI kAV8zYpt7M1+lC0R8PwGRa/pRaspBcQVspMO+w39A/LzbDbiy6eHnMNUTFpadE6uokxXzNC/ lOTlt31QDlm9bqNUnuC+fKJpjf3MCMRBW4PeSFCShEKi+QPu6k2hxPLC9ZuSaOolIWpHSmqm 23S6i8jm78UkMgHkb2h+kzKiC6toZ6PSRMp4gLQXSSu6QYRiJOZi5KA7FrVvOxib4eiSHqRn Xg7uOjB4e5UEsTY/MCSe9klELas7veDFTTTh19zApUsnwhBHVbyJei8BxkvfC9U3tY4lSzBP heK5lIPjHNHFCH2PPQrP+pdHuxwlcDd+cLZuuf8QPsmjnJZVAKD5yBoZk/4M4vFyBB1yvhX1 XuzTNu3DHMTAMxaINeeQu4c1fory3kz2HmLGZTjlUz6ifyZeWKfTqoDPB2WdOcl4aiYoQLTt dFCK8+NzBYZW+r7CsU2zWLxBQBVRZTYLcmpwyCySgJlClU/cI3GI6GNqY7Ng6Q/w8xoeh7gp xlRoHNwxlvlnmHgIg6XcH1lY76Hdc8h/C1jYX10Zgv1hCdLjWOTAEE3JsJfkV4PpbQL8BKIZ 6NZEyl9KqgfFG2WoGVEBXUDhNYzK0372mpiwBZJkBBkJsU7H1WTkjMVVg7u/zMJFS25qYM3s aC622vmrWkrFmxf4DLtQKv3lTuZ5CBD8MorBhegCocJJC3ErtMwQwSv1aBfHi35AU6ertds/ 13KWkhwSCiki9NdzeQlcojd8dn2TrYvQBYHd4QZhJ7vXRTnEqOY6dcoeI61kfr1DQsYJI3Ki SRpI/DA3DkvsWtw69Y5M5syiKU06p3ouqNQyRliEDPTdVO3B7h8I36Am85SqqlKwbwfsgyzM q5K0scPIq2HYasJD3ZITDfJrMzbvR3XptUWxfMvKUP16Wl8+7/vvYB6IUyXkCIERFdqGN9N/ NrNYPIr1jE=
IronPort-HdrOrdr: A9a23:myX60KzVnNZ8ENaNdPbHKrPw9b1zdoMgy1knxilNoH1uA7Glfq WV98jzuiWUtN9vYgBHpTntAsW9qDDnhOdICPAqTMyftVDdyRGVxeJZnPffKl/bexEWn9Q1vc 1dms5FZ+EYZmIWsS+V2meF+6tJ+qj+zEl9v5a9858QJTsaDJ2Ilz0JaTpz5XcGIDWurKBJca ah2g==
X-Talos-CUID: 9a23:wQVWRW9de7VyAkcDX32Vv0sWFJE/UD7c93HzM264NkVJF7CbE0DFrQ==
X-Talos-MUID: 9a23:A/aKdQq1IVoRl2yif8oezy94Dv9W8ZWJNHIurcpdtZSICy9pOyjI2Q==
X-IronPort-AV: E=Sophos;i="6.03,219,1694728800"; d="scan'208,217";a="12195015"
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=IoA+a6DQeIifG/8U5ryo7MQysVEm0mdHXPry1RxCZho9lsm54o9+sEEmK9ONpPeYEm+nvIc3ZrnEQ5aiQkCKNhKH5sB3UdKgDH3IzojSZrQ/MKPNywF8zgmNTQYjYxl8hVwScAfi02EoPvppNsw2qEXvTJkK4/O9CrlLCdxYXTYymgRoYvseZ5WYbixMBLVqPPSwUYnTlyqDxMLE5e7sQDx+ji852AtpNtAsqWApB+ixnQHf+D/JYT8RY95dyAb+w9Nazm56iKludqvAVs8jz0Cy9RggG06lreUx1xEBjVa/h+aKEOoElcrgwKJhPUbEZO9kckV8O0Vw/tZpyDs99A==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=91XeiYwdqsBf4o/gwz7h1PwdkGYXak9dtYlqdT6qvgc=; b=f4dp0WzR0/WnWBSoiJIS0hyXunIq+iRLnEWXx+bgg7ELfA9FtBSRlZBa6yfguSuy16PkA9G+2kKpoxjWI6B5wv8M1h8QDY12REqPf7ZeUEbxF1t2BjNZnMhIZe7hOmYvTlaNKDVoUmeaZjv01hvxxH9z7R5jHhtbWsnn8ebOcctDi4z/FuRqLyudOugSkhbzQHTr78v+NMrS+Vcwul8u3NTYn04k/S7exnTBYiSC8xreUr/50e+gojVM99NCseYwQe4r3adZolvwQ2a7Sh1h1lfu3+fME97A06G30J5Z8FbrDSoFeD30anfSTpugcq2YrE64bjd7CTtdcFA7elgi7w==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=orange.com; dmarc=pass action=none header.from=orange.com; dkim=pass header.d=orange.com; arc=none
To: Heikki Vatiainen <hvn@radiatorsoftware.com>
CC: "radext@ietf.org" <radext@ietf.org>, opsawg <opsawg@ietf.org>, "draft-ma-opsawg-ucl-acl@ietf.org" <draft-ma-opsawg-ucl-acl@ietf.org>
Thread-Topic: [radext] draft-ietf-opsawg-ucl-acl: User Access Control Group ID RADIUS Attribute
Thread-Index: AdnwcLY3AuIfH5/XSOq9yTW4TO9xvAMq1tcAAABA7IA=
Content-Class:
Date: Thu, 12 Oct 2023 15:05:34 +0000
Message-ID: <DU2PR02MB10160CED8CD146EB0F448598988D3A@DU2PR02MB10160.eurprd02.prod.outlook.com>
References: <DU2PR02MB10160E3C06B7D7D89D3B21C9D88C3A@DU2PR02MB10160.eurprd02.prod.outlook.com> <CAA7Lko9YknOpxtdD=F5E7ALO83pgenHbfPDMgoDJPPQjY-CBVw@mail.gmail.com>
In-Reply-To: <CAA7Lko9YknOpxtdD=F5E7ALO83pgenHbfPDMgoDJPPQjY-CBVw@mail.gmail.com>
Accept-Language: fr-FR, en-US
Content-Language: fr-FR
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
msip_labels: MSIP_Label_07222825-62ea-40f3-96b5-5375c07996e2_Enabled=true; MSIP_Label_07222825-62ea-40f3-96b5-5375c07996e2_SetDate=2023-10-12T15:02:50Z; MSIP_Label_07222825-62ea-40f3-96b5-5375c07996e2_Method=Privileged; MSIP_Label_07222825-62ea-40f3-96b5-5375c07996e2_Name=unrestricted_parent.2; MSIP_Label_07222825-62ea-40f3-96b5-5375c07996e2_SiteId=90c7a20a-f34b-40bf-bc48-b9253b6f5d20; MSIP_Label_07222825-62ea-40f3-96b5-5375c07996e2_ActionId=45128234-aeef-45dc-899f-0a81a8cf3817; MSIP_Label_07222825-62ea-40f3-96b5-5375c07996e2_ContentBits=0
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: DU2PR02MB10160:EE_|PAWPR02MB10143:EE_
x-ms-office365-filtering-correlation-id: 4b42fc8f-976d-4107-f985-08dbcb34af49
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:DU2PR02MB10160.eurprd02.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230031)(136003)(346002)(39860400002)(376002)(366004)(396003)(230922051799003)(451199024)(186009)(1800799009)(64100799003)(6916009)(2906002)(55016003)(64756008)(83380400001)(316002)(166002)(66556008)(66476007)(54906003)(26005)(66446008)(66946007)(76116006)(5660300002)(41300700001)(52536014)(6506007)(966005)(7696005)(478600001)(71200400001)(8936002)(8676002)(4326008)(9686003)(33656002)(122000001)(38070700005)(38100700002)(86362001); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/alternative; boundary="_000_DU2PR02MB10160CED8CD146EB0F448598988D3ADU2PR02MB10160eu_"
MIME-Version: 1.0
X-OriginatorOrg: orange.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: DU2PR02MB10160.eurprd02.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 4b42fc8f-976d-4107-f985-08dbcb34af49
X-MS-Exchange-CrossTenant-originalarrivaltime: 12 Oct 2023 15:05:34.2257 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 90c7a20a-f34b-40bf-bc48-b9253b6f5d20
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: Mo/DHLkZHzwF5YVPA0EovPCMNV8keAdHqE8jao9UxwDVS2UvyYhSz0eq4qs+V6qee7SatH/vHAa5RPpSVb1a7IJppl7JIaYMl5jnKmYOlx0=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: PAWPR02MB10143
X-TM-AS-ERS: 10.106.160.156-127.5.254.253
X-TM-AS-SMTP: 1.0 c210cC1vdXQzNjUub3JhbmdlLmNvbQ== bW9oYW1lZC5ib3VjYWRhaXJAb 3JhbmdlLmNvbQ==
X-TMASE-Version: DDEI-5.1-9.0.1002-27932.000
X-TMASE-Result: 10--29.364700-10.000000
X-TMASE-MatchedRID: dL10VBB8yoekmOzIPyaddxfqkKQlk1I5WmOfr3aLpwhh41l5D35wYmnh fZeuBiMUDVHHAE0cndShy3VoUqWbOPj57BGPW0gSk4nP+tQi+rZ+G11aZ3USRE6FoZRUKdLk09g 30U+SFMR4EMwpW3Pmq1j+0tQMojxACuAYV83gfMIK3Ma88LL+bmRt0giz+0LSXjbObVmL4wnGwr FPFp5Avo+pAn19BHXOR1u6Jncx2x3vTN8vEvt6gO9VsdrlGzy3Q6/DFZugyt1bYv6Kt+uF2IzS8 a3MSlYlrBSXh5yB2YuldcynBeAPrEtHpMdfrXMKZBiPr4EU8TBRpObkR9DMwkekR3VSvOYV2jgV mhKlDxiqH12uH+NHwlQh5YE9uDH7gzyd7INd5ieaYPCDiHsB0AgnaupNy5h2digxMAcafVqFAf5 iylR8WhiZsVhauLEn2QQJvp4Wi4Bq9oJbnOqI2ovptQwz5tsimzsJ8CsZYU4rcFgRlaMZqdDSnI WWPMFHcKzjaDbhn/PKR3w4E/y0xDGOXQytAlhUngIgpj8eDcDyAZ3iO/zNo/1rtDfzDW0/tiHjv 7pScNHgT2zXYa9/ncrWqMaOiaNF//NPvSid0C4+Mqg+CyrtwA==
X-TMASE-SNAP-Result: 1.821001.0001-0-1-22:0,33:0,34:0-0
X-TMASE-INERTIA: 0-0;;;;
X-TMASE-XGENCLOUD: 4cf1a65b-c823-4f6d-8212-835fc0b1e1d6-0-0-200-0
Archived-At: <https://mailarchive.ietf.org/arch/msg/radext/DHoV0ncW5IAIAp_GzjkANglzW3g>
Subject: Re: [radext] draft-ietf-opsawg-ucl-acl: User Access Control Group ID RADIUS Attribute
X-BeenThere: radext@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: RADIUS EXTensions working group discussion list <radext.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/radext>, <mailto:radext-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/radext/>
List-Post: <mailto:radext@ietf.org>
List-Help: <mailto:radext-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/radext>, <mailto:radext-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 12 Oct 2023 15:06:13 -0000

Hi Heikki,

Thank you for catching this.

What is actually interesting is that we are discussing a PR to make the change in the other way around: https://github.com/boucadair/policy-based-network-acl/pull/20/files.

Cheers,
Med

De : radext <radext-bounces@ietf.org> De la part de Heikki Vatiainen
Envoyé : jeudi 12 octobre 2023 16:55
À : BOUCADAIR Mohamed INNOV/NET <mohamed.boucadair@orange.com>
Cc : radext@ietf.org; opsawg <opsawg@ietf.org>; draft-ma-opsawg-ucl-acl@ietf.org
Objet : Re: [radext] draft-ietf-opsawg-ucl-acl: User Access Control Group ID RADIUS Attribute

On Tue, 26 Sept 2023 at 15:01, <mohamed.boucadair@orange.com<mailto:mohamed.boucadair@orange.com>> wrote:
Hi RADEXT,

FWIW, the document specifies the following new RADIUS attribute:
https://boucadair.github.io/policy-based-network-acl/draft-ietf-opsawg-ucl-acl.html#name-user-access-control-group-i

Hello Med,

the example tables in the draft show that "Group ID" is an integer. Also, the YANG module shows that group-id has type uint32 with range "0..4294967294". If the value communicated with the new Radius attribute maps directly to a value with a uint32 type, why not use Radius type 'integer' as defined by https://datatracker.ietf.org/doc/html/rfc8044#section-3.1

This would make things easier to implementations since they would always get a matching type from the Radius layer instead of having to parse a 'string' type.

--
Heikki Vatiainen
hvn@radiatorsoftware.com<mailto:hvn@radiatorsoftware.com>
____________________________________________________________________________________________________________
Ce message et ses pieces jointes peuvent contenir des informations confidentielles ou privilegiees et ne doivent donc
pas etre diffuses, exploites ou copies sans autorisation. Si vous avez recu ce message par erreur, veuillez le signaler
a l'expediteur et le detruire ainsi que les pieces jointes. Les messages electroniques etant susceptibles d'alteration,
Orange decline toute responsabilite si ce message a ete altere, deforme ou falsifie. Merci.

This message and its attachments may contain confidential or privileged information that may be protected by law;
they should not be distributed, used or copied without authorisation.
If you have received this email in error, please notify the sender and delete this message and its attachments.
As emails may be altered, Orange is not liable for messages that have been modified, changed or falsified.
Thank you.