James Hodgkinson
James Hodgkinson
IIRC backups are handled because it's all done in a transaction or something like that, I know I called it out at the time..
As in what happens if we take a pragma lock and the process?
As long as the client can somehow infer the requirements from the server that'd make sense. It's possible that clients would be connecting to multiple kanidm instances with their own...
It's ugly but it works... I'll poke at this over the weekend and do some human errors. ``` cred update (? for help) # : pass New password: [hidden] Confirm...
That's the plan :D
On this topic, is there an easy-ish way of doing this with transforms/existing tooling today?
mTLS isn't impossible, especially since we're looking to move to axum at some point - there's mention of `rustls` support and it should be doable with OpenSSL as well.
Oh, I didn't say it was *easy* but optional client cert auth (at least in the rustls implementation) is [a flag]( https://docs.rs/rustls/latest/rustls/server/struct.AllowAnyAnonymousOrAuthenticatedClient.html). There's an [example axum implementation](https://github.com/ttys3/rust-mtls-axum-example/blob/45d07d3545a1affeeaf854dc6c4d1d7b3417c5fd/src/main.rs#L121). With Axum it'd...
@psjm3 please open a new issue with details for this one
Is this still being worked on, or can we close the PR for now?