RFC (patches are untested!)
If a client tries to call init_sec_context directly without explicitly acquiring credentials first, try to see if we can automatically acquire credentials on our own.
This will work only in some cases, when impersonation is allowed or when a client keytab is available for the matching uid.
Simo.
On Wed, 2013-11-13 at 20:22 -0500, Simo Sorce wrote:
RFC (patches are untested!)
This patches have been fully tested now.
Simo.
If a client tries to call init_sec_context directly without explicitly acquiring credentials first, try to see if we can automatically acquire credentials on our own.
This will work only in some cases, when impersonation is allowed or when a client keytab is available for the matching uid.
Simo.
gss-proxy mailing list gss-proxy@lists.fedorahosted.org https://lists.fedorahosted.org/mailman/listinfo/gss-proxy
Reviewed and pushed to master.
Thanks!
Guenther
On 19/11/13 22:10, Simo Sorce wrote:
On Wed, 2013-11-13 at 20:22 -0500, Simo Sorce wrote:
RFC (patches are untested!)
This patches have been fully tested now.
Simo.
If a client tries to call init_sec_context directly without explicitly acquiring credentials first, try to see if we can automatically acquire credentials on our own.
This will work only in some cases, when impersonation is allowed or when a client keytab is available for the matching uid.
Simo.
gss-proxy mailing list gss-proxy@lists.fedorahosted.org https://lists.fedorahosted.org/mailman/listinfo/gss-proxy
gss-proxy@lists.fedorahosted.org
-
Günther Deschner -
Simo Sorce