| commit | 162b4199493c1f179e775a325a19ae7a136c418b | |
| author | Stefan Metzmacher <metze@samba.org> | |
| Fri, 13 Sep 2019 14:04:30 +0000 (13 16:04 +0200) | ||
| committer | Günther Deschner <gd@samba.org> | |
| Tue, 24 Sep 2019 18:30:37 +0000 (24 18:30 +0000) | ||
| tree | 87cc2d194bf7823d38737acdc7ed0634e400bc6a | treesnapshot (tar.gz zip) |
| parent | 5d0bf32ec0ad21d49587e3a1520ffdc8b5ae7614 | commitdiff |
s4:auth: kinit_to_ccache() should always use the canonicalized principal
We should always use krb5_get_init_creds_opt_set_canonicalize()
and krb5_get_init_creds_opt_set_win2k() for heimdal
and expect the client principal to be changed.
There's no reason to have a different logic between MIT and Heimdal.
BUG: https://bugzilla.samba.org/show_bug.cgi?id=14124
Signed-off-by: Stefan Metzmacher <metze@samba.org>
Reviewed-by: Guenther Deschner <gd@samba.org>
We should always use krb5_get_init_creds_opt_set_canonicalize()
and krb5_get_init_creds_opt_set_win2k() for heimdal
and expect the client principal to be changed.
There's no reason to have a different logic between MIT and Heimdal.
BUG: https://bugzilla.samba.org/show_bug.cgi?id=14124
Signed-off-by: Stefan Metzmacher <metze@samba.org>
Reviewed-by: Guenther Deschner <gd@samba.org>
| source4/auth/kerberos/kerberos_util.c | diffblobblamehistory |