Patch from Andrew bartlett via heimdal-bugs@h5l.org
commit506b98d110cb7a56570c33f779a1e5660187c5e1
authorLove Hörnquist Åstrand <lha@kth.se>
Fri, 3 Jul 2009 03:16:46 +0000 (3 03:16 +0000)
committerLove Hörnquist Åstrand <lha@kth.se>
Fri, 3 Jul 2009 03:16:46 +0000 (3 03:16 +0000)
tree4c3001af9b271d4df6d3d97e101c1d309e5f85f0
parentba04bad361de3377e0c33da5c3c23eb02394aee5
Patch from Andrew bartlett via heimdal-bugs@h5l.org

    kdc Allow a password change when the password is expired

    This requires a rework on Heimdal's windc plugin layer, as we want
    full control over what tickets Heimdal will issue.  (In particular, in
    case our requirements become more complex in future).

    The original problem was that Heimdal's check would permit the ticket,
    but Samba would then deny it, not knowing it was for kadmin/changepw

    Andrew Bartlett

git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25294 ec53bebd-3082-4978-b11e-865c3cabbd6b
kdc/headers.h
kdc/kdc_locl.h
kdc/kerberos5.c
kdc/krb5tgs.c
kdc/windc.c
kdc/windc_plugin.h