| commit | 1b7e196e6608816d18ed81c6fff0383263877478 | |
| author | Luke Howard <lukeh@padl.com> | |
| Sat, 5 Jan 2019 04:36:50 +0000 (5 15:36 +1100) | ||
| committer | Luke Howard <lukeh@padl.com> | |
| Sat, 5 Jan 2019 04:51:11 +0000 (5 15:51 +1100) | ||
| tree | b9c3befcd599934e5692b11941f09b52e413023f | treesnapshot (tar.gz zip) |
| parent | c6232299c3b2831d5d8ecf701fcd286ae509fba8 | commitdiff |
kdc: move more name canonicalization logic to KDC
Enterprise principal client names in AS-REQs should always be canonicalized
irrespective of the setting the canonicalize KDC option. Perform this check in
the KDC rather than HDB.
Do not set the HDB_F_GET_KRBTGT flag unless the client actually requested a TGS
principal.
Enterprise principal client names in AS-REQs should always be canonicalized
irrespective of the setting the canonicalize KDC option. Perform this check in
the KDC rather than HDB.
Do not set the HDB_F_GET_KRBTGT flag unless the client actually requested a TGS
principal.
| kdc/kerberos5.c | diffblobblamehistory | |
| lib/hdb/common.c | diffblobblamehistory |