summaryrefslogtreecommitdiff
path: root/source3/librpc/crypto/gse.h
diff options
context:
space:
mode:
authorAndrew Bartlett <abartlet@samba.org>2011-04-16 15:41:50 +1000
committerAndrew Bartlett <abartlet@samba.org>2011-04-27 11:56:48 +1000
commit6ec4306f8c3fed7ec5b5bd164c5829b2661589b7 (patch)
tree5384aed4fe934eb82f7487cfc12f9c220ba5184d /source3/librpc/crypto/gse.h
parente130dec97bb4e08b11f39c1c1382f0c8ad36ef67 (diff)
downloadsamba-6ec4306f8c3fed7ec5b5bd164c5829b2661589b7.tar.gz
samba-6ec4306f8c3fed7ec5b5bd164c5829b2661589b7.tar.bz2
samba-6ec4306f8c3fed7ec5b5bd164c5829b2661589b7.zip
auth/kerberos: Create common helper to get the verified PAC from GSSAPI
This only works for Heimdal and MIT Krb5 1.8, other versions will get an ACCESS_DEINED error. We no longer manually verify any details of the PAC in Samba for GSSAPI logins, as we never had the information to do it properly, and it is better to have the GSSAPI library handle it. Andrew Bartlett
Diffstat (limited to 'source3/librpc/crypto/gse.h')
-rw-r--r--source3/librpc/crypto/gse.h3
1 files changed, 2 insertions, 1 deletions
diff --git a/source3/librpc/crypto/gse.h b/source3/librpc/crypto/gse.h
index fbcf5b6e10..27cc2e9255 100644
--- a/source3/librpc/crypto/gse.h
+++ b/source3/librpc/crypto/gse.h
@@ -56,7 +56,8 @@ NTSTATUS gse_get_client_name(struct gse_context *gse_ctx,
TALLOC_CTX *mem_ctx, char **client_name);
NTSTATUS gse_get_authz_data(struct gse_context *gse_ctx,
TALLOC_CTX *mem_ctx, DATA_BLOB *pac);
-NTSTATUS gse_get_authtime(struct gse_context *gse_ctx, time_t *authtime);
+NTSTATUS gse_get_pac_blob(struct gse_context *gse_ctx,
+ TALLOC_CTX *mem_ctx, DATA_BLOB *pac_blob);
size_t gse_get_signature_length(struct gse_context *gse_ctx,
int seal, size_t payload_size);