diff options
author | Andrew Bartlett <abartlet@samba.org> | 2010-03-03 13:24:52 +1100 |
---|---|---|
committer | Andrew Bartlett <abartlet@samba.org> | 2010-04-10 21:40:58 +1000 |
commit | aecaddfa1b2a55c9cc91c3644947c3686714ceb5 (patch) | |
tree | 17f1d17c318c284d5f68af80ea3bc7fd6a3bafee /source4/auth/kerberos/kerberos.h | |
parent | 18f0e24f5573611c983d2d5d37409fa77b199dd5 (diff) | |
download | samba-aecaddfa1b2a55c9cc91c3644947c3686714ceb5.tar.gz samba-aecaddfa1b2a55c9cc91c3644947c3686714ceb5.tar.bz2 samba-aecaddfa1b2a55c9cc91c3644947c3686714ceb5.zip |
s4:credentials Add the functions needed to do S4U2Self with cli_credentials
A torture test to demonstrate will be added soon.
Andrew Bartlett
Diffstat (limited to 'source4/auth/kerberos/kerberos.h')
-rw-r--r-- | source4/auth/kerberos/kerberos.h | 15 |
1 files changed, 11 insertions, 4 deletions
diff --git a/source4/auth/kerberos/kerberos.h b/source4/auth/kerberos/kerberos.h index 498da0f9c2..992b509dbf 100644 --- a/source4/auth/kerberos/kerberos.h +++ b/source4/auth/kerberos/kerberos.h @@ -88,11 +88,13 @@ krb5_error_code ads_krb5_mk_req(krb5_context context, krb5_ccache ccache, krb5_data *outbuf); bool get_auth_data_from_tkt(TALLOC_CTX *mem_ctx, DATA_BLOB *auth_data, krb5_ticket *tkt); -int kerberos_kinit_password_cc(krb5_context ctx, krb5_ccache cc, - krb5_principal principal, const char *password, - time_t *expire_time, time_t *kdc_time); -int kerberos_kinit_keyblock_cc(krb5_context ctx, krb5_ccache cc, +krb5_error_code kerberos_kinit_password_cc(krb5_context ctx, krb5_ccache cc, + krb5_principal principal, const char *password, + krb5_principal impersonate_principal, const char *target_service, + time_t *expire_time, time_t *kdc_time); +krb5_error_code kerberos_kinit_keyblock_cc(krb5_context ctx, krb5_ccache cc, krb5_principal principal, krb5_keyblock *keyblock, + const char *target_service, time_t *expire_time, time_t *kdc_time); krb5_principal kerberos_fetch_salt_princ_for_host_princ(krb5_context context, krb5_principal host_princ, @@ -107,6 +109,11 @@ char *smb_get_krb5_error_message(krb5_context context, krb5_error_code code, TAL struct smb_krb5_context *smb_krb5_context, krb5_ccache ccache, const char **error_string); +krb5_error_code impersonate_principal_from_credentials(TALLOC_CTX *parent_ctx, + struct cli_credentials *credentials, + struct smb_krb5_context *smb_krb5_context, + krb5_principal *princ, + const char **error_string); krb5_error_code principal_from_credentials(TALLOC_CTX *parent_ctx, struct cli_credentials *credentials, struct smb_krb5_context *smb_krb5_context, |