From ca2b6259b7f0787eb372b56076e63413f530ec12 Mon Sep 17 00:00:00 2001 From: Andrew Bartlett Date: Thu, 24 May 2012 13:36:20 +1000 Subject: s4-selftest: Demonstrate the correct behaviour between specified usernames and kerberos ccache This shows that a username/password on the command line must always override any credentials cache in the environment. Andrew Bartlett --- testprogs/blackbox/test_passwords.sh | 8 ++++++++ 1 file changed, 8 insertions(+) (limited to 'testprogs') diff --git a/testprogs/blackbox/test_passwords.sh b/testprogs/blackbox/test_passwords.sh index fe8386dd34..822f0fbee6 100755 --- a/testprogs/blackbox/test_passwords.sh +++ b/testprogs/blackbox/test_passwords.sh @@ -72,6 +72,14 @@ testit "kinit with user password" $samba4kinit --password-file=./tmpuserpassfile test_smbclient "Test login with user kerberos ccache" 'ls' -k yes || failed=`expr $failed + 1` +# +# These tests demonstrate that a credential cache in the environment does not +# override a username/password, even an incorrect one, on the command line +# + +testit_expect_failure "Test login with user kerberos ccache, but wrong password specified" $VALGRIND $smbclient //$SERVER/tmp -c 'ls' -k yes -Unettestuser@$REALM%wrongpass && failed=`expr $failed + 1` +testit_expect_failure "Test login with user kerberos ccache, but old password specified" $VALGRIND $smbclient //$SERVER/tmp -c 'ls' -k yes -Unettestuser@$REALM%$USERPASS && failed=`expr $failed + 1` + USERPASS=$NEWUSERPASS WEAKPASS=testpass1 -- cgit