oysteikt/heimdal
0
0
Fork 0
Code Issues 5 Pull Requests Releases Activity

hdb: add no-auth-data-reqd flag to HDB entry

Browse Source 
Add a new flag, no-auth-data-reqd, to the HDB entry which indicates that a PAC
should not be included on issued service tickets.
This commit is contained in:
Luke Howard
2021-12-23 13:24:10 +11:00
parent 317df4dbd4
commit 0165633964
7 changed files with 26 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
kadmin/kadmin.1
View File

@@ -423,7 +423,8 @@ Possible attributes are:
.Li disallow-renewable ,
.Li disallow-tgt-based ,
.Li disallow-forwardable ,
.Li disallow-postdated
.Li disallow-postdated ,
.Li no-auth-data-reqd
.Pp
Attributes may be negated with a "-", e.g.,
.Pp

1
kadmin/util.c
View File

@@ -69,6 +69,7 @@ struct units kdb_attrs[] = {
{ "disallow-tgt-based", KRB5_KDB_DISALLOW_TGT_BASED },
{ "disallow-forwardable", KRB5_KDB_DISALLOW_FORWARDABLE },
{ "disallow-postdated", KRB5_KDB_DISALLOW_POSTDATED },
{ "no-auth-data-reqd", KRB5_KDB_NO_AUTH_DATA_REQUIRED },
{ NULL, 0 }
};