oysteikt/heimdal
0
0
Fork 0
Code Issues 5 Pull Requests Releases Activity

test cross realm and deleted user

Browse Source 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17605 ec53bebd-3082-4978-b11e-865c3cabbd6b
This commit is contained in:
Love Hörnquist Åstrand
2006-06-01 17:53:00 +00:00
parent 049a354efd
commit 168c9202f3
1 changed files with 33 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

33
tests/kdc/check-kdc.in
View File

@@ -38,6 +38,7 @@ srcdir="@srcdir@"
objdir="@objdir@" objdir="@objdir@"
R=EXAMPLE.ORG R=EXAMPLE.ORG
R2=EXAMPLE.COM
port=8888 port=8888
@@ -45,6 +46,7 @@ kadmin="../../kadmin/kadmin -l -r $R"
kdc="../../kdc/kdc --addresses=localhost -P $port" kdc="../../kdc/kdc --addresses=localhost -P $port"
server=host/datan.example.org server=host/datan.example.org
server2=host/computer.example.com
cache="FILE:${objdir}/cache.krb5" cache="FILE:${objdir}/cache.krb5"
keytabfile=${objdir}/server.keytab keytabfile=${objdir}/server.keytab
keytab="FILE:${keytabfile}" keytab="FILE:${keytabfile}"
@@ -71,11 +73,25 @@ ${kadmin} \
--realm-max-renewable-life=1month \ --realm-max-renewable-life=1month \
${R} || exit 1 ${R} || exit 1
${kadmin} \
init \
--realm-max-ticket-life=1day \
--realm-max-renewable-life=1month \
${R2} || exit 1
${kadmin} add -p foo --use-defaults foo@${R} || exit 1 ${kadmin} add -p foo --use-defaults foo@${R} || exit 1
${kadmin} add -p bar --use-defaults bar@${R} || exit 1 ${kadmin} add -p bar --use-defaults bar@${R} || exit 1
${kadmin} add -p foo --use-defaults remove@${R} || exit 1
${kadmin} add -p kaka --use-defaults ${server}@${R} || exit 1 ${kadmin} add -p kaka --use-defaults ${server}@${R} || exit 1
${kadmin} ext -k ${keytab} ${server}@${R} || exit 1 ${kadmin} ext -k ${keytab} ${server}@${R} || exit 1
${kadmin} add -p kaka --use-defaults ${server2}@${R2} || exit 1
${kadmin} ext -k ${keytab} ${server2}@${R2} || exit 1
${kadmin} add -p cross1 --use-defaults krbtgt/${R2}@${R} || exit 1
${kadmin} add -p cross2 --use-defaults krbtgt/${R}@${R2} || exit 1
${ktutil} -k ${keytab} list > tempfile || exit 1 ${ktutil} -k ${keytab} list > tempfile || exit 1
grep -ve '^FILE:' tempfile | grep -ve '^Vno' | \ grep -ve '^FILE:' tempfile | grep -ve '^Vno' | \
awk '/1/ !~ $1 { exit 1 }' || exit 1 awk '/1/ !~ $1 { exit 1 }' || exit 1
@@ -99,6 +115,13 @@ fi
exitcode=0 exitcode=0
echo "initial tickets for deleted user test case"
${kinit} --password-file=${objdir}/foopassword remove@$R || exitcode=1
${kadmin} delete remove@${R} || exit 1
echo "try getting ticket with deleted user"
${kgetcred} ${server}@${R} && exitcode=1
${kdestroy}
echo "Getting client initial tickets" echo "Getting client initial tickets"
${kinit} --password-file=${objdir}/foopassword foo@$R || exitcode=1 ${kinit} --password-file=${objdir}/foopassword foo@$R || exitcode=1
echo "Getting tickets" echo "Getting tickets"
@@ -128,6 +151,16 @@ for a in $enctypes; do
done done
${kdestroy} ${kdestroy}
echo "Getting client initial tickets for cross realm case"
${kinit} --password-file=${objdir}/foopassword foo@$R || exitcode=1
for a in $enctypes; do
echo "Getting cross realm tickets ($a)"
${kgetcred} -e $a ${server2}@${R2} || exitcode=1
./ap-req ${server2}@${R2} ${keytab} ${cache} || exitcode=1
${kdestroy} --credential=${server2}@${R2}
done
${kdestroy}
echo "try all permutations" echo "try all permutations"
for a in $enctypes; do for a in $enctypes; do
echo "Getting client initial tickets ($a)" echo "Getting client initial tickets ($a)"