(renew_validate): inherit the proxiable and forwardable from the
orignal ticket, pointed out by Bernard Antoine of CERN. git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17962 ec53bebd-3082-4978-b11e-865c3cabbd6b
This commit is contained in:
		| @@ -364,7 +364,7 @@ renew_validate(krb5_context context, | |||||||
| 	       krb5_deltat life) | 	       krb5_deltat life) | ||||||
| { | { | ||||||
|     krb5_error_code ret; |     krb5_error_code ret; | ||||||
|     krb5_creds in, *out; |     krb5_creds in, *out = NULL; | ||||||
|     krb5_kdc_flags flags; |     krb5_kdc_flags flags; | ||||||
|  |  | ||||||
|     memset(&in, 0, sizeof(in)); |     memset(&in, 0, sizeof(in)); | ||||||
| @@ -379,18 +379,40 @@ renew_validate(krb5_context context, | |||||||
| 	krb5_warn(context, ret, "get_server"); | 	krb5_warn(context, ret, "get_server"); | ||||||
| 	goto out; | 	goto out; | ||||||
|     } |     } | ||||||
|  |  | ||||||
|  |     if (renew) { | ||||||
|  | 	/*  | ||||||
|  | 	 * no need to check the error here, its only to be  | ||||||
|  | 	 * friendly to the user | ||||||
|  | 	 */ | ||||||
|  | 	krb5_get_credentials(context, KRB5_GC_CACHED, cache, &in, &out); | ||||||
|  |     } | ||||||
|  |  | ||||||
|     flags.i = 0; |     flags.i = 0; | ||||||
|     flags.b.renewable         = flags.b.renew = renew; |     flags.b.renewable         = flags.b.renew = renew; | ||||||
|     flags.b.validate          = validate; |     flags.b.validate          = validate; | ||||||
|  |  | ||||||
|     if (forwardable_flag != -1) |     if (forwardable_flag != -1) | ||||||
| 	flags.b.forwardable       = forwardable_flag; | 	flags.b.forwardable       = forwardable_flag; | ||||||
|  |     else if (out) | ||||||
|  | 	flags.b.forwardable 	  = out->flags.b.forwardable; | ||||||
|  |  | ||||||
|     if (proxiable_flag != -1) |     if (proxiable_flag != -1) | ||||||
| 	flags.b.proxiable         = proxiable_flag; | 	flags.b.proxiable         = proxiable_flag; | ||||||
|  |     else if (out) | ||||||
|  | 	flags.b.proxiable 	  = out->flags.b.proxiable; | ||||||
|  |  | ||||||
|     if (anonymous_flag != -1) |     if (anonymous_flag != -1) | ||||||
| 	flags.b.request_anonymous = anonymous_flag; | 	flags.b.request_anonymous = anonymous_flag; | ||||||
|     if(life) |     if(life) | ||||||
| 	in.times.endtime = time(NULL) + life; | 	in.times.endtime = time(NULL) + life; | ||||||
|  |  | ||||||
|  |     if (out) { | ||||||
|  | 	krb5_free_creds (context, out); | ||||||
|  | 	out = NULL; | ||||||
|  |     } | ||||||
|  |  | ||||||
|  |  | ||||||
|     ret = krb5_get_kdc_cred(context, |     ret = krb5_get_kdc_cred(context, | ||||||
| 			    cache, | 			    cache, | ||||||
| 			    flags, | 			    flags, | ||||||
|   | |||||||
		Reference in New Issue
	
	Block a user
	 Love Hörnquist Åstrand
					Love Hörnquist Åstrand