Check for cross realm case where remove user doesn't exists in the
database, this is ok assuming the cross realm isn't local. In the general case this isn't true. git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17807 ec53bebd-3082-4978-b11e-865c3cabbd6b
This commit is contained in:
@@ -95,6 +95,7 @@ ${kadmin} ext -k ${keytab} ${ps} || exit 1
|
||||
|
||||
${kadmin} add -p kaka --use-defaults ${server2}@${R2} || exit 1
|
||||
${kadmin} ext -k ${keytab} ${server2}@${R2} || exit 1
|
||||
${kadmin} add -p foo --use-defaults remove2@${R2} || exit 1
|
||||
|
||||
${kadmin} add -p cross1 --use-defaults krbtgt/${R2}@${R} || exit 1
|
||||
${kadmin} add -p cross2 --use-defaults krbtgt/${R}@${R2} || exit 1
|
||||
@@ -192,6 +193,13 @@ echo "try getting ticket with deleted user"
|
||||
${kgetcred} ${server}@${R} 2> /dev/null && exitcode=1
|
||||
${kdestroy}
|
||||
|
||||
echo "cross realm case (removed user)"
|
||||
${kinit} --password-file=${objdir}/foopassword remove2@$R2 || exitcode=1
|
||||
${kgetcred} krbtgt/${R}@${R2} 2> /dev/null || exitcode=1
|
||||
${kadmin} delete remove2@${R2} || exit 1
|
||||
${kgetcred} ${server}@${R} 2> /dev/null || exitcode=1
|
||||
${kdestroy}
|
||||
|
||||
#echo deleting all but aes enctypes on krbtgt
|
||||
#${kadmin} del_enctype krbtgt/${R}@${R} ${enctype_sans_aes} || exit 1
|
||||
#
|
||||
|
Reference in New Issue
Block a user