Check for cross realm case where remove user doesn't exists in the

database, this is ok assuming the cross realm isn't local. In the
general case this isn't true.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17807 ec53bebd-3082-4978-b11e-865c3cabbd6b
This commit is contained in:
Love Hörnquist Åstrand
2006-07-06 15:50:31 +00:00
parent ce5ef410ee
commit 2a2b91e51b

View File

@@ -95,6 +95,7 @@ ${kadmin} ext -k ${keytab} ${ps} || exit 1
${kadmin} add -p kaka --use-defaults ${server2}@${R2} || exit 1
${kadmin} ext -k ${keytab} ${server2}@${R2} || exit 1
${kadmin} add -p foo --use-defaults remove2@${R2} || exit 1
${kadmin} add -p cross1 --use-defaults krbtgt/${R2}@${R} || exit 1
${kadmin} add -p cross2 --use-defaults krbtgt/${R}@${R2} || exit 1
@@ -192,6 +193,13 @@ echo "try getting ticket with deleted user"
${kgetcred} ${server}@${R} 2> /dev/null && exitcode=1
${kdestroy}
echo "cross realm case (removed user)"
${kinit} --password-file=${objdir}/foopassword remove2@$R2 || exitcode=1
${kgetcred} krbtgt/${R}@${R2} 2> /dev/null || exitcode=1
${kadmin} delete remove2@${R2} || exit 1
${kgetcred} ${server}@${R} 2> /dev/null || exitcode=1
${kdestroy}
#echo deleting all but aes enctypes on krbtgt
#${kadmin} del_enctype krbtgt/${R}@${R} ${enctype_sans_aes} || exit 1
#