Expose KADM5_TL_DATA options to the client.
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@15884 ec53bebd-3082-4978-b11e-865c3cabbd6b
This commit is contained in:
Love Hörnquist Åstrand
@@ -1,5 +1,5 @@
|
|||||||
/*
|
/*
|
||||||
* Copyright (c) 1997, 1998, 1999 Kungliga Tekniska H<>gskolan
|
* Copyright (c) 1997 - 2005 Kungliga Tekniska H<>gskolan
|
||||||
* (Royal Institute of Technology, Stockholm, Sweden).
|
* (Royal Institute of Technology, Stockholm, Sweden).
|
||||||
* All rights reserved.
|
* All rights reserved.
|
||||||
*
|
*
|
||||||
@@ -35,6 +35,35 @@
|
|||||||
|
|
||||||
RCSID("$Id$");
|
RCSID("$Id$");
|
||||||
|
|
||||||
|
static kadm5_ret_t
|
||||||
|
add_tl_data(kadm5_principal_ent_t ent, int16_t type,
|
||||||
|
const void *data, size_t size)
|
||||||
|
{
|
||||||
|
krb5_tl_data *tl;
|
||||||
|
|
||||||
|
tl = calloc(1, sizeof(*tl));
|
||||||
|
if (tl == NULL)
|
||||||
|
return _kadm5_error_code(ENOMEM);
|
||||||
|
|
||||||
|
tl->tl_data_type = type;
|
||||||
|
tl->tl_data_length = size;
|
||||||
|
tl->tl_data_contents = malloc(size);
|
||||||
|
if (tl->tl_data_contents == NULL) {
|
||||||
|
free(tl);
|
||||||
|
return _kadm5_error_code(ENOMEM);
|
||||||
|
}
|
||||||
|
memcpy(tl->tl_data_contents, data, size);
|
||||||
|
|
||||||
|
tl->tl_data_next = ent->tl_data;
|
||||||
|
ent->tl_data = tl;
|
||||||
|
ent->n_tl_data++;
|
||||||
|
|
||||||
|
return 0;
|
||||||
|
}
|
||||||
|
|
||||||
|
krb5_ssize_t KRB5_LIB_FUNCTION
|
||||||
|
_krb5_put_int(void *buffer, unsigned long value, size_t size); /* XXX */
|
||||||
|
|
||||||
kadm5_ret_t
|
kadm5_ret_t
|
||||||
kadm5_s_get_principal(void *server_handle,
|
kadm5_s_get_principal(void *server_handle,
|
||||||
krb5_principal princ,
|
krb5_principal princ,
|
||||||
@@ -183,8 +212,35 @@ kadm5_s_get_principal(void *server_handle,
|
|||||||
kadm5_free_principal_ent(context, out);
|
kadm5_free_principal_ent(context, out);
|
||||||
goto out;
|
goto out;
|
||||||
}
|
}
|
||||||
if(mask & KADM5_TL_DATA)
|
if(mask & KADM5_TL_DATA) {
|
||||||
/* XXX implement */;
|
time_t last_pw_expire;
|
||||||
|
|
||||||
|
ret = hdb_entry_get_pw_change_time(&ent, &last_pw_expire);
|
||||||
|
if (ret == 0 && last_pw_expire) {
|
||||||
|
unsigned char buf[4];
|
||||||
|
_krb5_put_int(buf, last_pw_expire, sizeof(buf));
|
||||||
|
ret = add_tl_data(out, KRB5_TL_LAST_PWD_CHANGE, buf, sizeof(buf));
|
||||||
|
}
|
||||||
|
if(ret){
|
||||||
|
kadm5_free_principal_ent(context, out);
|
||||||
|
goto out;
|
||||||
|
}
|
||||||
|
/*
|
||||||
|
* If the client was allowed to get key data, let it have the
|
||||||
|
* password too.
|
||||||
|
*/
|
||||||
|
if(mask & KADM5_KEY_DATA) {
|
||||||
|
heim_utf8_string pw;
|
||||||
|
|
||||||
|
ret = hdb_entry_get_password(context->context,
|
||||||
|
context->db, &ent, &pw);
|
||||||
|
if (ret == 0) {
|
||||||
|
ret = add_tl_data(out, KRB5_TL_PASSWORD, pw, strlen(pw) + 1);
|
||||||
|
free(pw);
|
||||||
|
}
|
||||||
|
ret = 0;
|
||||||
|
}
|
||||||
|
}
|
||||||
out:
|
out:
|
||||||
hdb_free_entry(context->context, &ent);
|
hdb_free_entry(context->context, &ent);
|
||||||
|
|
||||||
|
|||||||
Reference in New Issue
Block a user