Feature #2967 » 0001-mod_authn_gssapi-allow-authentication-without-delega.patch
| src/mod_authn_gssapi.c | ||
|---|---|---|
|
goto end;
|
||
|
}
|
||
|
if (!(acc_flags & GSS_C_DELEG_FLAG)) {
|
||
|
log_error_write(srv, __FILE__, __LINE__, "ss", "Unable to delegate credentials for user:", token_out.value);
|
||
|
goto end;
|
||
|
}
|
||
|
/* check the allow-rules */
|
||
|
if (!http_auth_match_rules(require, token_out.value, NULL, NULL)) {
|
||
|
ret = http_auth_match_rules(require, token_out.value, NULL, NULL);
|
||
|
if (!ret)
|
||
|
goto end;
|
||
|
}
|
||
|
ret = mod_authn_gssapi_store_gss_creds(srv, con, p, token_out.value, client_cred);
|
||
|
if (ret)
|
||
|
http_auth_setenv(con, token_out.value, token_out.length, CONST_STR_LEN("GSSAPI"));
|
||
|
http_auth_setenv(con, token_out.value, token_out.length, CONST_STR_LEN("GSSAPI"));
|
||
|
/* store delegated credentials */
|
||
|
if (acc_flags & GSS_C_DELEG_FLAG)
|
||
|
if (!(mod_authn_gssapi_store_gss_creds(srv, con, p, token_out.value, client_cred)))
|
||
|
log_error_write(srv, __FILE__, __LINE__, "ss", "Unable to store delegated credentials for user:", token_out.value);
|
||
|
end:
|
||
|
buffer_free(t_in);
|
||