Project

General

Profile

Feature #2967 » 0001-mod_authn_gssapi-allow-authentication-without-delega.patch

lameventanas, 2019-07-17 03:07

View differences:

src/mod_authn_gssapi.c
goto end;
}
if (!(acc_flags & GSS_C_DELEG_FLAG)) {
log_error_write(srv, __FILE__, __LINE__, "ss", "Unable to delegate credentials for user:", token_out.value);
goto end;
}
/* check the allow-rules */
if (!http_auth_match_rules(require, token_out.value, NULL, NULL)) {
ret = http_auth_match_rules(require, token_out.value, NULL, NULL);
if (!ret)
goto end;
}
ret = mod_authn_gssapi_store_gss_creds(srv, con, p, token_out.value, client_cred);
if (ret)
http_auth_setenv(con, token_out.value, token_out.length, CONST_STR_LEN("GSSAPI"));
http_auth_setenv(con, token_out.value, token_out.length, CONST_STR_LEN("GSSAPI"));
/* store delegated credentials */
if (acc_flags & GSS_C_DELEG_FLAG)
if (!(mod_authn_gssapi_store_gss_creds(srv, con, p, token_out.value, client_cred)))
log_error_write(srv, __FILE__, __LINE__, "ss", "Unable to store delegated credentials for user:", token_out.value);
end:
buffer_free(t_in);
(1-1/2)