Feature #2967 » 0001-mod_authn_gssapi-allow-authentication-without-delega.patch
src/mod_authn_gssapi.c | ||
---|---|---|
goto end;
|
||
}
|
||
if (!(acc_flags & GSS_C_DELEG_FLAG)) {
|
||
log_error_write(srv, __FILE__, __LINE__, "ss", "Unable to delegate credentials for user:", token_out.value);
|
||
goto end;
|
||
}
|
||
/* check the allow-rules */
|
||
if (!http_auth_match_rules(require, token_out.value, NULL, NULL)) {
|
||
ret = http_auth_match_rules(require, token_out.value, NULL, NULL);
|
||
if (!ret)
|
||
goto end;
|
||
}
|
||
ret = mod_authn_gssapi_store_gss_creds(srv, con, p, token_out.value, client_cred);
|
||
if (ret)
|
||
http_auth_setenv(con, token_out.value, token_out.length, CONST_STR_LEN("GSSAPI"));
|
||
http_auth_setenv(con, token_out.value, token_out.length, CONST_STR_LEN("GSSAPI"));
|
||
/* store delegated credentials */
|
||
if (acc_flags & GSS_C_DELEG_FLAG)
|
||
if (!(mod_authn_gssapi_store_gss_creds(srv, con, p, token_out.value, client_cred)))
|
||
log_error_write(srv, __FILE__, __LINE__, "ss", "Unable to store delegated credentials for user:", token_out.value);
|
||
end:
|
||
buffer_free(t_in);
|