IPA KDB: allow case in-sensitive realm in AS request

If the canonicalization flag is set the realm of the client principal in an AS request (kinit) is transformed into upper-case to match the IPA convention for realm names. Resolves https://fedorahosted.org/freeipa/ticket/4844
author: Sumit Bose <sbose@redhat.com> 2015-07-28 11:00:41 +0200
committer: Alexander Bokovoy <abokovoy@redhat.com> 2015-08-10 09:39:13 +0000
commit: 43833ccbca01c8892409586b5e8381de2096ac1b (patch)
tree: 7d1832c25192be45b69e9c62ea3be5b5ea287aa4 /daemons/ipa-kdb/ipa_kdb_principals.c
parent: c906784ded416eec70704a07e3923601fe509927 (diff)
download: freeipa-43833ccbca01c8892409586b5e8381de2096ac1b.tar.gz
freeipa-43833ccbca01c8892409586b5e8381de2096ac1b.tar.xz
freeipa-43833ccbca01c8892409586b5e8381de2096ac1b.zip
1 files changed, 2 insertions, 1 deletions
diff --git a/daemons/ipa-kdb/ipa_kdb_principals.c b/daemons/ipa-kdb/ipa_kdb_principals.c
index b3f8b1ad7..5fb280d62 100644
--- a/daemons/ipa-kdb/ipa_kdb_principals.c
+++ b/daemons/ipa-kdb/ipa_kdb_principals.c
@@ -788,7 +788,8 @@ static krb5_error_code ipadb_fetch_principals(struct ipadb_context *ipactx,
 
     /* escape filter but do not touch '*' as this function accepts
      * wildcards in names */
-    esc_original_princ = ipadb_filter_escape(principal, false);
+    esc_original_princ = ipadb_filter_escape(principal, false,
+                                             (flags & KRB5_KDB_FLAG_ALIAS_OK));
     if (!esc_original_princ) {
         kerr = KRB5_KDB_INTERNAL_ERROR;
         goto done;
author	Sumit Bose <sbose@redhat.com>	2015-07-28 11:00:41 +0200
committer	Alexander Bokovoy <abokovoy@redhat.com>	2015-08-10 09:39:13 +0000
commit	43833ccbca01c8892409586b5e8381de2096ac1b (patch)
tree	7d1832c25192be45b69e9c62ea3be5b5ea287aa4 /daemons/ipa-kdb/ipa_kdb_principals.c
parent	c906784ded416eec70704a07e3923601fe509927 (diff)
download	freeipa-43833ccbca01c8892409586b5e8381de2096ac1b.tar.gz freeipa-43833ccbca01c8892409586b5e8381de2096ac1b.tar.xz freeipa-43833ccbca01c8892409586b5e8381de2096ac1b.zip