From b85668579ec3fc69c2ed709533f8bd8d00e0e7e9 Mon Sep 17 00:00:00 2001
From: "rcritten@redhat.com" <rcritten@redhat.com>
Date: Fri, 14 Sep 2007 17:19:02 -0400
Subject: Use ticket forwarding with TurboGears. mod_proxy forwards the
 principal  name and location of the keytab. In order for this keytab to be
 usable  TurboGears and Apache will need to run as the same user. We will also
 need  to listen only on localhost in TG.

---
 ipa-python/ipaclient.py | 6 ++++++
 1 file changed, 6 insertions(+)

(limited to 'ipa-python/ipaclient.py')

diff --git a/ipa-python/ipaclient.py b/ipa-python/ipaclient.py
index 86f4471b5..7095aac10 100644
--- a/ipa-python/ipaclient.py
+++ b/ipa-python/ipaclient.py
@@ -47,6 +47,12 @@ class IPAClient:
         if self.local:
             self.transport.set_principal(princ)
 
+    def set_krbccache(self,krbccache):
+        """Set the file location of the Kerberos credentials cache to be used
+           for LDAP authentication"""
+        if self.local:
+            self.transport.set_krbccache(krbccache)
+
 # User support
     def get_user_by_uid(self,uid,sattrs=None):
         """Get a specific user by uid. If sattrs is set then only those
-- 
cgit