summaryrefslogtreecommitdiffstats
path: root/src/providers/krb5/krb5_common.c
diff options
context:
space:
mode:
authorJan Zeleny <jzeleny@redhat.com>2011-10-19 03:27:47 -0400
committerStephen Gallagher <sgallagh@redhat.com>2011-11-02 14:10:30 -0400
commit7dfc7617085c403d30debe9f08d4c9bcca322744 (patch)
treefa23c5b6037c2178f48c938eae9d940f9d9d2646 /src/providers/krb5/krb5_common.c
parent20c187339201a95558a9b237af37b461665d9340 (diff)
downloadsssd-7dfc7617085c403d30debe9f08d4c9bcca322744.tar.gz
sssd-7dfc7617085c403d30debe9f08d4c9bcca322744.tar.xz
sssd-7dfc7617085c403d30debe9f08d4c9bcca322744.zip
Add support to request canonicalization on krb AS requests
https://fedorahosted.org/sssd/ticket/957
Diffstat (limited to 'src/providers/krb5/krb5_common.c')
-rw-r--r--src/providers/krb5/krb5_common.c9
1 files changed, 8 insertions, 1 deletions
diff --git a/src/providers/krb5/krb5_common.c b/src/providers/krb5/krb5_common.c
index 4e792861b..4675e0a1f 100644
--- a/src/providers/krb5/krb5_common.c
+++ b/src/providers/krb5/krb5_common.c
@@ -45,7 +45,8 @@ struct dp_option default_krb5_opts[] = {
{ "krb5_lifetime", DP_OPT_STRING, NULL_STRING, NULL_STRING },
{ "krb5_renew_interval", DP_OPT_NUMBER, NULL_NUMBER, NULL_NUMBER },
{ "krb5_use_fast", DP_OPT_STRING, NULL_STRING, NULL_STRING },
- { "krb5_fast_principal", DP_OPT_STRING, NULL_STRING, NULL_STRING }
+ { "krb5_fast_principal", DP_OPT_STRING, NULL_STRING, NULL_STRING },
+ { "krb5_canonicalize", DP_OPT_BOOL, BOOL_FALSE, BOOL_FALSE }
};
errno_t check_and_export_lifetime(struct dp_option *opts, const int opt_id,
@@ -169,6 +170,12 @@ errno_t check_and_export_options(struct dp_option *opts,
}
}
+ if (dp_opt_get_bool(opts, KRB5_CANONICALIZE)) {
+ setenv(SSSD_KRB5_CANONICALIZE, "true", 1);
+ } else {
+ setenv(SSSD_KRB5_CANONICALIZE, "false", 1);
+ }
+
dummy = dp_opt_get_cstring(opts, KRB5_KDC);
if (dummy == NULL) {
DEBUG(1, ("No KDC explicitly configured, using defaults.\n"));