From fc3e8c660d98b134767c574d899528dfd29d7a16 Mon Sep 17 00:00:00 2001
From: Greg Hudson <ghudson@mit.edu>
Date: Tue, 24 Jul 2012 16:26:27 -0400
Subject: Add token expansion for keytab names

Make the default_keytab_name and default_client_keytab_name variables
subject to parameter expansion.

ticket: 7219 (new)
---
 src/tests/t_keytab.py | 16 ++++++++++++++++
 1 file changed, 16 insertions(+)

(limited to 'src/tests')

diff --git a/src/tests/t_keytab.py b/src/tests/t_keytab.py
index 8d73636c8..f8cea68d4 100644
--- a/src/tests/t_keytab.py
+++ b/src/tests/t_keytab.py
@@ -40,4 +40,20 @@ output = realm.run_kadminl('getprinc %s' % princ)
 if 'Key: vno 258,' not in output:
     fail('Expected vno not seen in kadmin.local output')
 
+# Test parameter expansion in profile variables
+realm.stop()
+conf = {'client': {'libdefaults': {
+            'default_keytab_name': 'testdir/%{null}abc%{uid}',
+            'default_client_keytab_name': 'testdir/%{null}xyz%{uid}'}}}
+realm = K5Realm(krb5_conf=conf, create_kdb=False)
+del realm.env_client['KRB5_KTNAME']
+del realm.env_client['KRB5_CLIENT_KTNAME']
+uidstr = str(os.getuid())
+out = realm.run_as_client([klist, '-k'], expected_code=1)
+if 'FILE:testdir/abc%s' % uidstr not in out:
+    fail('Wrong keytab in klist -k output')
+out = realm.run_as_client([klist, '-ki'], expected_code=1)
+if 'FILE:testdir/xyz%s' % uidstr not in out:
+    fail('Wrong keytab in klist -ki output')
+
 success('Keytab-related tests')
-- 
cgit