/*
* Dolda Connect - Modular multiuser Direct Connect-style client
- * Copyright (C) 2004 Fredrik Tolf (fredrik@dolda2000.com)
+ * Copyright (C) 2004 Fredrik Tolf <fredrik@dolda2000.com>
*
* This program is free software; you can redistribute it and/or modify
* it under the terms of the GNU General Public License as published by
data->renewtimer = timercallback(good, (void (*)(int, void *))renewcreds, data);
}
-static int krbauth(struct authhandle *auth, char *passdata)
+static int krbauth(struct authhandle *auth, struct socket *sk, char *passdata)
{
int ret;
struct krb5data *data;
}
if((ret = krb5_cc_resolve(k5context, buf, &data->ccache)) != 0)
{
- flog(LOG_ERR, "could not resolve ccache name \"%s\": %s", buf2, error_message(ret));
+ flog(LOG_ERR, "could not resolve ccache name \"%s\": %s", buf, error_message(ret));
return(AUTH_ERR);
}
setenv("KRB5CCNAME", buf, 1);
static struct configvar myvars[] =
{
+ /** The name of the service principal to use for Kerberos V
+ * authentication. */
{CONF_VAR_STRING, "service", {.str = L"doldacond"}},
+ /** The path to an alternative keytab file. If unspecified, the
+ * system default keytab will be used. */
{CONF_VAR_STRING, "keytab", {.str = L""}},
+ /** Whether to renew renewable credentials automatically before
+ * they expire. */
{CONF_VAR_BOOL, "renewcreds", {.num = 1}},
+ /** If true, the default credentials cache will be used, which is
+ * useful for e.g. Linux kernel key handling. If false, a file
+ * credentials cache will be created using mkstemp(3), using the
+ * pattern /tmp/krb5cc_dc_$UID_XXXXXX. */
{CONF_VAR_BOOL, "usedefcc", {.num = 0}},
{CONF_VAR_END}
};