Love Hörnquist Åstrand lha at
Thu Jul 23 18:16:06 MDT 2009

23 jul 2009 kl. 13:56 skrev Stefan (metze) Metzmacher:

> Hi Love,
> from reading the source code using
> gss_export_sec_context() and gss_import_sec_context()
> will loose the delegated credentials information.
> Is that a bug or a feature?

Unless, I think its a feature.

> Is there any other way to transfer the delegated credentials
> via a DATA_BLOB to another process?

gss_store_cred() might help you (not implemented in heimdal yet)

There is no protable way to do this that works for all mechs.

gss_krb5_copy_ccache() + gss_krb5_import_cred() will partly get you  

If you want a gss_export_cred() we should probably make one.


More information about the samba-technical mailing list