Love Hörnquist Åstrand
lha at kth.se
Thu Jul 23 18:16:06 MDT 2009
23 jul 2009 kl. 13:56 skrev Stefan (metze) Metzmacher:
> Hi Love,
> from reading the source code using
> gss_export_sec_context() and gss_import_sec_context()
> will loose the delegated credentials information.
> Is that a bug or a feature?
Unless, I think its a feature.
> Is there any other way to transfer the delegated credentials
> via a DATA_BLOB to another process?
gss_store_cred() might help you (not implemented in heimdal yet)
There is no protable way to do this that works for all mechs.
gss_krb5_copy_ccache() + gss_krb5_import_cred() will partly get you
If you want a gss_export_cred() we should probably make one.
More information about the samba-technical