[30830] in Kerberos
Re: WS-Security and GSS-API: How do I get the session key?
daemon@ATHENA.MIT.EDU (Luke Howard)
Sun Mar 8 23:51:00 2009
Message-Id: <3A3A185F-E900-4742-9D32-5F1736E662A2@padl.com>
From: Luke Howard <lukeh@padl.com>
To: Max (Weijun) Wang <Weijun.Wang@Sun.COM>
In-Reply-To: <C417AF39-2EE2-4496-92B6-F8BAF8569E56@Sun.COM>
Mime-Version: 1.0 (Apple Message framework v930.3)
Date: Mon, 9 Mar 2009 14:49:23 +1100
Cc: kerberos@mit.edu
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: kerberos-bounces@mit.edu
On 09/03/2009, at 1:45 PM, Max (Weijun) Wang wrote:
>> gss_krb5_get_tkt_flags()
>> gsskrb5_extract_authz_data_from_sec_context()
>> gsskrb5_extract_authtime_from_sec_context()
>
> I guess the tkt or authXXX above are all for the intial TGT (instead
> of any service ticket). Right?
The service ticket; the service does not have the TGT (although the
KDC may use the TGT in deriving those values).
-- Luke
________________________________________________
Kerberos mailing list Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos
