[75] in Kerberos-V5-bugs
request for change to krb5_rd_req_decoded().
daemon@ATHENA.MIT.EDU (daemon@ATHENA.MIT.EDU)
Wed Dec 12 13:07:29 1990
Date: Wed, 12 Dec 90 12:51:43 EST
From: Bill Sommerfeld <sommerfeld@apollo.com>
To: krb5-bugs@ATHENA.MIT.EDU
It would be useful to be able to pass NULL in as the server principal;
this would allow the application to accept authentication to a number
of server principals without having to decode the ap_req first to
figure out which one to use.
This would change the test at the start of the function to:
if ((server != NULL)
&& (!krb5_principal_compare(server, req->ticket->server))
return KRB5KRB_AP_WRONG_PRINC;
Currently, I have a situation where a server may run as multiple
server principals; currently, I've written a function which calls
krb5_rd_req_decoded() after doing its own decode of the ap_req; I
would much rather call krb5_rd_req() with a server of NULL.
Comments?
- Bill
