[19061] in Kerberos
Re: Exporting/Importing credentials
daemon@ATHENA.MIT.EDU (Sam Hartman)
Mon Apr 14 15:09:16 2003
To: Il-Sung Lee <ilslee@ca.ibm.com>
From: Sam Hartman <hartmans@MIT.EDU>
Date: Mon, 14 Apr 2003 15:07:04 -0400
In-Reply-To:
<OFDF9FAB1B.5483B3AC-ON85256D08.0045AFC2-85256D08.0045B95C@torolab.ibm.com>
(Il-Sung Lee's message of "Mon, 14 Apr 2003 08:41:52 -0400")
Message-ID: <tslk7dwew4n.fsf@konishi-polis.mit.edu>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
cc: kerberos@mit.edu
Errors-To: kerberos-bounces@mit.edu
>>>>> "Il-Sung" == Il-Sung Lee <ilslee@ca.ibm.com> writes:
Il-Sung> Does anyone know how to export/import credentials using
Il-Sung> GSS-API? I was hoping that there were APIs similar to
Il-Sung> gss_export_sec_context/gss_import_sec_context for use
Il-Sung> with credentials so that I could pass the delegated
Il-Sung> credentials from one process to another. As far as I can
Il-Sung> tell, the delegated credential is only available in the
Il-Sung> memory cache of the process accepting the context.
Il-Sung> Any suggestions would be appreciated.
First, you can always export the context, import it and access the
credentials through inquiring the context. OR at least I think that
works.
If you want a mechanism that works for krb5 only you can use
GSS_DLLIMP OM_uint32 KRB5_CALLCONV gss_krb5_copy_ccache
PROTOTYPE((OM_uint32 *minor_status,
gss_cred_id_t cred_handle,
krb5_ccache out_ccache));
________________________________________________
Kerberos mailing list Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos
