[1642] in Kerberos_V5_Development
default admin acl name
daemon@ATHENA.MIT.EDU (Barry Jaspan)
Tue Aug 27 12:53:21 1996
Date: Tue, 27 Aug 1996 12:53:16 -0400
From: "Barry Jaspan" <bjaspan@MIT.EDU>
To: krbdev@MIT.EDU
Ted and I discussed last night that all relations read from kdc.conf
by the admin system should have defaults such that it is never
necessary to set any particular field in kdc.conf. I agree with this
basic premise, and am now changing the kadm5 api spec to conform with
it.
I would like to add some #defines to osconf.h for this purpose. In
particular, DEFAULT_KADM5_ACL_FILE, DEFAULT_KADM5_KEYTAB,
DEFAULT_KADM5_DICT_FILE, DEFAULT_KADM5_PORT. All the paths will be
"$prefix/lib/krb5kdc/kadm5.<thing>", parallel to the current defaults.
I think these should go in krb5/include/osconf.h, and not in a kadm5
include file, to keep all site defaults in one place and so that we do
not have to post-process yet another header file.
As a side comment, some of the defaults in osconf.h have a KRB5_
prefix, and others do not. All or none should, but fixing this is
IMHO not a priority.
Comments?
Barry
