[17596] in Kerberos_V5_Development
Re: Getting the password in a preauth plugin
daemon@ATHENA.MIT.EDU (Greg Hudson)
Mon Apr 16 11:25:29 2012
Message-ID: <4F8C39E3.4090009@mit.edu>
Date: Mon, 16 Apr 2012 11:25:23 -0400
From: Greg Hudson <ghudson@mit.edu>
MIME-Version: 1.0
To: Yair Yarom <irush@cs.huji.ac.il>
In-Reply-To: <x8qaa2bg6q8.fsf@chopin.cs.huji.ac.il>
Cc: krbdev@mit.edu
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: krbdev-bounces@mit.edu
On 04/16/2012 09:13 AM, Yair Yarom wrote:
> In a preauth plugin, in the client process function, I want to get the
> user's password if available. I want the password itself, and if the
> user hasn't entered it yet don't prompt for it (I'll call the prompter
> later for that purpose).
> Is there a correct way to get it?
Not in the current preauth interface, and as far as I understand the
design, that's deliberate. The method you're currently using will
probably fail badly if the caller tries to authenticate with a keytab.
Can you explain more about what you're doing? We could potentially
provide a password callback in a future version of the interface, given
a good reason.
_______________________________________________
krbdev mailing list krbdev@mit.edu
https://mailman.mit.edu/mailman/listinfo/krbdev
