[Heimdal-source-changes] [heimdal/heimdal] 750a09: kx509: Create certs for principals with slashes
GitHub
noreply at github.com
Ons Dec 4 20:08:03 CET 2013
Branch: refs/heads/master
Home: https://github.com/heimdal/heimdal
Commit: 750a09bca2183415be3ca3b8784e3417f484794b
https://github.com/heimdal/heimdal/commit/750a09bca2183415be3ca3b8784e3417f484794b
Author: James Lee <jlee at thestaticvoid.com>
Date: 2013-12-04 (Wed, 04 Dec 2013)
Changed paths:
M kdc/kx509.c
Log Message:
-----------
kx509: Create certs for principals with slashes
kx509 fails to create certs for principals with slashes in them. For
example:
client% kinit foo/admin
foo/admin at EXAMPLE.COM's Password:
client% kx509
Timed out waiting on KCA
The KCA reports: "Principal is not a user." However, there is a use
case set out in this post:
https://thestaticvoid.com/post/2012/10/25/protecting-puppet-with-kerberos/
that would create a kx509 cert for a host principal for authenticating
against a secure HTTP service. This commit modifies the certificate
creation code to allow principals with slashes in them.
Commit: 9e86558ed44b3205b0d3f2d9c1af99b3a8ed1616
https://github.com/heimdal/heimdal/commit/9e86558ed44b3205b0d3f2d9c1af99b3a8ed1616
Author: Love Hörnquist Åstrand <lha at h5l.org>
Date: 2013-12-04 (Wed, 04 Dec 2013)
Changed paths:
M kdc/kx509.c
Log Message:
-----------
Merge pull request #50 from MrStaticVoid/kx509-allow-slash-in-principal-name
kx509: Create certs for principals with slashes
Compare: https://github.com/heimdal/heimdal/compare/6b2ebfcf8a8a...9e86558ed44b
More information about the Heimdal-source-changes
mailing list