This modification causes ceod to add the Kerberos principal.
It returns an error code to ceoc, which I will now fix.
This commit is contained in:
parent
dcc2222816
commit
b7b4105e51
36
src/kadm.c
36
src/kadm.c
|
@ -36,22 +36,42 @@ void ceo_kadm_cleanup() {
|
||||||
|
|
||||||
int ceo_add_princ(char *user, char *password) {
|
int ceo_add_princ(char *user, char *password) {
|
||||||
krb5_error_code retval;
|
krb5_error_code retval;
|
||||||
krb5_principal princ;
|
|
||||||
memset((void *) &princ, 0, sizeof(princ));
|
|
||||||
|
|
||||||
debug("kadmin: adding principal %s", user);
|
debug("kadmin: adding principal %s", user);
|
||||||
|
|
||||||
if ((retval = krb5_parse_name(context, user, &princ))) {
|
// Added March 2012: Change behavior of ceod to add the kerberos principal.
|
||||||
com_err(prog, retval, "while parsing principal name");
|
kadm5_policy_ent_rec defpol;
|
||||||
|
kadm5_principal_ent_rec princ;
|
||||||
|
|
||||||
|
memset((void*) &princ, 0, sizeof(princ));
|
||||||
|
|
||||||
|
if ((retval = kadm5_get_policy(handle, "default", &defpol))) {
|
||||||
|
com_err(prog, retval, "while retrieving default policy");
|
||||||
|
return retval;
|
||||||
|
}
|
||||||
|
kadm5_free_policy_ent(handle, &defpol);
|
||||||
|
|
||||||
|
princ.policy = "default";
|
||||||
|
|
||||||
|
if ((retval = krb5_parse_name(context, user, &princ.principal))) {
|
||||||
|
com_err(prog, retval, "while parsing user name");
|
||||||
return retval;
|
return retval;
|
||||||
}
|
}
|
||||||
|
|
||||||
if ((retval = kadm5_chpass_principal(handle, princ, password))) {
|
long flags = KADM5_POLICY | KADM5_PRINCIPAL;
|
||||||
com_err(prog, retval, "while creating principal");
|
if ((retval = kadm5_create_principal(handle, &princ, flags, password))) {
|
||||||
return retval;
|
if(retval == KADM5_DUP) {
|
||||||
|
if ((retval = kadm5_chpass_principal(handle, princ.principal, password))) {
|
||||||
|
com_err(prog, retval, "while setting principal password");
|
||||||
|
return retval;
|
||||||
|
}
|
||||||
|
} else {
|
||||||
|
com_err(prog, retval, "while creating principal");
|
||||||
|
return retval;
|
||||||
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
krb5_free_principal(context, princ);
|
krb5_free_principal(context, princ.principal);
|
||||||
return 0;
|
return 0;
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|
Loading…
Reference in New Issue