Fedora ticket cache location
Nico Williams
nico at cryptonector.com
Thu Jun 7 16:25:43 EDT 2012
On Thu, Jun 7, 2012 at 3:17 PM, Russ Allbery <rra at stanford.edu> wrote:
> I want to replace that hard-coded file location with something that
> respects the system configuration for where such ticket caches should be
> written. I think I need an interface where I pass in the user or the UID
> or the like and get back either a krb5_ccache or a cache identifier that I
> should use for a temporary ticket cache.
If you want to pass in a UID.. that's not portable (a username would
be OK though). And you'll probably also want to pass in a PID, PAG,
... All not portable.
I recommend an API and UI for listing the compiled-in and configured
search orders, plus an API and UI for listing the effective
ccache/keytab for the calling process. Anything beyond is OK, but
ideally we'd use string identifiers for users and sessions, else the
interfaces will be non-portable.
Nico
--
More information about the krbdev
mailing list