Lines with "=" in krb5.conf
Weijun Wang
weijun.wang at oracle.com
Tue Jan 15 09:12:47 EST 2019
Hi All,
We (Java SE at Oracle) received a bug report that Java cannot deal with krb5.conf containing the following lines:
[realms]
ATHENA.MIT.EDU = {
auth_to_local = {
RULE:[2:$1](johndoe)s/^.*$/guest/
RULE:[2:$1;$2](^.*;admin$)s/;admin$//
RULE:[2:$2](^.*;root)s/^.*$/root/
DEFAULT
}
}
Is this legal? I tried it with the latest MIT krb5 and saw a "krb5kdc: Improper format of Kerberos configuration file while initializing krb5" error.
Or does any other krb5 vendor support this format?
Thanks,
Max
More information about the krbdev
mailing list