The OpenNET Project / Index page

[ новости /+++ | форум | теги | ]

Интерактивная система просмотра системных руководств (man-ов)

 ТемаНаборКатегория 
 
 [Cписок руководств | Печать]

krb5_verify_user (3)
  • >> krb5_verify_user (3) ( FreeBSD man: Библиотечные вызовы )

  • BSD mandoc
    HEIMDAL  

    NAME

    krb5_verify_user
    
     
    krb5_verify_user_lrealm
    
     
    krb5_verify_user_opt
    
     
    krb5_verify_opt_init
    
    krb5_verify_opt_set_flags
    
     
    krb5_verify_opt_set_service
    
     
    krb5_verify_opt_set_secure
    
     
    krb5_verify_opt_set_keytab
    
     - Heimdal password verifying functions.
    
     
    

    LIBRARY

    Kerberos 5 Library (libkrb5, -lkrb5)
     
    

    SYNOPSIS

       #include <krb5.h>
    krb5_error_code krb5_verify_user (krb5_context context krb5_principal principal krb5_ccache ccache const char *password krb5_boolean secure const char *service);
    krb5_error_code krb5_verify_user_lrealm (krb5_context context krb5_principal principal krb5_ccache ccache const char *password krb5_boolean secure const char *service);
    void krb5_verify_opt_init (krb5_verify_opt *opt);
    void krb5_verify_opt_set_ccache (krb5_verify_opt *opt krb5_ccache ccache);
    void krb5_verify_opt_set_keytab (krb5_verify_opt *opt krb5_keytab keytab);
    void krb5_verify_opt_set_secure (krb5_verify_opt *opt krb5_boolean secure);
    void krb5_verify_opt_set_service (krb5_verify_opt *opt const char *service);
    void krb5_verify_opt_set_flags (krb5_verify_opt *opt unsigned int flags);
    krb5_error_code Fo krb5_verify_user_opt Fa krb5_context context Fa krb5_principal principal Fa const char *password Fa krb5_verify_opt *opt Fc  

    DESCRIPTION

    The krb5_verify_user function verifies the password supplied by a user. The principal whose password will be verified is specified in Fa principal . New tickets will be obtained as a side-effect and stored in Fa ccache (if NULL the default ccache is used). krb5_verify_user ();
    will call krb5_cc_initialize ();
    on the given Fa ccache , so Fa ccache must only initialized with krb5_cc_resolve ();
    or krb5_cc_gen_new (.);
    If the password is not supplied in Fa password (and is given as NULL the user will be prompted for it. If Fa secure the ticket will be verified against the locally stored service key Fa service (by default `host' if given as NULL ).

    The krb5_verify_user_lrealm function does the same, except that it ignores the realm in Fa principal and tries all the local realms (see krb5.conf5). After a successful return, the principal is set to the authenticated realm. If the call fails, the principal will not be meaningful, and should only be freed with krb5_free_principal3.

    krb5_verify_opt_init ();
    resets all opt to default values.

    None of the krb5_verify_opt_set function makes a copy of the data structure that they are called with. Its up the caller to free them after the krb5_verify_user_opt ();
    is called.

    krb5_verify_opt_set_ccache ();
    sets the Fa ccache that user of Fa opt will use. If not set, the default credential cache will be used.

    krb5_verify_opt_set_keytab ();
    sets the Fa keytab that user of Fa opt will use. If not set, the default keytab will be used.

    krb5_verify_opt_set_secure ();
    if Fa secure if true, the password verification will require that the ticket will be verified against the locally stored service key. If not set, default value is true.

    krb5_verify_opt_set_service ();
    sets the Fa service principal that user of Fa opt will use. If not set, the `host' service will be used.

    krb5_verify_opt_set_flags ();
    sets Fa flags that user of Fa opt will use. If the flag KRB5_VERIFY_LREALMS is used, the Fa principal will be modified like krb5_verify_user_lrealm ();
    modifies it.

    krb5_verify_user_opt ();
    function verifies the Fa password supplied by a user. The principal whose password will be verified is specified in Fa principal . Options the to the verification process is pass in in Fa opt .  

    EXAMPLE

    Here is a example program that verifies a password. it uses the `host/`hostname`' service principal in krb5.keytab
    #include <krb5.h>
    
    int
    main(int argc, char **argv)
    {
        char *user;
        krb5_error_code error;
        krb5_principal princ;
        krb5_context context;
    
        if (argc != 2)
            errx(1, "usage: verify_passwd <principal-name>");
    
        user = argv[1];
    
        if (krb5_init_context(&context) < 0)
            errx(1, "krb5_init_context");
    
        if ((error = krb5_parse_name(context, user, &princ)) != 0)
            krb5_err(context, 1, error, "krb5_parse_name");
    
        error = krb5_verify_user(context, princ, NULL, NULL, TRUE, NULL);
        if (error)
            krb5_err(context, 1, error, "krb5_verify_user");
    
        return 0;
    }
    
     

    SEE ALSO

    krb5_err3, krb5_cc_gen_new3, krb5_cc_resolve3, krb5_cc_initialize3, krb5_free_principal3, krb5_init_context3, krb5_kt_default3, krb5.conf5


     

    Index

    NAME
    LIBRARY
    SYNOPSIS
    DESCRIPTION
    EXAMPLE
    SEE ALSO


    Поиск по тексту MAN-ов: 




    Партнёры:
    PostgresPro
    Inferno Solutions
    Hosting by Hoster.ru
    Хостинг:

    Закладки на сайте
    Проследить за страницей
    Created 1996-2024 by Maxim Chirkov
    Добавить, Поддержать, Вебмастеру