On Fri, Jul 22, 2011 at 12:03 AM, Chris Hecker <[email protected]> wrote: >> I don't think any u2u stuff is stored in a krb5_context. Can you be >> more specific about what you're seeing here? > > I'm not seeing anything yet, since I'm still trying to figure out how > I'm going to do this by playing around with the sample apps. I think > I'm getting confused between krb5_context and krb5_auth_context, I'm not > totally clear on how they relate or depend on one another...
krb5_context is just a caller context that must be passed to practically all krb5 APIs. krb5_auth_context is the raw krb5 API equivalent of GSS' gss_sec_context_t -- it represents an authenticated channel between two end-points. > Okay, so if I krb5_get_credentials on the KDC thread, I can then use > them in the main thread with a different context... Yes, pretty much. Nico -- ________________________________________________ Kerberos mailing list [email protected] https://mailman.mit.edu/mailman/listinfo/kerberos
