rlm_krb5.c File Reference

Authenticate users, retrieving their TGT from a Kerberos V5 TDC. More...

#include <freeradius-devel/server/base.h>
#include <freeradius-devel/server/module_rlm.h>
#include <freeradius-devel/util/debug.h>
#include "krb5.h"

Include dependency graph for rlm_krb5.c:

Go to the source code of this file.

Macros
#define	LOG_PREFIX   inst->name

Functions
static rlm_rcode_t	krb5_parse_user (krb5_principal *client, KRB5_UNUSED rlm_krb5_t const *inst, request_t *request, krb5_context context)
	Common function for transforming a User-Name string into a principal. More...
static rlm_rcode_t	krb5_process_error (rlm_krb5_t const *inst, request_t *request, rlm_krb5_handle_t *conn, int ret)
	Log error message and return appropriate rcode. More...
static unlang_action_t	mod_authenticate (rlm_rcode_t *p_result, module_ctx_t const *mctx, request_t *request)
static int	mod_detach (module_detach_ctx_t const *mctx)
static int	mod_instantiate (module_inst_ctx_t const *mctx)

Variables
static fr_dict_attr_t const *	attr_user_name
static fr_dict_attr_t const *	attr_user_password
static fr_dict_t const *	dict_radius
static const conf_parser_t	module_config []
module_rlm_t	rlm_krb5
fr_dict_autoload_t	rlm_krb5_dict []
fr_dict_attr_autoload_t	rlm_krb5_dict_attr []

Detailed Description

Authenticate users, retrieving their TGT from a Kerberos V5 TDC.

Id

033f6148c216b1211ebc6f88ef4d121c50c44441

Copyright

2000,2006,2012-2013 The FreeRADIUS server project

2013 Arran Cudbard-Bell (a.cud.nosp@m.bard.nosp@m.b@fre.nosp@m.erad.nosp@m.ius.o.nosp@m.rg)

2000 Nathan Neulinger (nneul.nosp@m.@umr.nosp@m..edu)

2000 Alan DeKok (aland.nosp@m.@fre.nosp@m.eradi.nosp@m.us.o.nosp@m.rg)

Definition in file rlm_krb5.c.

Macro Definition Documentation

LOG_PREFIX

#define LOG_PREFIX   inst->name

Definition at line 29 of file rlm_krb5.c.

Function Documentation

krb5_parse_user()

static rlm_rcode_t krb5_parse_user ( krb5_principal *  client, KRB5_UNUSED rlm_krb5_t const *  inst, request_t *  request, krb5_context  context  )

static

Common function for transforming a User-Name string into a principal.

Parameters

[out]	client	Where to write the client principal.
[in]	inst	of rlm_krb5.
[in]	request	Current request.
[in]	context	Kerberos context.

Definition at line 241 of file rlm_krb5.c.

Here is the call graph for this function:

Here is the caller graph for this function:

krb5_process_error()

static rlm_rcode_t krb5_process_error ( rlm_krb5_t const *  inst, request_t *  request, rlm_krb5_handle_t *  conn, int  ret  )

static

Log error message and return appropriate rcode.

Translate kerberos error codes into return codes.

Parameters

inst	of rlm_krb5.
request	Current request.
ret	code from kerberos.
conn	used in the last operation.

Definition at line 284 of file rlm_krb5.c.

Here is the call graph for this function:

Here is the caller graph for this function:

mod_authenticate()

static unlang_action_t mod_authenticate ( rlm_rcode_t *  p_result, module_ctx_t const *  mctx, request_t *  request  )

static

Definition at line 409 of file rlm_krb5.c.

Here is the call graph for this function:

mod_detach()

static int mod_detach ( module_detach_ctx_t const *  mctx )

static

Definition at line 60 of file rlm_krb5.c.

Here is the call graph for this function:

mod_instantiate()

static int mod_instantiate ( module_inst_ctx_t const *  mctx )

static

Definition at line 82 of file rlm_krb5.c.

Here is the call graph for this function:

Variable Documentation

attr_user_name

fr_dict_attr_t const* attr_user_name

static

Definition at line 50 of file rlm_krb5.c.

attr_user_password

fr_dict_attr_t const* attr_user_password

static

Definition at line 51 of file rlm_krb5.c.

dict_radius

fr_dict_t const* dict_radius

static

Definition at line 42 of file rlm_krb5.c.

module_config

const conf_parser_t module_config[]

static

Initial value:

= {
        { FR_CONF_OFFSET("keytab", rlm_krb5_t, keytabname) },
        { FR_CONF_OFFSET("service_principal", rlm_krb5_t, service_princ) },
        CONF_PARSER_TERMINATOR
}

Definition at line 36 of file rlm_krb5.c.

rlm_krb5

module_rlm_t rlm_krb5

Initial value:

= {
        .common = {
                .magic          = MODULE_MAGIC_INIT,
                .name           = "krb5",
                
 
                .flags          = MODULE_TYPE_THREAD_UNSAFE,
 
                .inst_size      = sizeof(rlm_krb5_t),
                .config         = module_config,
                .instantiate    = mod_instantiate,
                .detach         = mod_detach
        },
        .method_group = {
                .bindings = (module_method_binding_t[]){
                        { .section = SECTION_NAME("authenticate", CF_IDENT_ANY), .method = mod_authenticate },
                        MODULE_BINDING_TERMINATOR
                }
        }
}

Definition at line 492 of file rlm_krb5.c.

rlm_krb5_dict

fr_dict_autoload_t rlm_krb5_dict

Initial value:

= {
        { .out = &dict_radius, .proto = "radius" },
        { NULL }
}

Definition at line 45 of file rlm_krb5.c.

rlm_krb5_dict_attr

fr_dict_attr_autoload_t rlm_krb5_dict_attr

Initial value:

= {
        { .out = &attr_user_name, .name = "User-Name", .type = FR_TYPE_STRING, .dict = &dict_radius },
        { .out = &attr_user_password, .name = "User-Password", .type = FR_TYPE_STRING, .dict = &dict_radius },
        { NULL }
}

Definition at line 54 of file rlm_krb5.c.