rcritten / freeipa

Forked from freeipa 6 years ago
Clone
Source Code
GIT

70889d4 rpcserver: x509_login: Handle unsuccessful certificate login gracefully

1 file Authored by dkupka 7 years ago, Committed by mbasti 7 years ago,
raw patch tree parent
1 file changed. 10 lines added. 0 lines removed.
ipaserver/rpcserver.py
file modified
+10 -0 
    rpcserver: x509_login: Handle unsuccessful certificate login gracefully
    
    When mod_lookup_identity is unable to match user by certificate (and username)
    it unsets http request's user. mod_auth_gssapi is then unable to get Kerberos
    ticket and doesn't set KRB5CCNAME environment variable.
    x509_login.__call__ now returns 401 in such case to indicate that request was
    not authenticated.
    
    https://pagure.io/freeipa/issue/6225
    
    Reviewed-By: Florence Blanc-Renaud <frenaud@redhat.com>
file modified
+10 -0
Powered by Pagure 5.14.1
DocumentationFile an IssueAboutSSH Hostkey/Fingerprint
© Red Hat, Inc. and others.