gssapi

package

v3.4.11 Latest Latest Go to latest Published: Apr 14, 2025 License: MIT Imports: 15 Imported by: 0

Details

Rendered for

This section is empty.

This section is empty.

func UnmarshalWrapToken(wt *gssapi.WrapToken, b []byte, expectFromAcceptor bool) error

type Client struct {
	*client.Client

	Subkey types.EncryptionKey
	// contains filtered or unexported fields
}

Client implements ldap.GSSAPIClient interface.

func NewClientFromCCache(ccachePath, krb5confPath string, settings ...func(*client.Settings)) (*Client, error)

NewClientFromCCache creates a new client from a populated client cache.

func NewClientWithKeytab(username, realm, keytabPath, krb5confPath string, settings ...func(*client.Settings)) (*Client, error)

NewClientWithKeytab creates a new client from a keytab credential. Set the realm to empty string to use the default realm from config.

func NewClientWithPassword(username, realm, password string, krb5confPath string, settings ...func(*client.Settings)) (*Client, error)

NewClientWithPassword creates a new client from a password credential. Set the realm to empty string to use the default realm from config.

func (client *Client) Close() error

Close deletes any established secure context and closes the client.

func (client *Client) DeleteSecContext() error

DeleteSecContext destroys any established secure context.

func (client *Client) InitSecContext(target string, input []byte) ([]byte, bool, error)

InitSecContext initiates the establishment of a security context for GSS-API between the client and server. See RFC 4752 section 3.1.

func (client *Client) InitSecContextWithOptions(target string, input []byte, APOptions []int) ([]byte, bool, error)

InitSecContextWithOptions initiates the establishment of a security context for GSS-API between the client and server. See RFC 4752 section 3.1.

func (client *Client) NegotiateSaslAuth(input []byte, authzid string) ([]byte, error)

NegotiateSaslAuth performs the last step of the SASL handshake. See RFC 4752 section 3.1.