windows-nim-afs-file-ccache-20070829

make the afs network identity provider compatible with FILE:
credential caches.  this is mostly of importance to 64-bit
Windows users since there is no CCAPI implementation for
64-bit KFW.

diff --git a/src/WINNT/netidmgr_plugin/afsfuncs.c b/src/WINNT/netidmgr_plugin/afsfuncs.c
index 580e875..8b80732 100644 (file)
--- a/src/WINNT/netidmgr_plugin/afsfuncs.c
+++ b/src/WINNT/netidmgr_plugin/afsfuncs.c
@@ -840,7 +840,7 @@ afs_klog(khm_handle identity,
         increds.keyblock.enctype = ENCTYPE_DES_CBC_CRC;
 
 #ifdef KRB5_TC_NOTICKET
-        flags = 0;
+        flags = KRB5_TC_OPENCLOSE;
         r = pkrb5_cc_set_flags(context, k5cc, flags);
 #endif
       retry_retcred:
@@ -891,7 +891,7 @@ afs_klog(khm_handle identity,
         pkrb5_free_principal(context, client_principal);
         client_principal = 0;
 #ifdef KRB5_TC_NOTICKET
-        flags = KRB5_TC_NOTICKET;
+        flags = KRB5_TC_OPENCLOSE | KRB5_TC_NOTICKET;
         pkrb5_cc_set_flags(context, k5cc, flags);
 #endif
 

diff --git a/src/WINNT/netidmgr_plugin/krb5common.c b/src/WINNT/netidmgr_plugin/krb5common.c
index 5475036..faaf6bc 100644 (file)
--- a/src/WINNT/netidmgr_plugin/krb5common.c
+++ b/src/WINNT/netidmgr_plugin/krb5common.c
@@ -93,7 +93,7 @@ khm_krb5_initialize(khm_handle ident,
     LPCSTR          functionName;
     int             freeContextFlag;
     krb5_error_code    rc = 0;
-    krb5_flags          flags = 0;
+    krb5_flags          flags = KRB5_TC_OPENCLOSE;
 
     if (pkrb5_init_context == NULL)
         return 1;