Using the rkerberos gem to authenticate a user with a working Kerberos set up and store the credentials in the default file cache. Doesn't s

8/4/2016 - 7:10 PM

Using the rkerberos gem to authenticate a user with a working Kerberos set up and store the credentials in the default file cache. Doesn't s

Using the rkerberos gem to authenticate a user with a working Kerberos set up and store the credentials in the default file cache. Doesn't seem to add anything for my typical use case and, in fact, we lose some capability compared with k5start and the kstart package.

rkerberos.rb

# Assumes a working krb5 setup with /etc/krb5.conf.

# Doesn't seeem to work without username and realm.
cc = Kerberos::Krb5::CredentialsCache.new('jslatter@JSLATTERY.ORG')
# /tmp/krb5cc_1000 now exists. klist just shows principals.

k = Kerberos::Krb5.new
k.get_init_creds_keytab('jslatter', 'krb5.keytab', nil, cc)
# klist shows creds.

cc.destroy
# /tmp/krb5cc_1000 is gone.

Cacher is the code snippet organizer for pro developers

We empower you and your team to get more done, faster

Using the rkerberos gem to authenticate a user with a working Kerberos set up and store the credentials in the default file cache. Doesn't s