2  * Tests for the alt_auth_map functionality in libpam-krb5.
7  * avoid requiring user configuration).
14  * SPDX-License-Identifier: BSD-3-clause or GPL-1+
31     char *user;  in main()  local
35      * principal as extra[0] and use something else bogus as the user.  We  in main()
37      * between the mapped principal and the user.  in main()
41     config.user = "bogus-nonexistent-account";  in main()
42     config.authtok = krbconf->password;  in main()
43     config.extra[0] = krbconf->username;  in main()
44     config.extra[1] = krbconf->userprinc;  in main()
48      * that we can be sure that our principals will stay fully-qualified in  in main()
56     run_script("data/scripts/alt-auth/basic", &config);  in main()
57     run_script("data/scripts/alt-auth/basic-debug", &config);  in main()
58     run_script("data/scripts/alt-auth/fail", &config);  in main()
59     run_script("data/scripts/alt-auth/fail-debug", &config);  in main()
60     run_script("data/scripts/alt-auth/force", &config);  in main()
61     run_script("data/scripts/alt-auth/only", &config);  in main()
66      * we don't need two principals configured.  in main()
69     run_script("data/scripts/alt-auth/force-fail-debug", &config);  in main()
72      * Switch to our correct user (but wrong realm) realm to test username  in main()
75     config.authtok = krbconf->password;  in main()
76     config.user = krbconf->username;  in main()
77     config.extra[2] = krbconf->realm;  in main()
78     run_script("data/scripts/alt-auth/username-map", &config);  in main()
81      * Split the username into two parts, one in the PAM configuration and one  in main()
85     config.user = &krbconf->username[1];  in main()
86     user = bstrndup(krbconf->username, 1);  in main()
87     config.extra[3] = user;  in main()
88     run_script("data/scripts/alt-auth/username-map-prefix", &config);  in main()
89     free(user);  in main()
96     basprintf(&user, "%s@foo.example.com", krbconf->username);  in main()
97     config.user = user;  in main()
98     diag("re-running username-map with fully-qualified PAM user");  in main()
99     run_script("data/scripts/alt-auth/username-map", &config);  in main()
100     free(user);  in main()
103      * Add the password and make the user match our authentication principal,  in main()
107     config.user = krbconf->userprinc;  in main()
108     config.password = krbconf->password;  in main()
109     config.extra[2] = krbconf->realm;  in main()
110     run_script("data/scripts/alt-auth/fallback", &config);  in main()
111     run_script("data/scripts/alt-auth/fallback-debug", &config);  in main()
112     run_script("data/scripts/alt-auth/fallback-realm", &config);  in main()
113     run_script("data/scripts/alt-auth/force-fallback", &config);  in main()
114     run_script("data/scripts/alt-auth/only-fail", &config);  in main()