Lines Matching full:be
27 /* XXX the next three should not be used, as they may be
83 specified can be determined correctly from system configuration or
86 of the structure should be used. In most cases, a NULL pointer can be
92 and will not be doing any other kerberos functions, then a NULL
93 pointer may be specified, and the credential will be destroyed.
95 If the client name is non-NULL, the initial ticket requested will be
96 for that principal. Otherwise, the principal will be the username
102 Otherwise, the prompter function will be used to prompt the user for
105 If a prompter function is non-NULL, it will be used if additional user
107 needs to be changed, or if input preauthentication is necessary. If
113 function and is intended to be used to pass application data
118 expired and must be changed" or "Enter Activcard response for
119 challenge 012345678"), and should be displayed accordingly.
122 should be prompted for. If num_prompts == 0, then the banner
123 contains an informational message which should be displayed to
127 for which the user should be prompted. The prompt member
130 hidden member is nonzero if the response should not be
138 value which will be returned by the krb5_get_init_creds
139 function. Otherwise, zero should be returned.
145 If the start_time is zero, then the requested ticket will be valid
147 the future the ticket should be postdated.
149 If the in_tkt_service name is non-NULL, that principal name will be
151 the name specified will be ignored and will be set to the realm of the
153 krbtgt/CLIENT-REALM@CLIENT-REALM will be used.
155 For the rest of arguments, a configuration or library default will be
158 If a tkt_life is specified, that will be the lifetime of the ticket.
160 (there should be, but it's not there now).
163 on the ticket will be set, and the value of the argument will be the
169 be set if and only if forwardable is non-zero. The configuration
171 The option will be set if and only if the variable is "y", "yes",
175 If proxiable is specified, the PROXIABLE option on the ticket will be
178 option will be set if and only if the variable is "y", "yes", "true",
182 If etype_list is specified, it will be used as the list of desired
187 If address_list is specified, it will be used as the list of addresses
188 for which the ticket will be valid. The library default is to use all
192 be included in the request. The library default is to interact with
196 If salt is specified, it specifies the salt which will be used when
225 If the ap_req_server name is non-NULL, then this service name will be
227 (host/hostname.domain@LOCAL-REALM) will be used.
230 will be read from that keytab; otherwise, the service key will be read
234 for the AP_REQ, then this ticket will be used directly. If the ticket
235 is a tgt, then it will be used to obtain credentials for the service.
238 Other failures of the AP_REQ verification may or may not be considered
243 obtained in the course of verifying the user will be returned. In
247 will be added to the existing ccache. If the caller only wishes to
248 verify the password and will not be doing any other kerberos
249 functions, then a NULL pointer may be specified, and the credentials
250 will be deleted before the function returns.
262 can be decrypted and verified.
266 can be overridden by the application based on a command line flag or
268 the admin is concerned that DNS might be spoofed while determining the
281 programs will use. Of course, error checking needs to be added.
341 getting an in_tkt, if the password is expired, the request should be
343 If this says expired, too, then the password should be changed, and
344 then the initial ticket request should be issued to the master again.
346 and cannot be changed due to the master being unreachable should be