tmakinen/puppet
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Fixed keytab generation when key number is over 10 and improved checking of principals in keytab.

Browse source
This commit is contained in:
Timo Mkinen 2012-04-18 17:32:19 +03:00
parent 594c24a174
commit 9def142f98
1 changed files with 6 additions and 6 deletions
Download patch file Download diff file Expand all files Collapse all files

10
kerberos/templates/keytab.erb
View file

@ -20,17 +20,17 @@ def check_keytab(config, keytab, principals)
entries = [] entries = []
IO.popen(sprintf('%s -k %s', config['klist'], keytab), mode='r') { |f| IO.popen(sprintf('%s -k %s', config['klist'], keytab), mode='r') { |f|
f.readlines.each do |l| f.readlines.each do |l|
next unless l =~ / \d+ .*/ next unless l =~ /[ ]+\d+ .*/
entries << l.split()[1] entries << l.split()[1]
end end
} }
t = principals & entries.uniq principals.each do |p|
if t.size != principals.size if not entries.include?(p)
return false return false
else
return true
end end
end end
return true
end
# check if we have cached keytab up to date # check if we have cached keytab up to date