jdk-sandbox: comparison src/java.security.jgss/share/classes/sun/security/jgss/krb5/Krb5InitCredential.java

equal deleted inserted replaced

-:94710bb2a5bb
+:53ddf218eddd
 private static final long serialVersionUID = 7723415700837898232L;
 private Krb5NameElement name;
 private Credentials krb5Credentials;
+public KerberosTicket proxyTicket;
 private Krb5InitCredential(Krb5NameElement name,
 byte[] asn1Encoding,
 KerberosPrincipal client,
 KerberosPrincipal clientAlias,
 .getJavaxSecurityAuthKerberosAccess()
 .kerberosTicketGetClientAlias(tgt);
 KerberosPrincipal serverAlias = KerberosSecrets
 .getJavaxSecurityAuthKerberosAccess()
 .kerberosTicketGetServerAlias(tgt);
-return new Krb5InitCredential(name,
+Krb5InitCredential result = new Krb5InitCredential(name,
 tgt.getEncoded(),
 tgt.getClient(),
 clientAlias,
 tgt.getServer(),
 serverAlias,
 tgt.getAuthTime(),
 tgt.getStartTime(),
 tgt.getEndTime(),
 tgt.getRenewTill(),
 tgt.getClientAddresses());
+result.proxyTicket = KerberosSecrets.getJavaxSecurityAuthKerberosAccess().
+kerberosTicketGetProxy(tgt);
+return result;
 }
 static Krb5InitCredential getInstance(Krb5NameElement name,
 Credentials delegatedCred)
 throws GSSException {
 return AccessController.doPrivileged(
 new PrivilegedExceptionAction<KerberosTicket>() {
 public KerberosTicket run() throws Exception {
 // It's OK to use null as serverPrincipal. TGT is almost
 // the first ticket for a principal and we use list.
-return Krb5Util.getTicket(
+return Krb5Util.getInitialTicket(
 realCaller,
-clientPrincipal, null, acc);
+clientPrincipal, acc);
 }});
 } catch (PrivilegedActionException e) {
 GSSException ge =
 new GSSException(GSSException.NO_CRED, -1,
 "Attempt to obtain new INITIATE credentials failed!" +

changeset 58611	53ddf218eddd
parent 57487	643978a35f6e
child 58638	7be56b2ac50d