git.samba.org - gd/samba-autobuild/.git/commit

author	Isaac Boukris <iboukris@gmail.com>
	Tue, 14 Jan 2020 12:16:02 +0000 (13:16 +0100)
committer	Andrew Bartlett <abartlet@samba.org>
	Fri, 12 Jun 2020 22:10:34 +0000 (22:10 +0000)
commit	7655a0298e5f55582bf48ec776d8cd8b79fb5dd9
tree	1abcfe59214e12c600478ad13e5fc082a70e936c	tree
parent	fb7dfdbe8f94f7f053d67832e7f28a751136d733	commit \| diff

db-glue.c: set forwardable flag on cross-realm tgt tickets

BUG: https://bugzilla.samba.org/show_bug.cgi?id=14233

Match Windows behavior and allow the forwardable flag to be
set in cross-realm tickets. We used to allow forwardable to
any server, but now that we apply disallow-forwardable policy
in heimdal we need to explicitly allow in the corss-realm case
(and remove the workaround we have for it the MIT plugin).

Signed-off-by: Isaac Boukris <iboukris@samba.org>
Reviewed-by: Andreas Schneider <asn@samba.org>
Reviewed-by: Andrew Bartlett <abartlet@samba.org>
Autobuild-User(master): Andrew Bartlett <abartlet@samba.org>
Autobuild-Date(master): Fri Jun 12 22:10:34 UTC 2020 on sn-devel-184

selftest/knownfail.d/s4u2p_fwd	[deleted file]	blob \| history
selftest/knownfail.d/xrealm	[deleted file]	blob \| history
source4/kdc/db-glue.c		diff \| blob \| history
source4/kdc/mit_samba.c		diff \| blob \| history