GSS_STORE_CRED(3GSS) | Generic Security Services API Library Functions | GSS_STORE_CRED(3GSS) |
gss_store_cred - store a credential in the current credential store
cc [ flag... ] file... -lgss [ library... ] #include <gssapi/gssapi.h> OM_uint32 gss_store_cred(OM_uint32 *minor_status,
const gss_cred_id_t input_cred, const gss_cred_usage_t cred_usage,
const gss_OID desired_mech, OM_uint32 overwrite_cred,
OM_uint32 default_cred, gss_OID_set *elements_stored,
gss_cred_usage_t *cred_usage_stored);
The parameter descriptions for gss_store_cred() follow:
input_cred
cred_usage
desired_mech
The gss_store_cred() function is not atomic when storing multiple elements of a credential. All delegated credentials, however, contain a single element.
overwrite_cred
default_cred
elements_stored
cred_usage_stored
minor_status
The gss_store_cred() function stores a credential in the current GSS-API credential store for the calling process. Input credentials can be re-acquired through gss_add_cred(3GSS) and gss_acquire_cred(3GSS).
The gss_store_cred() function is specifically intended to make delegated credentials available to a user's login session.
The gss_accept_sec_context() function can return a delegated GSS-API credential to its caller. The function does not store delegated credentials to be acquired through gss_add_cred(3GSS). Delegated credentials can be used only by a receiving process unless they are made available for acquisition by calling the gss_store_cred() function.
The Solaris Operating System supports a single GSS-API credential store per user. The current GSS-API credential store of a process is determined by its effective UID.
In general, acceptor applications should switch the current credential store by changing the effective UID before storing a delegated credential.
The gss_store_cred() can return the following status codes:
GSS_S_COMPLETE
GSS_S_CREDENTIALS_EXPIRED
GSS_S_CALL_INACCESSIBLE_READ
GSS_S_UNAVAILABLE
GSS_S_DUPLICATE_ELEMENT
GSS_S_FAILURE
See attributes(7) for descriptions of the following attributes:
ATTRIBUTE TYPE | ATTRIBUTE VALUE |
Interface Stability | Unstable |
MT-Level | Safe |
gss_accept_sec_context(3GSS), gss_acquire_cred(3GSS), gss_add_cred(3GSS), gss_init_sec_context(3GSS), gss_inquire_cred(3GSS), gss_release_cred(3GSS), gss_release_oid_set(3GSS), attributes(7)
Solaris Security for Developers Guide
April 9, 2016 | OmniOS |