SASL_AUTHORIZE_T(3SASL) | Simple Authentication Security Layer Library Functions | SASL_AUTHORIZE_T(3SASL) |
sasl_authorize_t - the SASL authorization callback
cc [ flag ... ] file ... -lsasl [ library ... ] #include <sasl/sasl.h> int sasl_authorize_t(sasl_conn_t *conn, const char *requested_user,
unsigned alen, const char* auth_identity, unsigned rlen,
const char *def_realm, unsigned urlen, struct propctx *propctx);
sasl_authorize_t() is a typedef function prototype that defines the interface associated with the SASL_CB_PROXY_POLICY callback.
Use the sasl_authorize_t() interface to check whether the authorized user auth_identity can act as the user requested_user. For example, the user root may want to authenticate with root's credentials but as the user tmartin, with all of tmartin's rights, not root's. A server application should be very careful when it determines which users may proxy as other users.
conn
requested_user
rlen
auth_identity
alen
default_realm
ulren
propctx
Like other SASL callback functions, sasl_authorize_t() returns an integer that corresponds to a SASL error code. See <sasl.h> for a complete list of SASL error codes.
SASL_OK
See sasl_errors(3SASL) for information on SASL error codes.
See attributes(7) for descriptions of the following attributes:
ATTRIBUTE TYPE | ATTRIBUTE VALUE |
Interface Stability | Evolving |
MT-Level | MT-Safe |
October 27, 2003 | OmniOS |