/*
* Note: a module must still implement a verify_authdata
* method, even it is a NOOP that simply records the value
- 8 of kdc_issued_flag.
+ * of the kdc_issued_flag.
*/
code = krb5_verify_authdata_kdc_issued(kcontext,
ap_req->ticket->enc_part2->session,
if (module->ftable->import_attributes == NULL)
continue;
- code = krb5int_find_authdata(kcontext,
- ticket_authdata,
- authen_authdata,
- module->ad_type,
- &authdata);
- if (code != 0)
- break;
-
- if (authdata == NULL && kdc_issued_authdata != NULL) {
+ if (kdc_issued_authdata != NULL) {
code = krb5int_find_authdata(kcontext,
kdc_issued_authdata,
NULL,
kdc_issued_flag = TRUE;
}
+ if (authdata == NULL) {
+ code = krb5int_find_authdata(kcontext,
+ ticket_authdata,
+ authen_authdata,
+ module->ad_type,
+ &authdata);
+ if (code != 0)
+ break;
+ }
+
if (authdata == NULL)
continue;
projects / thirdparty / krb5.git / commitdiff
