s4:auth: Clarify comment about requiring FAST armor

author Joseph Sutton <josephsutton@catalyst.net.nz>

Tue, 28 Nov 2023 21:42:36 +0000 (10:42 +1300)

committer Andrew Bartlett <abartlet@samba.org>

Thu, 21 Dec 2023 20:21:34 +0000 (20:21 +0000)
author Joseph Sutton <josephsutton@catalyst.net.nz>
Tue, 28 Nov 2023 21:42:36 +0000 (10:42 +1300)
committer Andrew Bartlett <abartlet@samba.org>
Thu, 21 Dec 2023 20:21:34 +0000 (20:21 +0000)
diff --git a/source4/auth/kerberos/kerberos_util.c b/source4/auth/kerberos/kerberos_util.c

index de9f2c38655b3004dadec683b4190f6c833f03a1..ba8d822f638a480f0f5387df03f906782041cd2f 100644 (file)
--- a/source4/auth/kerberos/kerberos_util.c
+++ b/source4/auth/kerberos/kerberos_util.c
@@ -358,9 +358,9 @@ done:
         {
                 bool require_fast;
                 /*
-                * This ensures that if FAST was required, that we proceed
-                * with no credentials cache, but with (eg) anonymous
-                * PKINIT
+                * This ensures that if FAST was required, but no armor
+                * credentials cache was specified, we proceed with (eg)
+                * anonymous PKINIT
                  */
                 require_fast = cli_credentials_get_krb5_require_fast_armor(credentials);
                 if (require_fast) {
author	Joseph Sutton <josephsutton@catalyst.net.nz>
	Tue, 28 Nov 2023 21:42:36 +0000 (10:42 +1300)
committer	Andrew Bartlett <abartlet@samba.org>
	Thu, 21 Dec 2023 20:21:34 +0000 (20:21 +0000)