krb5_auth_con_setuseruserkey()--Set User Key


  Syntax 
 #include <krb5.h>

 krb5_error_code krb5_auth_con_setuseruserkey(
     krb5_context   context,
     krb5_auth_context   auth_context,  
     krb5_keyblock *    keyblock);
  Service Program Name: QSYS/QKRBGSS

  Default Public Authority: *USE

  Threadsafe: Conditional. See Usage Notes.

The krb5_auth_con_setuseruserkey() function sets the user key in the authentication context.


Authorities

No authorities are required.


Parameters

context  (Input)
The Kerberos context.

auth_context  (Input)
The authentication context.

keyblock  (Input)
The user key.

Return Value

If no errors occur, the return value is 0. Otherwise, a Kerberos error code is returned.


Error Messages

Message ID Error Message Text
CPE3418 E Possible APAR condition or hardware failure.


Usage Notes

  1. The krb5_auth_con_setuseruserkey() routine is only useful prior to calling the krb5_rd_req() routine for user-to-user authentication where the server has the key and needs to use it to decrypt the incoming request. Once the request has been decrypted, this key is no longer necessary and is replaced in the authentication context with the session key obtained from the decoded request.

  2. The Kerberos protocol runtime provides no concurrency control for the authentication context. If the application wants to use the same authentication context in multiple threads, it is the responsibility of the application to serialize access to the authentication context so that only a single thread is accessing the authentication context at any time.

API introduced: V5R1

[ Back to top | Security APIs | UNIX-Type APIs | APIs by category ]