krb5_get_server_rcache()--Generate Replay Cache for Server Use


  Syntax 
 #include <krb5.h>

 krb5_error_code krb5_get_server_rcache(  
     krb5_context     context,
     krb5_const krb5_data *   piece); 
     krb5_rcache *      ret_rcache);
  Service Program Name: QSYS/QKRBGSS

  Default Public Authority: *USE

  Threadsafe: Yes

The krb5_get_server_rcache() function generates a unique replay cache name and then opens the replay cache. The piece parameter is used to differentiate this replay cache from others currently in use on the system by the same user. The generated cache name is in the form rc_piece_uid and uses the default replay cache type.


Authorities

Object Referred to Data Authority Required
Each directory in the path name preceding the replay cache file *X
Parent directory of the replay cache file, if KRB5RCACHEDIR is specified and if the replay cache file is being created *WX
Replay cache file *RW


Parameters

context  (Input)
The Kerberos context.

piece  (Input)
The unique portion of the replay cache name. It should consist of displayable characters.

ret_rcache  (Output)
The replay cache handle. The krb5_rc_close() routine should be called to close the replay cache when it is no longer needed.

Return Value

If no errors occur, the return value is 0. Otherwise, a Kerberos error code is returned.


Error Messages

Message ID Error Message Text
CPE3418 E Possible APAR condition or hardware failure.


Usage Notes

  1. The replay cache is initialized if it cannot be recovered. The clock skew value is obtained from the Kerberos context if it is necessary to initialize the cache.

API introduced: V5R1

[ Back to top | Security APIs | UNIX-Type APIs | APIs by category ]