mirror of
https://github.com/curl/curl.git
synced 2026-05-07 19:37:28 +03:00
e16ac344de
Add credential-based NTLM filtering for GSS-API SPNEGO. Acquire explicit credentials, enumerate available mechanisms, filter out the NTLMSSP OID, and apply via gss_set_neg_mechs(). Also verify the negotiated mechanism after context establishment and reject NTLM if disallowed. Pass a cred_handle through Curl_gss_init_sec_context so SPNEGO can use the restricted credentials. Probe for gss_set_neg_mechs() availability (HAVE_GSS_SET_NEG_MECHS) in configure and CMake. Signed-off-by: Matthew John Cheetham <mjcheetham@outlook.com> |
||
|---|---|---|
| .. | ||
| cleartext.c | ||
| cram.c | ||
| digest.c | ||
| digest.h | ||
| digest_sspi.c | ||
| gsasl.c | ||
| krb5_gssapi.c | ||
| krb5_sspi.c | ||
| ntlm.c | ||
| ntlm_sspi.c | ||
| oauth2.c | ||
| spnego_gssapi.c | ||
| spnego_sspi.c | ||
| vauth.c | ||
| vauth.h | ||