def test_store_cred_into_acquire_cred(self):
CCACHE = 'FILE:{tmpdir}/other_ccache'.format(tmpdir=self.realm.tmpdir)
KT = '{tmpdir}/other_keytab'.format(tmpdir=self.realm.tmpdir)
store = {
b'ccache': CCACHE.encode('UTF-8'),
b'keytab': KT.encode('UTF-8')
}
princ_name = 'service/cs@' + self.realm.realm
self.realm.addprinc(princ_name)
self.realm.extract_keytab(princ_name, KT)
self.realm.kinit(princ_name, None, ['-k', '-t', KT])
initial_creds = gb.acquire_cred(None, usage='initiate').creds
# NB(sross): overwrite because the ccache doesn't exist yet
store_res = gb.store_cred_into(store, initial_creds, overwrite=True)
store_res.mechs.shouldnt_be_none()
store_res.usage.should_be('initiate')
name = gb.import_name(princ_name.encode('UTF-8'))
retrieve_res = gb.acquire_cred_from(store, name)
retrieve_res.shouldnt_be_none()
retrieve_res.creds.shouldnt_be_none()
retrieve_res.creds.should_be_a(gb.Creds)
retrieve_res.mechs.shouldnt_be_empty()
retrieve_res.mechs.should_include(gb.MechType.kerberos)
retrieve_res.lifetime.should_be_an_integer()
def test_store_cred_into_acquire_cred(self):
CCACHE = 'FILE:{tmpdir}/other_ccache'.format(tmpdir=self.realm.tmpdir)
KT = '{tmpdir}/other_keytab'.format(tmpdir=self.realm.tmpdir)
store = {b'ccache': CCACHE.encode('UTF-8'),
b'keytab': KT.encode('UTF-8')}
princ_name = 'service/cs@' + self.realm.realm
self.realm.addprinc(princ_name)
self.realm.extract_keytab(princ_name, KT)
self.realm.kinit(princ_name, None, ['-k', '-t', KT])
initial_creds = gb.acquire_cred(None, usage='initiate').creds
# NB(sross): overwrite because the ccache doesn't exist yet
store_res = gb.store_cred_into(store, initial_creds, overwrite=True)
store_res.mechs.shouldnt_be_none()
store_res.usage.should_be('initiate')
name = gb.import_name(princ_name.encode('UTF-8'))
retrieve_res = gb.acquire_cred_from(store, name)
retrieve_res.shouldnt_be_none()
retrieve_res.creds.shouldnt_be_none()
retrieve_res.creds.should_be_a(gb.Creds)
retrieve_res.mechs.shouldnt_be_empty()
retrieve_res.mechs.should_include(gb.MechType.kerberos)
retrieve_res.lifetime.should_be_an_integer()
def should_delete(fname, t):
try:
# skip directories and other non-files
st = os.stat(fname)
if not stat.S_ISREG(st.st_mode):
return False
# ignore files that are newer than 30 minutes
if t - st.st_mtime < 30 * 60:
return False
creds = acquire_cred_from({b"ccache": fname.encode("UTF-8")})
except FileNotFoundError:
# someone else did the work for us
return False
except Exception as e:
print("Not deleting %s due to error %s" % (fname, e))
return False
return creds.lifetime == 0
def should_delete(fname, t):
try:
# skip directories and other non-files
st = os.stat(fname)
if not stat.S_ISREG(st.st_mode):
return False
# ignore files that are newer than 30 minutes
if t - st.st_mtime < 30 * 60:
return False
creds = acquire_cred_from({b"ccache": fname.encode("UTF-8")})
except FileNotFoundError:
# someone else did the work for us
return False
except Exception as e:
print("Not deleting %s due to error %s" % (fname, e))
return False
return creds.lifetime == 0
