module Krb5_gs2_profile:Netmech_gs2_sasl.PROFILE
Netmech_krb5_sasl.Krb5_gs2
val mechanism_name : string
val announce_channel_binding : bool
val mechanism_oid : Netsys_gssapi.oid
val client_additional_params : string list
create_client_session
val server_additional_params : string list
create_server_session
val client_map_user_name : params:(string * string) list -> string -> string * Netsys_gssapi.oid
(name_string,name_type)
that can be used in the GSSAPI for acquiring a name.
If the name_type
is the empty
array, no target name is passed to the GSSAPI.
The params
are from the create_client_session
call.
val server_map_user_name : params:(string * string) list -> string * Netsys_gssapi.oid -> string
(name_string,name_type)
coming from the
GSSAPI to a user name. The
params
are from the create_server_session
call.
The function may raise Not_found
in which case the authentication
will fail.
val client_get_target_name : params:(string * string) list -> string * Netsys_gssapi.oid
(name_string,name_type)
pair. If the name_type
is the empty
array, no target name is passed to the GSSAPI.
The params
are from the create_client_session
call.
val server_bind_target_name : params:(string * string) list -> (string * Netsys_gssapi.oid) option
params
are from the create_server_session
call.val server_check_target_name : params:(string * string) list -> string * Netsys_gssapi.oid -> bool
server_bind_target_name
: instead of binding to a single name,
the client may send any target name, and we check now whether
this name is acceptable.
params
are from the create_server_session
call.val client_flags : params:(string * string) list -> (Netsys_gssapi.req_flag * bool) list
init_sec_context
. The bool says whether the flag is
required (otherwise the feature is only offered). `Mutual_flag
is always required.val server_flags : params:(string * string) list -> Netsys_gssapi.req_flag list
accept_sec_context
. `Mutual_flag
is always required.val client_credential : exn option
Credential
exception of the GSSAPI provider.