/*
 * appl/telnet/libtelnet/forward.c
 */

/*
 * Copyright (c) 1983 Regents of the University of California.
 * All rights reserved.
 *
 * Redistribution and use in source and binary forms are permitted
 * provided that the above copyright notice and this paragraph are
 * duplicated in all such forms and that any documentation,
 * advertising materials, and other materials related to such
 * distribution and use acknowledge that the software was developed
 * by the University of California, Berkeley.  The name of the
 * University may not be used to endorse or promote products derived
 * from this software without specific prior written permission.
 * THIS SOFTWARE IS PROVIDED ``AS IS'' AND WITHOUT ANY EXPRESS OR
 * IMPLIED WARRANTIES, INCLUDING, WITHOUT LIMITATION, THE IMPLIED
 * WARRANTIES OF MERCHANTIBILITY AND FITNESS FOR A PARTICULAR PURPOSE.
 */

/* General-purpose forwarding routines. These routines may be put into */
/* libkrb5.a to allow widespread use */ 

#ifdef HAVE_CONFIG_H
#include <config.h>
#endif

#ifdef FORWARD
#include <stdio.h>
#include <netdb.h>
 
#include "k5-int.h"
 
extern char *line;		/* see sys_term.c */

static char cred_file[32] = { 0 };

int
forw_credfile_exists()
{
  if(*cred_file == '\0')
    return 0;
  else
    return 1;
}

void
forw_set_credfile_owner(uid, gid)
     int uid, gid;
{
  if(forw_credfile_exists())
    chown(cred_file, uid, gid);
}

/* Decode, decrypt and store the forwarded creds in the local ccache. */
krb5_error_code
rd_and_store_for_creds(context, auth_context, inbuf, ticket)
    krb5_context context;
    krb5_auth_context auth_context;
    krb5_data *inbuf;
    krb5_ticket *ticket;
{
    krb5_creds **creds;
    krb5_error_code retval;
    char ccname[35];
    krb5_ccache ccache = NULL;
    char *tty;

    if (retval = krb5_rd_cred(context, auth_context, inbuf, &creds, NULL)) 
	return(retval);

    sprintf(cred_file, "/tmp/krb5cc_p%d", getpid());
    sprintf(ccname, "FILE:%s", cred_file);
    setenv(KRB5_ENV_CCNAME, ccname, 1);

    if (retval = krb5_cc_resolve(context, ccname, &ccache))
	goto cleanup;

    if (retval = krb5_cc_initialize(context, ccache, ticket->enc_part2->client))
	goto cleanup;

    if (retval = krb5_cc_store_cred(context, ccache, *creds)) 
	goto cleanup;

cleanup:
    krb5_free_creds(context, *creds);
    return retval;
}

#endif /* FORWARD */