From: kouril <kouril>
Date: Tue, 12 Aug 2003 09:36:42 +0000 (+0000)
Subject: Since we're going to support mainly Kerberos GSSAPI, gss context is not kept
X-Git-Tag: v5.0-rc1~5
X-Git-Url: http://www.project-moonshot.org/gitweb/?p=mod_auth_kerb.git;a=commitdiff_plain;h=9811342c9c743b42bb420383f3a0824cb3f46510

Since we're going to support mainly Kerberos GSSAPI, gss context is not kept
across multiple request.
---

diff --git a/src/mod_auth_kerb.c b/src/mod_auth_kerb.c
index 7675836..71c62c4 100644
--- a/src/mod_auth_kerb.c
+++ b/src/mod_auth_kerb.c
@@ -643,6 +643,8 @@ cleanup_gss_connection(void *data)
    if (gss_conn->server_creds != GSS_C_NO_CREDENTIAL)
       gss_release_cred(&minor_status, &gss_conn->server_creds);
 
+   gss_connection = NULL;
+
    return OK;
 }
 
@@ -863,7 +865,6 @@ authenticate_user_gss(request_rec *r,
 
   gss_release_buffer(&minor_status, &output_token);
 
-
 #if 0
   /* If the user comes from a realm specified by configuration don't include
       its realm name in the username so that the authorization routine could
@@ -897,6 +898,8 @@ end:
   if (client_name != GSS_C_NO_NAME)
      gss_release_name(&minor_status, &client_name);
 
+  cleanup_gss_connection(gss_connection);
+
   initial_return = ret;
   return ret;
 }