NAME
Authen::Krb5::KDB::V5 - objects for Kerberos V5 database V5 principals and policies
SYNOPSIS
Generally you won't load this library or call it's new
methods directly. See Authen::Krb5::KDB for more information.
use Authen::Krb5::KDB::V5;
$p = Authen::Krb5::KDB::V5->new( data => "..." );
if ($p->type eq 'princ') {
print $p->name, ": ", $p->fail_auth_count"\n";
} elsif ($p->type eq 'policy') {
print $p->name, ": ", $p->policy_refcnt, "\n";
}
DESCRIPTION
- new( data => "..." )
-
Parses version 5 principal and policy entries and returns the data via an object. Calls either
new_princ
ornew_policy
depending on the data.Arguments are:
data => <string>
Data to be parsed. This argument is required.
checks => <level>
Data checking level. Level 0 means no checks; level 1 (the default) does basic checks like checking that the lengths in the records are correct; level 2 does much further consistency checks on the data.
lineno => <N>
Line number of the data file where this data came from (for error messages).
Principals
- new_princ( data => "..." )
-
Parses version 5 principal entries and returns the data via an object.
Arguments are:
data => <string>
Data to be parsed. This argument is required.
checks => <level>
Data checking level. Level 0 means no checks; level 1 (the default) does basic checks like checking that the lengths in the records are correct; level 2 does much further consistency checks on the data.
lineno => <N>
Line number of the data file where this data came from (for error messages).
Methods to retrieve and set data fields are:
- type (read only)
- len (read only)
- name_len (read only)
- n_tl_data (read only)
- n_key_data (read only)
- e_length (read only)
- name
- attributes
- max_life
- max_renew_life
- expiration
- pw_expiration
- last_success
- last_success_dt (read only)
- last_failed
- last_failed_dt (read only)
- fail_auth_count
- tl_data
-
See the Authen::Krb5::KDB::TL for methods to deal with TL objects.
- key_data
-
See the Authen::Krb5::KDB::Key for methods to deal with Key objects.
- e_data
Other methods include:
- print_principal
-
Print out the data on a principal, similar to the get_principal command in kadmin, but more verbose.
- get_attributes
-
Return a string of all the attributes set for this principal.
Policies
- new_policy( data => "..." )
-
Parses version 5 policy entries and returns the data via an object.
Arguments are:
data => <string>
Data to be parsed. This argument is required.
checks => <level>
Data checking level. Level 0 means no checks; level 1 (the default) does basic checks like checking that the lengths in the records are correct; level 2 does much further consistency checks on the data.
lineno => <N>
Line number of the data file where this data came from (for error messages).
Methods to retrieve and set policy data fields are:
- type (read only)
- name
- pw_max_life
- pw_min_life
- pw_min_length
- pw_min_classes
- pw_history_num
- policy_refcnt
Other methods include:
- print_policy
-
Print out the policy data, similar to the get_policy command in kadmin.
AUTHOR
Dave Steiner, <steiner@bakerst.rutgers.edu>
COPYRIGHT
Copyright (c) 2002 David K. Steiner. All rights reserved.
This library is free software; you can redistribute it and/or modify it under the same terms as Perl itself.
SEE ALSO
perl(1), kerberos(1), Authen::Krb5::KDB, Authen::Krb5::KDB_H, Authen::Krb5::KDB::TL, Authen::Krb5::KDB::Key.