| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263 |
- package main
- import (
- "fmt"
- "os"
- "github.com/jcmturner/gokrb5/config"
- "github.com/jcmturner/gokrb5/messages"
- "github.com/jcmturner/gokrb5/client"
- "encoding/hex"
- "github.com/jcmturner/gokrb5/keytab"
- )
- const ktab = "05020000004b0001000b544553542e474f4b5242350009746573747573657231000000015898e0770100120020bbdc430aab7e2d4622a0b6951481453b0962e9db8e2f168942ad175cda6d9de900000001"
- const krb5conf =`[libdefaults]
- default_realm = TEST.GOKRB5
- dns_lookup_realm = false
- dns_lookup_kdc = false
- ticket_lifetime = 24h
- forwardable = yes
- default_tkt_enctypes = aes256-cts-hmac-sha1-96
- [realms]
- TEST.GOKRB5 = {
- kdc = 10.80.88.88:88
- admin_server = 10.80.88.88:749
- default_domain = test.gokrb5
- }
- [domain_realm]
- .test.gokrb5 = TEST.GOKRB5
- test.gokrb5 = TEST.GOKRB5`
- func main() {
- c, err := config.NewConfigFromString(krb5conf)
- if err != nil {
- fmt.Fprintf(os.Stderr, "Error creating config: %v", err)
- }
- fmt.Fprintf(os.Stdout, "Config: %+v\n", *c)
- a := messages.NewASReq(c, "testuser1")
- fmt.Fprintf(os.Stdout, "AS_REQ: %+v\n", a)
- b, err := a.Marshal()
- if err != nil {
- fmt.Fprintf(os.Stderr, "Error marshalling AS_REQ: %v\n", err)
- }
- rb, err := client.SendToKDC(c, b)
- if err != nil {
- fmt.Fprintf(os.Stderr, "Error sending to KDC: %v\n", err)
- }
- var ar messages.ASRep
- ar.Unmarshal(rb)
- kb, _ := hex.DecodeString(ktab)
- kt, err := keytab.Parse(kb)
- if err != nil {
- fmt.Fprintf(os.Stderr, "KT load err: %v\n\n", err)
- }
- err = ar.DecryptEncPartWithKeytab(kt)
- if err != nil {
- fmt.Fprintf(os.Stderr, "\nDecrypt err: %v\n", err)
- } else {
- fmt.Fprintf(os.Stdout, "\n\nAS REP decrypted with keytab: %+v\n", ar)
- }
- }
|
