Steve, thanks a lot for the quick response! Those are great comments. Let me try to put together a change with what you mentioned. In that case CURLOPT_SERVICE_NAME makes more sense. For negotiate/Kerberos, we let the libcurl to append the host name to generate the SPN as <servicename>/<host>.
On Tue, Feb 17, 2015 at 10:27 AM, Steve Holme <steve_ho...@hotmail.com> wrote: > On Tue, 17 Feb 2015, Steve Holme wrote: > > > As you have found out it isn't too hard to do this. However, > > > > * I'd rather support this across all of the server name authentication > > mechanisms > > * Possibly deprecate CURLOPT_SOCKS5_GSSAPI_SERVICE > > * The code hasn't also changed quite a bit since v7.36 > > My apologies - What I meant to say was: > > * I'd rather support this across all of our mechanisms that use a SPN > (such as Socks 5, SPNEGO, Kerberos, Digest) in each of the GSS-API, SSPI > and Native implementations > * Possibly deprecate CURLOPT_SOCKS5_GSSAPI_SERVICE (I would suggest a new > CURLOPT_SERVICE_NAME or CURLOPT_SPN, etc... option with the same value for > API compatibility) > * The code has also changed quite a bit since v7.36 (The next release will > be 7.41) > > Sorry for any confusion but I wrote my previous email rather quickly this > morning as I was trying to get out the door for an appointment at the > hospital :( > > Kind Regards > > Steve > > ------------------------------------------------------------------- > List admin: http://cool.haxx.se/list/listinfo/curl-library > Etiquette: http://curl.haxx.se/mail/etiquette.html >
------------------------------------------------------------------- List admin: http://cool.haxx.se/list/listinfo/curl-library Etiquette: http://curl.haxx.se/mail/etiquette.html