sec_cred_get_deleg_restrictions(3sec)
Returns delegate restrictions from a privilege attribute handle
Synopsis
#include <dce/sec_cred.h>
sec_id_restriction_set_t *sec_cred_get_deleg_restrictions(
sec_cred_pa_handle_t callers_pas,
error_status_t *status);
Parameters
Input
callers_pas
A value of type sec_cred_pa_handle_t that provides a handle to a principal's privilege attributes. This handle is supplied as output of the
sec_cred_get_initiator( ) call, the sec_cred_get_delegate( ) call and the sec_login_cred calls.
Output
status
A pointer to the completion status. On successful completion, status is assigned error_status_ok.
Description
The sec_cred_get_deleg_restrictions ( ) routine extracts delegate restrictions from the privilege attribute handle identified by callers_pas. The
restrictions are returned in a sec_id_restriction_set_t.
Before you execute sec_cred_get_pa_data( ), you must execute a sec_cred_get_initiator( ) or sec_cred_get_delegate( ) call to obtain a sec_cred_pa_handle_t for the callers_pas parameter.
Errors
The following describes a partial list of errors that might be returned. Refer to the OSF DCE Problem Determination Guide for complete descriptions of all error messages.
sec_cred_s_invalid_pa_handle
error_status_ok
Related Information
Functions: