What about prompting that couldn't happen until context establishment
and for which doing the prompting via credential acquisition wouldn't
work? OTPs come to mind.
How about we have a function by which to associate a prompter callback
with a partially established security context? You'd set it when
GSS_Init_sec_context() returns GSS_S_PROMPTING_NEEDED or whatever, and
then you'd call GSS_Init_sec_context() again with all the same
arguments as before.
Nico
--
|