docs: --delegation

author: Daniel Stenberg <daniel@haxx.se> 2011-08-12 23:51:41 +0200
committer: Daniel Stenberg <daniel@haxx.se> 2011-08-12 23:51:41 +0200
commit: 8bd877d179906228c787900ec3aca7de1905418d (patch)
tree: 632dda8247e05105628f203a245271e6f48b9fc1 /docs/curl.1
parent: 5538904d775161d1a0fa3ebb77bce6b252dc47ee (diff)
download: curl-8bd877d179906228c787900ec3aca7de1905418d.tar.gz
1 files changed, 12 insertions, 0 deletions
diff --git a/docs/curl.1 b/docs/curl.1
index 362bea1b6..92835c208 100644
--- a/docs/curl.1
+++ b/docs/curl.1
@@ -320,6 +320,18 @@ URL-encode that data and pass it on in the POST. The name part gets an equal
 sign appended, resulting in \fIname=urlencoded-file-content\fP. Note that the
 name is expected to be URL-encoded already.
 .RE
+.IP "--delegation LEVEL"
+Set \fILEVEL\fP to tell the server what it is allowed to delegate when it
+comes to user credentials. Used with GSS/kerberos.
+.RS
+.IP "none"
+Don't allow any delegation.
+.IP "policy"
+Delegates if and only if the OK-AS-DELEGATE flag is set in the Kerberos
+service ticket, which is a matter of realm policy.
+.IP "always"
+Unconditionally allow the server to delegate.
+.RE
 .IP "--digest"
 (HTTP) Enables HTTP Digest authentication. This is a authentication that
 prevents the password from being sent over the wire in clear text. Use this in
author	Daniel Stenberg <daniel@haxx.se>	2011-08-12 23:51:41 +0200
committer	Daniel Stenberg <daniel@haxx.se>	2011-08-12 23:51:41 +0200
commit	8bd877d179906228c787900ec3aca7de1905418d (patch)
tree	632dda8247e05105628f203a245271e6f48b9fc1 /docs/curl.1
parent	5538904d775161d1a0fa3ebb77bce6b252dc47ee (diff)
download	curl-8bd877d179906228c787900ec3aca7de1905418d.tar.gz