[jboss-jira] [JBoss JIRA] (SECURITY-356) Log a meaningful error when browser uses Kerberos5 GSSAPI and not SPNEGO

Tuesday, 24 July 2012

     [
https://issues.jboss.org/browse/SECURITY-356?page=com.atlassian.jira.plug...
]

Darran Lofthouse resolved SECURITY-356.
---------------------------------------

      Assignee: Darran Lofthouse
    Resolution: Out of Date

Adding support for Kerberos5 messages as some clients e.g. Chrome use these.

...
 Log a meaningful error when browser uses Kerberos5 GSSAPI and not
SPNEGO
 ------------------------------------------------------------------------

                 Key: SECURITY-356
                 URL: https://issues.jboss.org/browse/SECURITY-356
             Project: PicketBox (JBoss Security and Identity Management)
          Issue Type: Task
      Security Level: Public(Everyone can see) 
          Components: Negotiation
    Affects Versions: Negotiation_2.0.3.GA
            Reporter: Darran Lofthouse
            Assignee: Darran Lofthouse
             Fix For: Negotiation_2.1.1

 This can be identified by checking the OID parsed in NegTokenInitDecoder.decode() and
verifying that it is the OID for SPNEGO. 
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators:
https://issues.jboss.org/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

[jboss-jira] [JBoss JIRA] (SECURITY-356) Log a meaningful error when browser uses Kerberos5 GSSAPI and not SPNEGO