[JBoss JIRA] (SECURITY-723) SPNEGO backport of additional Kerberos ticket decoding

Thursday, 31 January 2013



     [
https://issues.jboss.org/browse/SECURITY-723?page=com.atlassian.jira.plug...
]

Tom Fonteyne updated SECURITY-723:
----------------------------------

    Steps to Reproduce: 
- Use either a combination of Windows 2003 Active Directory and a Windows XP client, or
Windows 2008 and a Vista/Windows7 client
- setup JBoss EAP 5.2.0 with SPNEGO pointed to the AD server.
  - "host" security domain
  - "SPNEGO" security domain
  - a simple properties based setup for spnego roles, with (for example)
     tom(a)JBOSSUK.REDHAT.COM=Users
- test with the SPNEGO toolkit that all 3 tests are working ok.

MORE TO COME

  was:TO BE ADDED SOON


...
 SPNEGO backport of additional Kerberos ticket decoding
 ------------------------------------------------------

                 Key: SECURITY-723
                 URL: https://issues.jboss.org/browse/SECURITY-723
             Project: PicketBox 
          Issue Type: Bug
      Security Level: Public(Everyone can see) 
          Components: Negotiation
    Affects Versions: Negotiation_2_1_3
            Reporter: Tom Fonteyne
            Assignee: Tom Fonteyne


/jboss-negotiation-spnego/src/main/java/org/jboss/security/negotiation/spnego/encoding/TokenParser.java
 is lacking additional decoding of the Kerberos ticket.
 This patch backports the missing code from trunk
 Testing: the standard unit test for remote EJB calls over SPNEGO. 
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006