[jboss-jira] [JBoss JIRA] Resolved: (SECURITY-268) NTLM is tied to a specific connection - is the same required for SPNEGO?
Darran Lofthouse (JIRA)
jira-events at lists.jboss.org
Thu Jan 29 13:08:44 EST 2009
[ https://jira.jboss.org/jira/browse/SECURITY-268?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Darran Lofthouse resolved SECURITY-268.
---------------------------------------
Fix Version/s: (was: Negotiation_2.0.3.GA)
Resolution: Done
Using HTTP session to track authenticated users, will need to review re-authentication when looking at cache based on ticket expiration. However at the moment Kerberos ticket expiration defaults to one day, users HTTP session should expire before this does.
> NTLM is tied to a specific connection - is the same required for SPNEGO?
> ------------------------------------------------------------------------
>
> Key: SECURITY-268
> URL: https://jira.jboss.org/jira/browse/SECURITY-268
> Project: JBoss Security and Identity Management
> Issue Type: Task
> Security Level: Public(Everyone can see)
> Components: Negotiation
> Reporter: Darran Lofthouse
> Assignee: Darran Lofthouse
>
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: https://jira.jboss.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
More information about the jboss-jira
mailing list