[jboss-jira] [JBoss JIRA] Commented: (SECURITY-448) Fallback to BASIC authenticator if authentication fails
Vladimir Ze'ev Bunich (JIRA)
jira-events at lists.jboss.org
Wed Jan 6 10:59:30 EST 2010
[ https://jira.jboss.org/jira/browse/SECURITY-448?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12502509#action_12502509 ]
Vladimir Ze'ev Bunich commented on SECURITY-448:
------------------------------------------------
it would be nice to have another <module-option name="useDomainQualifedUserNames">true/false</module-option>
in AdvancedLdapLoginModule
Currently the received principal names can be in form of username at DOMAIN this flag set to false should strip the "@DOMAIN" part , and leave just the username value for Authentication.
> Fallback to BASIC authenticator if authentication fails
> -------------------------------------------------------
>
> Key: SECURITY-448
> URL: https://jira.jboss.org/jira/browse/SECURITY-448
> Project: JBoss Security and Identity Management
> Issue Type: Feature Request
> Security Level: Public(Everyone can see)
> Components: Negotiation
> Reporter: Jacob Orshalick
> Assignee: Darran Lofthouse
> Attachments: jboss-negotiation-common-v1.patch, jboss-negotiation-common-v1.patch, jboss-negotiation-common-v2.patch, jboss-negotiation-spnego-v1.patch
>
>
> This issue is related to SECURITY-141, but is a request to allow fallback to BASIC authentication where SPNEGO is not supported. As a side effect this should also allow username/password authentication where SPNEGO did not take place.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: https://jira.jboss.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
More information about the jboss-jira
mailing list