[jboss-jira] [JBoss JIRA] (SECURITY-448) Fallback to BASIC authenticator if authentication fails

[Andrew Davie (JIRA)]

    [ https://issues.jboss.org/browse/SECURITY-448?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12663389#comment-12663389 ] 

Andrew Davie commented on SECURITY-448:
---------------------------------------

Ok for anyone else hunting for some of this info I found some of the puzzle from other places Darran has been. e.g. Security-446. The following strips out the realm:
<module-option name="removeRealmFromPrincipal">true</module-option>





                
> Fallback to BASIC authenticator if authentication fails
> -------------------------------------------------------
>
>                 Key: SECURITY-448
>                 URL: https://issues.jboss.org/browse/SECURITY-448
>             Project: PicketBox (JBoss Security and Identity Management)
>          Issue Type: Feature Request
>      Security Level: Public(Everyone can see) 
>          Components: Negotiation
>            Reporter: Jacob Orshalick
>            Assignee: Darran Lofthouse
>             Fix For: Negotiation_2.1.1
>
>         Attachments: jboss-negotiation-common-v1.patch, jboss-negotiation-common-v1.patch, jboss-negotiation-common-v2.patch, jboss-negotiation-spnego-v1.patch
>
>
> This issue is related to SECURITY-141, but is a request to allow fallback to BASIC authentication where SPNEGO is not supported.  As a side effect this should also allow username/password authentication where SPNEGO did not take place.

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.jboss.org/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira