[jboss-jira] [JBoss JIRA] (SECURITY-448) Fallback to BASIC authenticator if authentication fails
Andrew Davie (JIRA)
jira-events at lists.jboss.org
Wed Feb 1 09:32:49 EST 2012
[ https://issues.jboss.org/browse/SECURITY-448?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12663389#comment-12663389 ]
Andrew Davie commented on SECURITY-448:
---------------------------------------
Ok for anyone else hunting for some of this info I found some of the puzzle from other places Darran has been. e.g. Security-446. The following strips out the realm:
<module-option name="removeRealmFromPrincipal">true</module-option>
> Fallback to BASIC authenticator if authentication fails
> -------------------------------------------------------
>
> Key: SECURITY-448
> URL: https://issues.jboss.org/browse/SECURITY-448
> Project: PicketBox (JBoss Security and Identity Management)
> Issue Type: Feature Request
> Security Level: Public(Everyone can see)
> Components: Negotiation
> Reporter: Jacob Orshalick
> Assignee: Darran Lofthouse
> Fix For: Negotiation_2.1.1
>
> Attachments: jboss-negotiation-common-v1.patch, jboss-negotiation-common-v1.patch, jboss-negotiation-common-v2.patch, jboss-negotiation-spnego-v1.patch
>
>
> This issue is related to SECURITY-141, but is a request to allow fallback to BASIC authentication where SPNEGO is not supported. As a side effect this should also allow username/password authentication where SPNEGO did not take place.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.jboss.org/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
More information about the jboss-jira
mailing list