[jboss-jira] [JBoss JIRA] (SECURITY-854) Fallback to FORM authentication when an invalid kerberos token is used
Darran Lofthouse (JIRA)
issues at jboss.org
Mon Aug 18 13:49:29 EDT 2014
[ https://issues.jboss.org/browse/SECURITY-854?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Darran Lofthouse updated SECURITY-854:
--------------------------------------
Fix Version/s: Negotiation_2_3_4_Final
> Fallback to FORM authentication when an invalid kerberos token is used
> ----------------------------------------------------------------------
>
> Key: SECURITY-854
> URL: https://issues.jboss.org/browse/SECURITY-854
> Project: PicketBox
> Issue Type: Bug
> Security Level: Public(Everyone can see)
> Components: Negotiation
> Reporter: Derek Horton
> Assignee: Darran Lofthouse
> Fix For: Negotiation_2_3_4_Final
>
>
> Negotiation will not fallback to FORM authentication if the client has a kerberos token from a different KDC than what JBoss is configured to use.
> This results in the user getting presented with a 401 error and no way to login.
--
This message was sent by Atlassian JIRA
(v6.2.6#6264)
More information about the jboss-jira
mailing list