[jboss-jira] [JBoss JIRA] (SECURITY-854) Fallback to FORM authentication when an invalid kerberos token is used
RH Bugzilla Integration (JIRA)
issues at jboss.org
Tue Sep 2 03:40:00 EDT 2014
[ https://issues.jboss.org/browse/SECURITY-854?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12997658#comment-12997658 ]
RH Bugzilla Integration commented on SECURITY-854:
--------------------------------------------------
FIlip Bogyai <fbogyai at redhat.com> changed the Status of [bug 1131229|https://bugzilla.redhat.com/show_bug.cgi?id=1131229] from ON_QA to VERIFIED
> Fallback to FORM authentication when an invalid kerberos token is used
> ----------------------------------------------------------------------
>
> Key: SECURITY-854
> URL: https://issues.jboss.org/browse/SECURITY-854
> Project: PicketBox
> Issue Type: Bug
> Security Level: Public(Everyone can see)
> Components: Negotiation
> Reporter: Derek Horton
> Assignee: Darran Lofthouse
> Fix For: Negotiation_2_3_4_Final
>
>
> Negotiation will not fallback to FORM authentication if the client has a kerberos token from a different KDC than what JBoss is configured to use.
> This results in the user getting presented with a 401 error and no way to login.
--
This message was sent by Atlassian JIRA
(v6.3.1#6329)
More information about the jboss-jira
mailing list