[jboss-jira] [JBoss JIRA] (WFLY-8872) Regression, kerberos + fallback ejb legacy security solution GSSAPI SASL mechanism not called
Martin Choma (JIRA)
issues at jboss.org
Thu Jun 1 08:57:01 EDT 2017
Martin Choma created WFLY-8872:
----------------------------------
Summary: Regression, kerberos + fallback ejb legacy security solution GSSAPI SASL mechanism not called
Key: WFLY-8872
URL: https://issues.jboss.org/browse/WFLY-8872
Project: WildFly
Issue Type: Bug
Components: Security
Reporter: Martin Choma
Assignee: Darran Lofthouse
Priority: Blocker
Given EJB secured with kerberos + fallback, using legacy security solution [1]
When I try to authenticate using correct Kerberos ticket and wrong username/password.
Then PLAIN SASL mechanism fails and GSSAPI is not performed.
Same scenario works correctly in
* 7.0
* 7.1 Elytron way
I have attached server.log for:
* no username password provided
* wrong username password provided
[1] https://access.redhat.com/documentation/en-us/red_hat_jboss_enterprise_application_platform/7.0/html-single/how_to_set_up_sso_with_kerberos/#configure-krb-remoting
--
This message was sent by Atlassian JIRA
(v7.2.3#72005)
More information about the jboss-jira
mailing list