HTTP/SPNEGO needs javax.security.auth.useSubjectCredsOnly

XMLWordPrintable

    • Type: Enhancement
    • Resolution: Fixed
    • Priority: P4
    • 7
    • Affects Version/s: 7
    • Component/s: security-libs
    • b19
    • generic
    • generic
    • Not verified

      HTTP/SPNEGO uses JGSS-API directly to create tokens and communicate with remote HTTP server, which means user needs to specify -Djavax.security.auth.useSubjectCredsOnly=false to make it work. This may be OK for a standalone application, but very difficult to configure in Java Plug-in, which is the case when an applet resides on a HTTP server and protected by SPNEGO.

            Assignee:
            Weijun Wang
            Reporter:
            Weijun Wang
            Votes:
            0 Vote for this issue
            Watchers:
            0 Start watching this issue

              Created:
              Updated:
              Resolved:
              Imported:
              Indexed: