Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-8319075

Openjdk 8u392b08 doesn’t fall back to the system default krb5.conf file if it doesn’t find a file in java.security.krb5.conf default location

    XMLWordPrintable

Details

    Description

      ADDITIONAL SYSTEM INFORMATION :
      Redhat linux 7.9.

      A DESCRIPTION OF THE PROBLEM :
      I have a tomcat 9 installation that uses SPNEGO based kerberos authentication to our Windows Active Directory infrastructure. This has been working for years. When I upgraded to 8u392 it stopped working. DOwngraded back to 382 and it was fine. So the problem was introduced in 392.


      REGRESSION : Last worked in version 8

      STEPS TO FOLLOW TO REPRODUCE THE PROBLEM :
      Set up Tomcat windows auth as per https://tomcat.apache.org/tomcat-9.0-doc/windows-auth-howto.html
      Browse to a tomcat site from a logged in windows machine.



      EXPECTED VERSUS ACTUAL BEHAVIOR :
      EXPECTED -
      Kerberos authentication information provided to tomcat applications without requiring login.
      ACTUAL -
      Prompts for login information. Does not authenticate properly.

      CUSTOMER SUBMITTED WORKAROUND :
      Downgrade to 382

      FREQUENCY : always


      Attachments

        1. catalina.out.broken1
          11 kB
        2. catalina.out.broken2
          20 kB
        3. catalina.out.working
          13 kB
        4. index.jsp
          3 kB

        Activity

          People

            Unassigned Unassigned
            webbuggrp Webbug Group
            Votes:
            0 Vote for this issue
            Watchers:
            3 Start watching this issue

            Dates

              Created:
              Updated: