Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-8005638

Less secure Authentication schemes should work when more secure schemes are not available

    XMLWordPrintable

Details

    • Bug
    • Status: Closed
    • P3
    • Resolution: Fixed
    • 8
    • 8
    • core-libs
    • b73
    • Verified

    Description

      With compact profiles imminent, see http://openjdk.java.net/jeps/161, more heavy weight HTTP authentication schemes, like NTLM, Kerberos, Negotiate, may not be in the smaller profiles. In such cases the HTTP client, HttpURLConnection, should use the most secure scheme advertised by the server, and also supported by the running JRE.

      Attachments

        Activity

          People

            chegar Chris Hegarty
            chegar Chris Hegarty
            Votes:
            0 Vote for this issue
            Watchers:
            4 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: