Bug 1098365

Summary: [GSS] (6.2.x) Repair 'Continuation Required' logic
Product: [JBoss] JBoss Enterprise Application Platform 6 Reporter: Derek Horton <dehort>
Component: SecurityAssignee: Derek Horton <dehort>
Status: CLOSED CURRENTRELEASE QA Contact: Josef Cacek <jcacek>
Severity: unspecified Docs Contact: Russell Dickenson <rdickens>
Priority: unspecified    
Version: 6.2.3CC: bbaranow, dehort, ehugonne, hmlnarik, olukas, smumford
Target Milestone: CR1   
Target Release: EAP 6.2.4   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
A fix implemented for a Negotiation issue had an adverse affect on the NegotiationAuthenticator's negotiation logic ("Continuation Required"). The issue prevented some browsers from being able to properly connect to a Negotiation protected web application. In this release, the "Continuation Required" logic has been corrected so that it works along with the "fallback to FORM" logic when an NTLM token is received.
 Story Points: ---
Clone Of: 1097803 Environment:
Last Closed: 2014-08-07 12:13:06 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On: 1097803    
Bug Blocks: 1067534, 1104987    

Description Derek Horton 2014-05-16 01:30:53 UTC 
Description of problem:

The fix for SECURITY-640 breaks "Continuation Required" logic of the NegotiationAuthenticator and SPNEGOLoginModule. The "Continuation Required" logic is not triggered by all clients.

PR for the fix:
https://github.com/wildfly/jboss-negotiation/pull/11
Comment 2 Emmanuel Hugonnet (ehsavoie) 2014-06-06 07:42:15 UTC 
PR: https://github.com/wildfly-security/jboss-negotiation/pull/17
Comment 4 Hynek Mlnarik 2014-06-20 06:48:17 UTC 
Verified in 6.2.4.CP.CR1