Bug 1085500 - [GSS] (6.4.0) JBoss Negotiation should fallback to form authentication instead of returning 401
Summary: [GSS] (6.4.0) JBoss Negotiation should fallback to form authentication instea...
Keywords:
Status: CLOSED CURRENTRELEASE
Alias: None
Product: JBoss Enterprise Application Platform 6
Classification: JBoss
Component: Security
Version: 6.3.0
Hardware: Unspecified
OS: Unspecified
unspecified
unspecified
Target Milestone: DR1
: EAP 6.4.0
Assignee: Derek Horton
QA Contact: Pavel Slavicek
URL:
Whiteboard:
Depends On:
Blocks: 1085497 1085503
TreeView+ depends on / blocked
 
Reported: 2014-04-08 18:13 UTC by Derek Horton
Modified: 2019-08-19 12:44 UTC (History)
1 user (show)

Fixed In Version:
Clone Of:
: 1085501 1085503 (view as bug list)
Environment:
Last Closed:
Type: Bug
Embargoed:

Attachments (Terms of Use)


Links
System ID Private Priority Status Summary Last Updated
Red Hat Issue Tracker SECURITY-640 0 Major Resolved Jboss Negotiation fallback to login page if NTLM token is received or the user is not present in active directory. 2018-05-15 19:07:04 UTC

Description Derek Horton 2014-04-08 18:13:09 UTC 
Description of problem:
[GSS] (6.3.0) JBoss Negotiation should fallback to form authentication instead of returning 401

Steps to Reproduce:
1.  Configured an invalid KDC
2.  Hit the JBoss Negotiation Toolkit SecuredServlet (test 3)
3.  A form should be returned instead of a 401
Comment 1 Derek Horton 2014-04-16 20:29:24 UTC 
PR
https://github.com/wildfly/jboss-negotiation/pull/4
Comment 2 JBoss JIRA Server 2014-09-01 08:00:13 UTC 
Hrishi Salvi <hrishishikesh.salvi> updated the status of jira SECURITY-640 to Closed
Comment 3 JBoss JIRA Server 2014-09-01 12:05:56 UTC 
Darran Lofthouse <darran.lofthouse> updated the status of jira SECURITY-640 to Reopened
Comment 4 JBoss JIRA Server 2014-09-01 12:06:24 UTC 
Darran Lofthouse <darran.lofthouse> updated the status of jira SECURITY-640 to Resolved
Comment 8 Darran Lofthouse 2015-01-26 09:12:06 UTC 
Yes the fix for SECURITY-640 went into JBoss Negotation 2.3.0.CR2 so has been included in EAP 6 for quite a while.
Comment 9 Josef Cacek 2015-01-26 10:19:04 UTC 
Based on Comment 8 I'm changing status to ON_QA.
DR1 already contained JBoss Negotiation in version 2.3.4.Final-redhat-1
Note You need to log in before you can comment on or make changes to this bug.