Bug 1098365 - [GSS] (6.2.x) Repair 'Continuation Required' logic
Summary: [GSS] (6.2.x) Repair 'Continuation Required' logic
Keywords:
Status: CLOSED CURRENTRELEASE
Alias: None
Product: JBoss Enterprise Application Platform 6
Classification: JBoss
Component: Security
Version: 6.2.3
Hardware: Unspecified
OS: Unspecified
unspecified
unspecified
Target Milestone: CR1
: EAP 6.2.4
Assignee: Derek Horton
QA Contact: Josef Cacek
Russell Dickenson
URL:
Whiteboard:
Depends On: 1097803
Blocks: eap62-cp04-blockers 1104987
TreeView+ depends on / blocked
 
Reported: 2014-05-16 01:30 UTC by Derek Horton
Modified: 2018-12-09 17:51 UTC (History)
6 users (show)

Fixed In Version:
Doc Type: Bug Fix
Doc Text:
A fix implemented for a Negotiation issue had an adverse affect on the NegotiationAuthenticator's negotiation logic ("Continuation Required"). The issue prevented some browsers from being able to properly connect to a Negotiation protected web application. In this release, the "Continuation Required" logic has been corrected so that it works along with the "fallback to FORM" logic when an NTLM token is received.
Clone Of: 1097803
Environment:
Last Closed: 2014-08-07 12:13:06 UTC
Type: Bug
Embargoed:

Attachments (Terms of Use)


Links
System ID Private Priority Status Summary Last Updated
Red Hat Issue Tracker SECURITY-826 0 Major Resolved Fix for SECURITY-640 breaks "Continuation Required" logic of the NegotiationAuthenticator and SPNEGOLoginModule 2016-05-31 16:10:03 UTC

Description Derek Horton 2014-05-16 01:30:53 UTC 
Description of problem:

The fix for SECURITY-640 breaks "Continuation Required" logic of the NegotiationAuthenticator and SPNEGOLoginModule. The "Continuation Required" logic is not triggered by all clients.

PR for the fix:
https://github.com/wildfly/jboss-negotiation/pull/11
Comment 2 Emmanuel Hugonnet (ehsavoie) 2014-06-06 07:42:15 UTC 
PR: https://github.com/wildfly-security/jboss-negotiation/pull/17
Comment 4 Hynek Mlnarik 2014-06-20 06:48:17 UTC 
Verified in 6.2.4.CP.CR1
Note You need to log in before you can comment on or make changes to this bug.