Loading...

XML

Word

Printable

Type: Bug
Resolution: Done
Priority: Major
Fix Version/s: 2.0.0.Beta2, 1.15.12.Final, 1.20.0.Final, 1.19.1.Final
Affects Version/s: 1.15.11.Final
Component/s: Authentication Mechanisms
Labels:
- downstream_dependency

Git Pull Request:
https://github.com/wildfly-security/wildfly-elytron/pull/1686

The GSSCredentialSecurityFactory tests the validity of any cached GSSCredential but it does not test the validity of the cached KerberosTicket.

Once the KerberosTicket has expired it is no longer possible for the server to receive a delegated credential.

is cloned by

JBEAP-23421 [GSS](7.4.z) ELY-2326 - Elytron GSSCredentialSecurityFactory does not check validity of KerberosTicket.

Closed

Assignee:: Darran Lofthouse

Reporter:: Darran Lofthouse

Votes:: 0 Vote for this issue

Watchers:: 4 Start watching this issue

Created:: 2022/03/23 10:34 AM

Updated:: 2023/01/03 5:13 AM

Resolved:: 2022/04/07 6:35 PM