Uploaded image for project: 'JBoss Enterprise Application Platform'
  1. JBoss Enterprise Application Platform
  2. JBEAP-31422

The SPNEGO Authentication Mechanism should check the remaining life of any delgated credentials

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Unresolved
    • Icon: Major Major
    • None
    • None
    • Security
    • None
    • False
    • Hide

      None

      Show
      None
    • False

      The SPNEGO authentication mechanism will cache a resulting SecurityIdentity with the HTTP session along with any delegated credentials.

      Subsequent requests are assumed authenticated even if the delegated credential has expired.

      If the delegated credential has expired SPNEGO authentication should begin again to refresh the delegated credential.

              darran.lofthouse@redhat.com Darran Lofthouse
              darran.lofthouse@redhat.com Darran Lofthouse
              Votes:
              1 Vote for this issue
              Watchers:
              5 Start watching this issue

                Created:
                Updated: