[JGSS_DBG_CRED] main JAAS config: debug=true [JGSS_DBG_CRED] main JAAS config: credsType=initiate only (default) [JGSS_DBG_CRED] main config: useDefaultCcache=false [JGSS_DBG_CRED] main config: useCcache=null [JGSS_DBG_CRED] main config: useDefaultKeytab=false (default) [JGSS_DBG_CRED] main config: useKeytab=null [JGSS_DBG_CRED] main JAAS config: forwardable=false (default) [JGSS_DBG_CRED] main JAAS config: renewable=false (default) [JGSS_DBG_CRED] main JAAS config: proxiable=false (default) [JGSS_DBG_CRED] main JAAS config: tryFirstPass=false (default) [JGSS_DBG_CRED] main JAAS config: useFirstPass=false (default) [JGSS_DBG_CRED] main JAAS config: moduleBanner=false (default) [JGSS_DBG_CRED] main JAAS config: interactive login? yes [JGSS_DBG_CRED] main JAAS config: refreshKrb5Config = true [JGSS_DBG_CRED] main Retrieving Kerberos creds from cache for principal=null [JGSS_DBG_CRED] main No Kerberos creds in cache for principal jduke53aca080-f4f6-4e07-bdf9-52375f46a7ea [JGSS_DBG_CRED] main Doing Kerberos login for principal jduke53aca080-f4f6-4e07-bdf9-52375f46a7ea@JBOSS.ORG [JGSS_DBG_CRED] main Doing Kerberos login for principal: jduke53aca080-f4f6-4e07-bdf9-52375f46a7ea@JBOSS.ORG [JGSS_DBG_CRED] main Kerberos login complete [JGSS_DBG_CRED] main Login successful [JGSS_DBG_CRED] main kprincipal : jduke53aca080-f4f6-4e07-bdf9-52375f46a7ea@JBOSS.ORG [JGSS_DBG_CRED] main jduke53aca080-f4f6-4e07-bdf9-52375f46a7ea@JBOSS.ORG added to Subject [JGSS_DBG_CRED] main Kerberos ticket added to Subject [JGSS_DBG_CRED] main added key of type aes128-cts-hmac-sha1-96 [JGSS_DBG_CRED] main KerberosTicket is removed from subject [JGSS_DBG_CRED] main KerberosKey Kerberos Principal jduke53aca080-f4f6-4e07-bdf9-52375f46a7ea@JBOSS.ORGKey Version 0key EncryptionKey: keyType=17 keyBytes (hex dump)= 0000: 94 c9 be c9 3d 9e a1 70 f7 80 9f 0a 37 40 ac 20 .......p....7... is removed from subject [JGSS_DBG_CRED] main KerberosTicket is removed from subject [JGSS_DBG_CRED] main KerberosTicket is removed from subject 10:43:35,336 TRACE [org.wildfly.security] (default task-1) Handling MechanismInformationCallback 10:43:35,336 TRACE [org.wildfly.security] (default task-1) Evaluating SPNEGO request: cached GSSContext = null 10:43:35,336 TRACE [org.wildfly.security] (default task-1) Obtaining GSSCredential for the service from callback handler... 10:43:35,337 TRACE [org.wildfly.security] (default task-1) No valid cached credential, obtaining new one... 10:43:35,338 TRACE [org.wildfly.security] (default task-1) Logging in using LoginContext and subject [Subject: ] 10:43:35,350 INFO [stdout] (default task-1) [JGSS_DBG_CRED] default task-1 JAAS config: debug=true 10:43:35,351 INFO [stdout] (default task-1) [JGSS_DBG_CRED] default task-1 JAAS config: principal=HTTP/localhost.localdomain@JBOSS.ORG 10:43:35,351 INFO [stdout] (default task-1) [JGSS_DBG_CRED] default task-1 JAAS config: credsType=accept only 10:43:35,351 INFO [stdout] (default task-1) [JGSS_DBG_CRED] default task-1 config: useDefaultCcache=false (default) 10:43:35,352 INFO [stdout] (default task-1) [JGSS_DBG_CRED] default task-1 config: useCcache=null 10:43:35,352 INFO [stdout] (default task-1) [JGSS_DBG_CRED] default task-1 config: useDefaultKeytab=false 10:43:35,353 INFO [stdout] (default task-1) [JGSS_DBG_CRED] default task-1 config: useKeytab=/home/mchoma/workspace/git-repositories/tests-ldap-kerberos-eap7/eap71/target/krb/krb.7036475003001957368.keytab 10:43:35,356 INFO [stdout] (default task-1) [JGSS_DBG_CRED] default task-1 JAAS config: forwardable=false (default) 10:43:35,356 INFO [stdout] (default task-1) [JGSS_DBG_CRED] default task-1 JAAS config: renewable=false (default) 10:43:35,357 INFO [stdout] (default task-1) [JGSS_DBG_CRED] default task-1 JAAS config: proxiable=false (default) 10:43:35,357 INFO [stdout] (default task-1) [JGSS_DBG_CRED] default task-1 JAAS config: tryFirstPass=false (default) 10:43:35,357 INFO [stdout] (default task-1) [JGSS_DBG_CRED] default task-1 JAAS config: useFirstPass=false (default) 10:43:35,357 INFO [stdout] (default task-1) [JGSS_DBG_CRED] default task-1 JAAS config: moduleBanner=false (default) 10:43:35,358 INFO [stdout] (default task-1) [JGSS_DBG_CRED] default task-1 JAAS config: interactive login? no 10:43:35,358 INFO [stdout] (default task-1) [JGSS_DBG_CRED] default task-1 Try keytab for principal=HTTP/localhost.localdomain@JBOSS.ORG 10:43:35,433 INFO [stdout] (default task-1) [JGSS_DBG_CRED] default task-1 No Kerberos creds in keytab for principal HTTP/localhost.localdomain@JBOSS.ORG 10:43:35,433 INFO [stdout] (default task-1) [JGSS_DBG_CRED] default task-1 Login successful 10:43:35,434 INFO [stdout] (default task-1) [JGSS_DBG_CRED] default task-1 kprincipal : HTTP/localhost.localdomain@JBOSS.ORG 10:43:35,434 INFO [stdout] (default task-1) [JGSS_DBG_CRED] default task-1 HTTP/localhost.localdomain@JBOSS.ORG added to Subject 10:43:35,434 INFO [stdout] (default task-1) [JGSS_DBG_CRED] default task-1 KeyTab added to Subject 10:43:35,434 INFO [stdout] (default task-1) [JGSS_DBG_CRED] default task-1 No keys to add to Subject for HTTP/localhost.localdomain@JBOSS.ORG 10:43:35,434 TRACE [org.wildfly.security] (default task-1) Logging in using LoginContext and subject [Subject: Principal: HTTP/localhost.localdomain@JBOSS.ORG Private Credential: /home/mchoma/workspace/git-repositories/tests-ldap-kerberos-eap7/eap71/target/krb/krb.7036475003001957368.keytab for HTTP/localhost.localdomain@JBOSS.ORG ] succeed 10:43:35,435 TRACE [org.wildfly.security] (default task-1) Creating GSSName for Principal 'HTTP/localhost.localdomain@JBOSS.ORG' 10:43:35,445 TRACE [org.wildfly.security] (default task-1) Obtained GSSCredential [ --- GSSCredential --- Number of mehanism credentials: 2 [1] com.ibm.security.jgss.mech.spnego.SPNEGOCredElement@9faba07 [2] Kerberos credential, mechanism: 1.2.840.113554.1.2.2 Owner: HTTP/localhost.localdomain@JBOSS.ORG Usage: accept only StartTime: 1/11/17 10:43 AM InitLifeTime: unknown AcceptLifeTime: indefinite Krb5Client: HTTP/localhost.localdomain@JBOSS.ORG Krb5Server: unknown --- End of GSSCredential --- ] 10:43:35,523 TRACE [org.wildfly.security] (default task-1) Handling ServerCredentialCallback: obtained successfully 10:43:35,525 TRACE [org.wildfly.security] (default task-1) Caching GSSContext --- GSSContext --- Owner: HTTP/localhost.localdomain@JBOSS.ORG Peer: unknown State: uninitialized Lifetime: expired or unknown Ready: no Flags: Confidentiality off Delegation off Integrity off MutualAuthn off ReplayDetection off SequenceDetection off DelegatedCred: unknown --- End of GSSContext --- 10:43:35,525 TRACE [org.wildfly.security] (default task-1) Sent HTTP authorizations: [null] 10:43:35,525 TRACE [org.wildfly.security] (default task-1) Request lacks valid authentication credentials 10:43:35,550 TRACE [org.wildfly.security] (default task-2) Handling MechanismInformationCallback 10:43:35,550 TRACE [org.wildfly.security] (default task-2) Evaluating SPNEGO request: cached GSSContext = null 10:43:35,550 TRACE [org.wildfly.security] (default task-2) Obtaining GSSCredential for the service from callback handler... 10:43:35,550 TRACE [org.wildfly.security] (default task-2) Used cached GSSCredential [ --- GSSCredential --- Number of mehanism credentials: 2 [1] com.ibm.security.jgss.mech.spnego.SPNEGOCredElement@9faba07 [2] Kerberos credential, mechanism: 1.2.840.113554.1.2.2 Owner: HTTP/localhost.localdomain@JBOSS.ORG Usage: accept only StartTime: 1/11/17 10:43 AM InitLifeTime: unknown AcceptLifeTime: indefinite Krb5Client: HTTP/localhost.localdomain@JBOSS.ORG Krb5Server: unknown --- End of GSSCredential --- ] 10:43:35,551 TRACE [org.wildfly.security] (default task-2) Handling ServerCredentialCallback: obtained successfully 10:43:35,551 TRACE [org.wildfly.security] (default task-2) Caching GSSContext --- GSSContext --- Owner: HTTP/localhost.localdomain@JBOSS.ORG Peer: unknown State: uninitialized Lifetime: expired or unknown Ready: no Flags: Confidentiality off Delegation off Integrity off MutualAuthn off ReplayDetection off SequenceDetection off DelegatedCred: unknown --- End of GSSContext --- 10:43:35,553 TRACE [org.wildfly.security] (default task-2) Sent HTTP authorizations: [Negotiate YD0GBisGAQUFAqAzMDGgHzAdBgUpAgUGBwYJKoZIgvcSAQICBgkqhkiG9xIBAgKiDgQMQWhvaiwgc3ZldGUh] 10:43:35,553 TRACE [org.wildfly.security] (default task-2) Processing incoming response to a challenge... 10:43:35,559 TRACE [org.wildfly.security] (default task-2) GSSContext establishing - sending negotiation token to the peer 10:43:35,560 TRACE [org.wildfly.security] (default task-2) Sending intermediate challenge: [B@3ff2a067 10:43:35,564 INFO [org.jboss.eapqe.krbldap.eap71.tests.krb.http.SPNEGOTestCase] (main) Negotiate response in HTTP header: Tagged [1] DER Sequence Tagged [0] DER Enumerated(1) Tagged [1] ObjectIdentifier(1.2.840.113554.1.2.2) 10:43:35,567 TRACE [org.wildfly.security] (default task-3) Handling MechanismInformationCallback 10:43:35,567 TRACE [org.wildfly.security] (default task-3) Evaluating SPNEGO request: cached GSSContext = --- GSSContext --- Owner: HTTP/localhost.localdomain@JBOSS.ORG Peer: HTTP/localhost.localdomain@JBOSS.ORG State: initialized Lifetime: indefinite Ready: no Flags: Confidentiality off Delegation off Integrity off MutualAuthn off ReplayDetection off SequenceDetection off DelegatedCred: unknown --- End of GSSContext --- 10:43:35,568 TRACE [org.wildfly.security] (default task-3) Sent HTTP authorizations: [Negotiate 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] 10:43:35,568 TRACE [org.wildfly.security] (default task-3) Processing incoming response to a challenge... 10:43:35,570 TRACE [org.wildfly.security] (default task-3) GSSContext message exchange failed: org.ietf.jgss.GSSException, major code: 10, minor code: 0 major string: Defective token minor string: Bad token tag: -95 at com.ibm.security.jgss.i18n.I18NException.throwGSSException(I18NException.java:5) at com.ibm.security.jgss.TokenHeader.a(TokenHeader.java:33) at com.ibm.security.jgss.TokenHeader.a(TokenHeader.java:102) at com.ibm.security.jgss.TokenHeader.(TokenHeader.java:70) at com.ibm.security.jgss.GSSContextImpl.acceptSecContext(GSSContextImpl.java:119) at com.ibm.security.jgss.GSSContextImpl.acceptSecContext(GSSContextImpl.java:186) at org.wildfly.security.http.impl.SpnegoAuthenticationMechanism.evaluateRequest(SpnegoAuthenticationMechanism.java:138) at org.wildfly.security.http.util.SetMechanismInformationMechanismFactory$1.evaluateRequest(SetMechanismInformationMechanismFactory.java:115) at org.wildfly.security.http.util.SecurityIdentityServerMechanismFactory$1.evaluateRequest(SecurityIdentityServerMechanismFactory.java:77) at org.wildfly.security.http.HttpAuthenticator$AuthenticationExchange.authenticate(HttpAuthenticator.java:106) at org.wildfly.security.http.HttpAuthenticator$AuthenticationExchange.access$100(HttpAuthenticator.java:90) at org.wildfly.security.http.HttpAuthenticator.authenticate(HttpAuthenticator.java:74) at org.wildfly.elytron.web.undertow.server.SecurityContextImpl.authenticate(SecurityContextImpl.java:82) at io.undertow.servlet.handlers.security.ServletAuthenticationCallHandler.handleRequest(ServletAuthenticationCallHandler.java:55) at io.undertow.server.handlers.DisableCacheHandler.handleRequest(DisableCacheHandler.java:33) at io.undertow.server.handlers.PredicateHandler.handleRequest(PredicateHandler.java:43) at io.undertow.security.handlers.AuthenticationConstraintHandler.handleRequest(AuthenticationConstraintHandler.java:53) at io.undertow.security.handlers.AbstractConfidentialityHandler.handleRequest(AbstractConfidentialityHandler.java:46) at io.undertow.servlet.handlers.security.ServletConfidentialityConstraintHandler.handleRequest(ServletConfidentialityConstraintHandler.java:64) at io.undertow.servlet.handlers.security.ServletSecurityConstraintHandler.handleRequest(ServletSecurityConstraintHandler.java:59) at io.undertow.security.handlers.AbstractSecurityContextAssociationHandler.handleRequest(AbstractSecurityContextAssociationHandler.java:43) at io.undertow.server.handlers.PredicateHandler.handleRequest(PredicateHandler.java:43) at org.wildfly.extension.undertow.deployment.GlobalRequestControllerHandler.handleRequest(GlobalRequestControllerHandler.java:46) at io.undertow.server.handlers.PredicateHandler.handleRequest(PredicateHandler.java:43) at io.undertow.servlet.handlers.ServletInitialHandler.handleFirstRequest(ServletInitialHandler.java:292) at io.undertow.servlet.handlers.ServletInitialHandler.access$100(ServletInitialHandler.java:81) at io.undertow.servlet.handlers.ServletInitialHandler$2.call(ServletInitialHandler.java:138) at io.undertow.servlet.handlers.ServletInitialHandler$2.call(ServletInitialHandler.java:135) at io.undertow.servlet.core.ServletRequestContextThreadSetupAction$1.call(ServletRequestContextThreadSetupAction.java:48) at io.undertow.servlet.core.ContextClassLoaderSetupAction$1.call(ContextClassLoaderSetupAction.java:43) at org.wildfly.extension.undertow.deployment.UndertowDeploymentInfoService$UndertowThreadSetupAction.lambda$create$0(UndertowDeploymentInfoService.java:1689) at org.wildfly.extension.undertow.deployment.UndertowDeploymentInfoService$UndertowThreadSetupAction$$Lambda$719.00000000240AFB80.call(Unknown Source) at org.wildfly.extension.undertow.deployment.UndertowDeploymentInfoService$UndertowThreadSetupAction.lambda$create$0(UndertowDeploymentInfoService.java:1689) at org.wildfly.extension.undertow.deployment.UndertowDeploymentInfoService$UndertowThreadSetupAction$$Lambda$719.00000000240AFB80.call(Unknown Source) at org.wildfly.extension.undertow.deployment.UndertowDeploymentInfoService$UndertowThreadSetupAction.lambda$create$0(UndertowDeploymentInfoService.java:1689) at org.wildfly.extension.undertow.deployment.UndertowDeploymentInfoService$UndertowThreadSetupAction$$Lambda$719.00000000240AFB80.call(Unknown Source) at org.wildfly.extension.undertow.deployment.UndertowDeploymentInfoService$UndertowThreadSetupAction.lambda$create$0(UndertowDeploymentInfoService.java:1689) at org.wildfly.extension.undertow.deployment.UndertowDeploymentInfoService$UndertowThreadSetupAction$$Lambda$719.00000000240AFB80.call(Unknown Source) at io.undertow.servlet.handlers.ServletInitialHandler.dispatchRequest(ServletInitialHandler.java:272) at io.undertow.servlet.handlers.ServletInitialHandler.access$000(ServletInitialHandler.java:81) at io.undertow.servlet.handlers.ServletInitialHandler$1.handleRequest(ServletInitialHandler.java:104) at io.undertow.server.Connectors.executeRootHandler(Connectors.java:210) at io.undertow.server.HttpServerExchange$1.run(HttpServerExchange.java:809) at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1153) at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:628) at java.lang.Thread.run(Thread.java:785) 10:43:35,571 TRACE [org.wildfly.security] (default task-3) Handling AuthenticationCompleteCallback: fail 10:43:35,573 INFO [org.jboss.eapqe.krbldap.eap71.tests.krb.http.SPNEGOTestCase] (main) Negotiate response in HTTP header: null