Comments (3)
bedrin
commented on July 29, 2024
1
If you manage to get it working and share your setup I'll be happy to add it to some FAQ section.
from kerb4j.
bedrin
commented on July 29, 2024
Hi!
Windows ticket cache is out of scope for Kerb4J I'm afraid.
Java 13 introduced built-in support in the JDK for Windows' own GSS API (SSPI).
It was backported to Java 11.0.10 - I suggest you updating your JDK if you Java is older.
If you can change the registry, consider setting allowtgtsessionkey to 1 as described here.
If it doesn't work (I haven't tried it myself but have seen controversial reviews on the Internet) you can also try 3rd-party solutions like Waffle - again I haven't tried it myself.
Hope it helps.
from kerb4j.
d3athwarrior
commented on July 29, 2024
Hi,
I am on the latest release of JDK 11 which supposedly has the patch back ported but I can't seem to get it working, I know it's something I'll have to figure on my own.
I did look into the allowTGTsession key approach but doing it on many client machines doesn't seem like a sensible option.
Yes i did look into waffle as well but wasn't able to wrap my head around it completely. Again, thats gotta be something I'll have to dig into.
Thank you. I'll close the ticket.
Cheers.
from kerb4j.
Related Issues (20)
- Split package errors
- Checksum fails with kerb4j but passes with Spring Security Kerberos HOT 1
- Expose information about encryption method used (etype)
- Warn (and potentially fail) if RC4 or DES are used
- Accept Context shouldn't obtaing TGT by default
- Make API more open
- Support credentials delegation
- Test password expiration / accounts expiration cases and kerb4j cache
- Meaningfull exceptions
- Promote acceptOnly client to initiator automatically on demand
- Make all classes extendable (i.e. non final, without non public constructors) to simplify customizations
- Provide API for Kerberos configuration as opposed to providing path to file
- Implement different engines (JRE, Kerby, Waffle, own)
- Remove dependency on spring-security
- Do we have the plan to upgrade Kerby to 2.0.3 to mitigate CVE-2023-25613? HOT 3
- Support for Jakarta EE + Spring Kerberos 2.x HOT 5
- How can you use keytab based auth for proxy and user based basic auth for actual URL?
- Wrong SIDs returned in PacLogonInfo.resourceGroupSids
- How to provide different credentials to the service being called?
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from kerb4j.