Michael Osipov commented on HTTPCLIENT-1912:

Your implementation is incorrect. The {{GSSContext}} must be maintained 
stateful and has to be completed. The way you made it makes is  inherently 
insecure. Please read RFC 7546.

> AuthSchemes.SPNEGO should be able to specify login conf and krb5 conf as 
> parameters instead of system properties
> ----------------------------------------------------------------------------------------------------------------
>                 Key: HTTPCLIENT-1912
>                 URL: https://issues.apache.org/jira/browse/HTTPCLIENT-1912
>             Project: HttpComponents HttpClient
>          Issue Type: Improvement
>          Components: HttpClient (classic)
>    Affects Versions: 4.5.2
>            Reporter: Nicholas DiPiazza
>            Priority: Major
>              Labels: volunteers-wanted
>             Fix For: Stuck
> in order to use spenego 
> see 
> [example|https://github.com/jumarko/kerberos-auth-example/blob/master/src/main/java/net/curiousprogrammer/auth/kerberos/example/KerberosAuthExample.java]
> you need to specify system properties to specify a custom krb5.conf or 
> login.conf location.
> It would be very useful if these could be given as parameters somehow instead 
> of system properties, because in our cloud apps use case, sharing these as 
> system properties at the jvm level is causing conflicts. 

This message was sent by Atlassian JIRA

To unsubscribe, e-mail: dev-unsubscr...@hc.apache.org
For additional commands, e-mail: dev-h...@hc.apache.org

Reply via email to