Review Request 55231: Authentication negotiation HTTP response should be sent when Kerberos authentication is enabled

Robert Levas Thu, 05 Jan 2017 13:33:19 -0800

-----------------------------------------------------------
This is an automatically generated e-mail. To reply, visit:
https://reviews.apache.org/r/55231/
-----------------------------------------------------------


Review request for Ambari, Attila Magyar, Jonathan Hurley, Laszlo Puskas, and 
Nate Cole.


Bugs: MBARI-19389
    https://issues.apache.org/jira/browse/MBARI-19389


Repository: ambari


Description
-------

Authentication negotiation HTTP response should be automatically sent when 
needed when Kerberos authentication is enabled.  

The expected HTTP response during authentication failure when Kerberos 
authentication into Ambari is enabled is as follows:
```
HTTP/1.1 401 Authentication requested
WWW-Authenticate: Negotiate
```

When Kerberos authentication into Ambari is not enabled the expected HTTP 
response for an authentication failure is:
```
HTTP/1.1 403 Missing authentication token
```


Diffs
-----

  
ambari-server/src/main/java/org/apache/ambari/server/security/AmbariEntryPoint.java
 7e0ff79 
  ambari-server/src/main/resources/webapp/WEB-INF/spring-security.xml 9eca920 
  
ambari-server/src/test/java/org/apache/ambari/server/security/AmbariEntryPointTest.java
 PRE-CREATION 

Diff: https://reviews.apache.org/r/55231/diff/


Testing
-------

Manually tested


Thanks,

Robert Levas

Review Request 55231: Authentication negotiation HTTP response should be sent when Kerberos authentication is enabled

Reply via email to