Stack Overflow
Stack Overflow

Questions tagged [spring-security-kerberos]

Kerberos support for Spring Security.

Spring Security Kerberos - Kerberos support for Spring Security.

Spring Security is a popular, highly customizable authentication and authorization framework for Java/Java EE and is a de-facto standard for securing Spring-based applications. As a Java based security solution, it is mostly applicable for the Java-based web applications that are built upon Spring Security framework. The Spring Security framework can authenticate with any social or enterprise identity provider. The most popular and secure enterprise identity provider for Spring Security framework is Kerberos.

Official Website: http://static.springsource.org/spring-security/site/extensions/krb/

Useful Links:

Related Tags:

117 questions
18
votes
9 answers

Kerberos - Cannot find key of appropriate type to decrypt AP REP - RC4 with HMAC

I'm trying to setup SSO for Java WebApp using Kerberos/SpNego. I'm using: Java 1.7u67 org.springframework.security.kerberos 1.0.0.RELEASE Active Directory Tomcat 7 on Linux After overcoming the problem discribed in How to configure kerberos on…
Gunnar Kiesel
  • 783
  • 1
  • 8
  • 21
15
votes
3 answers

GSSException: No valid credentials provided (Mechanism level: Failed to find any Kerberos tgt)

I am very much new to the MOngoDB + Java Configuration. I am trying to achive the connection from remote mongodb server from Java application. I want to use GSSAPI mechanism for connection with mongotemplate. Below code has been executing…
Krishna Kumar Chourasiya
  • 2,030
  • 3
  • 20
  • 23
10
votes
2 answers

Kerberos error: GSSHeader did not find the right tag

I’m trying to make Kerberos authentication connection to a SOAP service wsdl url. I’m able to establish connection successfully and make service calls. After I start my server, I’m able to make successful service call at least once. However after…
Pranalee
  • 3,389
  • 3
  • 22
  • 36
8
votes
1 answer

How to prevent browser from sending NTLM credentials?

I’m working on a site where we want to use Kerberos authentication using Spring Security Kerberos. So, we don’t support NTLM. When the user makes an unauthenticated request, the server will reply with an HTTP 401 with header WWW-Authenticate:…
Stephen Rosenthal
  • 773
  • 4
  • 15
8
votes
3 answers

Kerberos spring javax.security.auth.login.LoginException: Unable to obtain password from user

I am implementing kerberos Authentication in my existing java spring application.My unix team has provided me SPN, krb5.conf and keytab file. I am trying hard with below code and configuration but getting unable to obtain password from user…
codelearner
  • 131
  • 1
  • 1
  • 12
7
votes
3 answers

Optional kerberos authentication?

Is it possible to do optional kerberos authentication? What I want is: if the client (browser) is not on the domain it is redirected to a username/password web login. Otherwise it will do SPNEGO do Kerberos authentication. Is there is any solution…
user3337285
  • 81
  • 1
  • 3
6
votes
0 answers

Java Kerberos authentication: get user groups from ticket using spring security

I need to implement Kerberos authentication and get AD user groups for the authenticated user. I am restricted to use Kerberos protocol only so I am not able to use LDAP queries to AD. It looks like, Kerberos authentication could be implemented…
MaSEL
  • 505
  • 1
  • 5
  • 20
6
votes
2 answers

GSSContext with null SrcName

I'm working a web appliaction with SSO based on the Windows domain login, for this purpose I have chosen to validate Kerberos tickets. But now I'm facing a problem for which I can't find a solution. I manage to validate a ticket without exceptions,…
Vartlok
  • 2,539
  • 3
  • 32
  • 46
5
votes
0 answers

Reactive Spring security kerberos compatible with Spring 5

I'm writing an application using Spring 5 reactive stack. Currently, we are using spring-security-kerberos-core 1.1 along with Spring 4 artifacts. Wondering when writing things in Spring 5 along with reactive stack, is there any reactive library…
User5817351
  • 989
  • 2
  • 16
  • 36
5
votes
2 answers

Error in Spring Security Kerberos windows authentication

I'm trying to set-up Spring based security Web application in our environment. As described in http://docs.spring.io/spring-security-kerberos/docs/1.0.1.RELEASE/reference/htmlsingle/#setupwinkerberos To confirm that everything set-up properly I'm…
AlexeiP
  • 581
  • 1
  • 10
  • 26
5
votes
2 answers

Spring Security Kerberos + AD, Checksum Fail

I'm trying to do a Spring Security Kerberos with Active Directory credentials as stated in http://docs.spring.io/spring-security-kerberos/docs/1.0.1.RELEASE/reference/htmlsingle/#samples-sec-server-win-auth. I'd like to say that I've got most of the…
mugua
  • 224
  • 1
  • 3
  • 11
5
votes
0 answers

Testing Kerberos login from browser against a realm without cross-realm trust

We are trying to build a Spring web application with Kerberos authentication. Our dev machine is part of a corporate AD domain. We have a local KDC in a VM to test kerberos, but does not have a trust with the AD. Network Identity manager is able to…
Krishna
  • 1,871
  • 14
  • 26
4
votes
0 answers

Generate JWT after spring security kerberos authentication

I would like to generate a JWT token after a kerberos authentication. My kerberos authentication works very well. Here my spring security kerberos configuration : @Configuration @EnableWebMvcSecurity public class WebSecurityConfig extends…
rachelle
  • 91
  • 1
  • 6
4
votes
0 answers

HikariCP with Kerberos JDBC for Connection Pooling

My application runs with Spring Framework and have to connected to Hive server with Kerberos Authentication along with HikariCP. I looked into examples of Spring Security Kerberos but i could not relate it with Hikari CP. The following is the code…
Subash Prabanantham
  • 41
  • 5
4
votes
2 answers

spring security using kerberos/spnego authentication

I have got spring security using kerberos authentication successfully working. But it seems the spring framework is invoking KerberosServiceAuthenticationProvider.userDetailsService to get the roles, I would have thought that it gets the roles only…
java1977
  • 398
  • 4
  • 12
  • 25
1
2 3 4 5 6 7 8