Stack Overflow
Stack Overflow

Questions tagged [spring-security-kerberos]

Kerberos support for Spring Security.

Spring Security Kerberos - Kerberos support for Spring Security.

Spring Security is a popular, highly customizable authentication and authorization framework for Java/Java EE and is a de-facto standard for securing Spring-based applications. As a Java based security solution, it is mostly applicable for the Java-based web applications that are built upon Spring Security framework. The Spring Security framework can authenticate with any social or enterprise identity provider. The most popular and secure enterprise identity provider for Spring Security framework is Kerberos.

Official Website: http://static.springsource.org/spring-security/site/extensions/krb/

Useful Links:

Related Tags:

117 questions
3
votes
0 answers

Both Oracle and Sybase Kerberos Authentication using Hikari Datasource in Spring Boot

In my spring boot application I am using two databases Oracle and Sybase and connecting the database using Kerberos. When I kerberised one of them at a time it worked good, but when I try to use both of them at the same time I'm getting an…
Zia
  • 1,001
  • 1
  • 13
  • 25
3
votes
1 answer

Spring Boot + Ldap / AD + Kerberos SSO : KrbCryptoException - Checksum failed

I am trying to implement SSO with Spring Boot, Ldap and kerberos. Where I got multiple errors of Checksum fail for different encryption type. environment details:- Machine : Windows 10 JDK Version : Oracle 1.8.0_144 (64 bit) I appear to have hit a…
Saurabh Mehta
  • 228
  • 1
  • 4
  • 15
3
votes
1 answer

Replace Spring KerberosRestTemplate with new WebClient APIs

I am trying to replace existing Spring KerberosRestTemplate with WebClient APIs. So is there any support provided for Kerberos in new WebClient APIs? any help will be appreciated even pointing to some tutorial/doc will be helpful.
mann
  • 93
  • 8
3
votes
0 answers

Spring Security - fallback to basic authentication if Kerberos fails

How can I enable fallback to basic auth if Kerberos authentication fails (e.g. client is not on the domain)? With the configuration below no browser authentication window appears and the following exceptions are…
user1056903
  • 921
  • 9
  • 26
3
votes
1 answer

Spring Webflux + LDAP/Kerberos Security

I got a Spring Boot 2 Reactive Web Application that currently has a JWT-based authentication system. Now I would like to add a LDAP backend for authentication and allow Single-Sign On (SSO) via Kerberos. It seems Kerberos and LDAP support is…
Marc-Christian Schulze
  • 3,154
  • 3
  • 35
  • 45
3
votes
3 answers

Implementing Single Sign on using ADFS

I am new to ADFS/SSO world and currently working on feature to implement Single Sign On (SSO) using AD FS for our Java based web application and Windows native agent. Below are our requirement : Users should be logged in automatically(Without…
Praveen
  • 57
  • 1
  • 6
3
votes
0 answers

Using username and password for KerberosRestTemplate

How can I pass in kerberos username and password to the KerberosRestTemplate instead of passing keytab location or using validated cache. This works fine with plain spring security kerberos where for all rest calls the user passes the -u…
adeelmahmood
  • 2,371
  • 8
  • 36
  • 59
3
votes
0 answers

Spring security Kerberos was discontinued?

I need to implement SSO (Windows authentication) with Java in an Web App. I already use Spring Security and i found an extension named Kerberos, but this extension appears to be discontinued. The extension Kerberos for spring security was…
Leonardo Andrade
  • 576
  • 4
  • 9
2
votes
2 answers

How to pass windows authentication(browser) from react application to Spnego Kerberos Spring SSO?

We have a react application which used get that data from spring boot webservice. Both is deployed in a same server(tomcat). But we only need Kerberos authentication for webservice call from the React application. Anyone can open the React…
Subhajit Pal
  • 565
  • 1
  • 8
  • 19
2
votes
1 answer

KerberosAuthenticationProvider vs. KerberosServiceAuthenticationProvider

Moin! I use Spring Security 5 with Kerberos for the SSO authentication in my project. In the WebSecurityConfig I register two AuthenticationProvider @Override public void configure(AuthenticationManagerBuilder auth) throws Exception { …
Ruik
  • 1,222
  • 1
  • 20
  • 36
2
votes
1 answer

Kerberos: Negotiate Header was invalid (Cause GSSException: No valid credentials provided (Mechanism level: Failed to find any Kerberos credentails))

Moin! My attempts to authenticate a user via SSO with Spring Security 5 and Kerberos fail due to an exception from deep in the Kerberos code. I will first show the stack trace and the code causing it and then give additional information about my…
Ruik
  • 1,222
  • 1
  • 20
  • 36
2
votes
1 answer

Unspecified GSS failure: ... kvno [Number] found in keytab but not with enctype rc4-hmac

I am trying to run a code that verifies an Authorization token from the client. I wrote this code inside an function: host = 'site_address' state = None service_name = f'HTTP@{host}' try: rc, state = kerberos.authGSSServerInit(service_name) …
Yuval Pruss
  • 8,716
  • 15
  • 42
  • 67
2
votes
0 answers

Spring Boot JavaKerberos authentication Issue

I am trying to connect to SQL-Server usingJavaKerberos. My Jaas conf file looks like this : SQLJDBCDriver { com.sun.security.auth.module.Krb5LoginModule required useTicketCache=true useKeyTab=true keyTab="/etc/krb5.keytab" …
Dipika
  • 584
  • 2
  • 12
2
votes
1 answer

Kerberos: GSSContext name of the context initiator is null

I'm trying to integrate SSO via Kerberos/SPNEGO in my application as described here https://docs.spring.io/spring-security-kerberos/docs/1.0.2.BUILD-SNAPSHOT/reference/htmlsingle/#samples-sec-server-win-auth My context.xml looks like this:
Shareil
  • 69
  • 1
  • 6
2
votes
1 answer

Spring SPNEGO without form

I have some questions about setting up SPNEGO without use of form fall back. I am writing a web service that uses SPNEGO authentication and returns a signed JWT for the authenticated principal. I don't have any use for forms (can't use forms with…
PerennialN00b
  • 49
  • 3
1
2
3 4 5 6 7 8