Github user semancik commented on the issue:
https://github.com/apache/httpcomponents-client/pull/66
CredSSP is needed in implementation of Microsoft WS-MAN protocols,
especially WINRM. Kerberos does not solve the "second hop problem" (see
https://docs.microsoft.com/en-us/windows/desktop/winrm/multi-hop-support).
CredSSP seems to be the only viable solution. I do not like that myself.
CredSSP is a terrible protocol, one of the worst I have ever seen. But it looks
like there is no better (or less evil) approach.
---
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
