Hi,
I'm writing to add spnego support to httpclient 3.0 and need of some
advice.
I started by writing a NegotiateScheme implementing AuthScheme and using
org.ietf.jgss and jaas for authentication. But as a went on I realized
that the AuthScheme.authenticate is never called if no credentials are
provided thru org.apache.commons.httpclient.Credentials. I can program
around this by adding NegotiateDummyCredentials but this is not a very
god solution. Can this be done in a better way so that the code get more
structure? In tha case of jaas, credentials are provided thru a Subject.
see
http://www11.informatik.tu-muenchen.de/Java/j2sdkse/guide/security/jgss/tutorials/ClientServer.html
references:
http://www.ietf.org/internet-drafts/draft-jaganathan-kerberos-http-00.txt
http://msdn.microsoft.com/library/default.asp?url=/library/en-us/dnsecure/html/http-sso-2.asp
Regards
/ Mikael Wikstrom
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
