Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

SEC 40 - Enhance co-existence of multiple authentication mechanisms in Liberty #9012

Closed
atosak opened this issue Sep 17, 2019 · 1 comment
Closed

SEC 40 - Enhance co-existence of multiple authentication mechanisms in Liberty #9012

atosak opened this issue Sep 17, 2019 · 1 comment
Assignees
@utle
Labels
Aha Idea Epic Used to track Feature Epics that are following the UFO process in:Security team:Core Security
Projects
Open Liberty Roadmap

Comments

@atosak
Copy link

atosak commented Sep 17, 2019

Liberty has limited support to have multiple authentication mechanisms to a service when one of them is SPNEGO. With custom TAI and the method isTargetInterceptor you could determine if this interceptor should handle the request. The method has the HttpServletRequest as a parameter so it is very flexible. With the SPNEGO feature there are limited possibilities to configure when and when not SPNEGO should handle the request. Only five filter elements are defined. There are several solutions for this: • Extend the configuration with a new filter element where you can enter a specific http header name together with a match type, in our case: “notContain” • Offer the deprecated Interface SpnegoTAIFilter and a SPNEGO TAI • Ensure that SPNEGO detects whether the subject is already created by a previous interceptor

Resolves RFE 103921
@atosak atosak added Epic Used to track Feature Epics that are following the UFO process Aha Idea labels Sep 17, 2019
@atosak atosak added this to Security in Open Liberty Roadmap Sep 17, 2019
@utle utle closed this as completed Sep 2, 2020
@utle utle reopened this Mar 15, 2021
@samwatibm
Copy link

RFE's have moved: https://cloud-platform.ideas.aha.io/ideas/TWAS-I-251

@malincoln malincoln moved this from Security to 23.0.0.1 in Open Liberty Roadmap Jun 26, 2023
@malincoln malincoln moved this from 23.0.0.1 to 22.0.0.6 in Open Liberty Roadmap Jun 26, 2023
@malincoln malincoln moved this from 22.0.0.6 to 22.0.0.3 in Open Liberty Roadmap Jun 26, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@utle utle

Labels
Aha Idea Epic Used to track Feature Epics that are following the UFO process in:Security team:Core Security
Projects
Open Liberty Roadmap
22.0.0.3
Milestone
No milestone
Development

No branches or pull requests
5 participants
@jtmulvey @garypicher @utle @atosak @samwatibm