You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@knox.apache.org by "Kevin Minder (JIRA)" <ji...@apache.org> on 2013/06/19 18:25:21 UTC

[jira] [Commented] (KNOX-78) spnego authorization to cluster is failing

    [ https://issues.apache.org/jira/browse/KNOX-78?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13688125#comment-13688125 ] 

Kevin Minder commented on KNOX-78:
----------------------------------

Is there a way to ensure that the provider/filter that used the Authorization header can "consume" it so that it is not propagated to down stream provider/filters, especially the dispatch filter where it would be copied to the outbound request.
                
> spnego authorization to cluster is failing
> ------------------------------------------
>
>                 Key: KNOX-78
>                 URL: https://issues.apache.org/jira/browse/KNOX-78
>             Project: Apache Knox
>          Issue Type: Bug
>          Components: Server
>    Affects Versions: 0.3.0
>            Reporter: Dilli Arumugam
>            Assignee: Dilli Arumugam
>             Fix For: 0.3.0
>
>
> With updated workspace as of today,  SPNego authorization from Knox to secure cluster is failing.
> Inspecting the http headers show that Negotiate Authorization header is being overwritten by Basic Authorization header coming from browser. Seems to be introduced by changes added in fix for Jira Knox-8.

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira

Re: [jira] [Commented] (KNOX-78) spnego authorization to cluster is failing

Posted by larry mccay <la...@gmail.com>.

Probably requires a request wrapper but should be quite doable.


On Wed, Jun 19, 2013 at 12:25 PM, Kevin Minder (JIRA) <ji...@apache.org>wrote:

>
>     [
> https://issues.apache.org/jira/browse/KNOX-78?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13688125#comment-13688125]
>
> Kevin Minder commented on KNOX-78:
> ----------------------------------
>
> Is there a way to ensure that the provider/filter that used the
> Authorization header can "consume" it so that it is not propagated to down
> stream provider/filters, especially the dispatch filter where it would be
> copied to the outbound request.
>
> > spnego authorization to cluster is failing
> > ------------------------------------------
> >
> >                 Key: KNOX-78
> >                 URL: https://issues.apache.org/jira/browse/KNOX-78
> >             Project: Apache Knox
> >          Issue Type: Bug
> >          Components: Server
> >    Affects Versions: 0.3.0
> >            Reporter: Dilli Arumugam
> >            Assignee: Dilli Arumugam
> >             Fix For: 0.3.0
> >
> >
> > With updated workspace as of today,  SPNego authorization from Knox to
> secure cluster is failing.
> > Inspecting the http headers show that Negotiate Authorization header is
> being overwritten by Basic Authorization header coming from browser. Seems
> to be introduced by changes added in fix for Jira Knox-8.
>
> --
> This message is automatically generated by JIRA.
> If you think it was sent incorrectly, please contact your JIRA
> administrators
> For more information on JIRA, see: http://www.atlassian.com/software/jira
>