You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@jmeter.apache.org by bu...@apache.org on 2017/02/06 20:55:38 UTC
[Bug 60696] New: SPNEGO always canonicalizes host names, Option to
pick behavior would be welcome
https://bz.apache.org/bugzilla/show_bug.cgi?id=60696
Bug ID: 60696
Summary: SPNEGO always canonicalizes host names, Option to pick
behavior would be welcome
Product: JMeter
Version: 3.1
Hardware: PC
OS: Mac OS X 10.1
Status: NEW
Severity: normal
Priority: P2
Component: HTTP
Assignee: issues@jmeter.apache.org
Reporter: zolyfarkas@yahoo.com
Target Milestone: ---
At:
https://github.com/apache/jmeter/blob/c616f4f84d11812febbf442806b90b02c306fe0c/src/protocol/http/org/apache/jmeter/protocol/http/control/AuthManager.java#L474
SPNegoSchemeFactory is created like:
new SPNegoSchemeFactory(isStripPort(url)));
the scheme factory has an alternate constructor
(https://github.com/apache/httpclient/blob/4.5.x/httpclient/src/main/java/org/apache/http/impl/auth/SPNegoSchemeFactory.java#L53)
that allows to pick canonicalization behavior for the host name:
/**
* @since 4.4
*/
public SPNegoSchemeFactory(final boolean stripPort, final boolean
useCanonicalHostname) {
Unfortunately for certain use cases where we have a load balancer serving
multiple names mapped to the same IP address the canonicalization breaks
authentication for us by generating a incorrect SPN.
It would be helpful to be able to control this behavior in JMeter either via UI
or config.
--
You are receiving this mail because:
You are the assignee for the bug.
[Bug 60696] SPNEGO always canonicalizes host names, Option to pick
behavior would be welcome
Posted by bu...@apache.org.
https://bz.apache.org/bugzilla/show_bug.cgi?id=60696
--- Comment #2 from Zoltan Farkas <zo...@yahoo.com> ---
Maybe apache HTTP client instead of defaulting to useCanonicalHostname = true
should default to whatever is configured in krb5.conf [libdefaults]
canonicalize = ?
http://web.mit.edu/kerberos/krb5-devel/doc/admin/conf_files/krb5_conf.html
--
You are receiving this mail because:
You are the assignee for the bug.
[Bug 60696] SPNEGO always canonicalizes host names, Option to pick
behavior would be welcome
Posted by bu...@apache.org.
https://bz.apache.org/bugzilla/show_bug.cgi?id=60696
--- Comment #1 from Michael Osipov <19...@gmx.net> ---
For what it is worth, see my tickets for HttpClient in JIRA. This code is
severely broken.
--
You are receiving this mail because:
You are the assignee for the bug.
[Bug 60696] SPNEGO always canonicalizes host names, Option to pick
behavior would be welcome
Posted by bu...@apache.org.
https://bz.apache.org/bugzilla/show_bug.cgi?id=60696
Philippe Mouawad <p....@ubik-ingenierie.com> changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |p.mouawad@ubik-ingenierie.c
| |om
Status|NEW |NEEDINFO
--- Comment #3 from Philippe Mouawad <p....@ubik-ingenierie.com> ---
(In reply to Michael Osipov from comment #1)
> For what it is worth, see my tickets for HttpClient in JIRA. This code is
> severely broken.
Hi,
Which one ?
Thanks
--
You are receiving this mail because:
You are the assignee for the bug.
[Bug 60696] SPNEGO always canonicalizes host names, Option to pick
behavior would be welcome
Posted by bu...@apache.org.
https://bz.apache.org/bugzilla/show_bug.cgi?id=60696
--- Comment #4 from Philippe Mouawad <p....@ubik-ingenierie.com> ---
(In reply to Philippe Mouawad from comment #3)
> (In reply to Michael Osipov from comment #1)
> > For what it is worth, see my tickets for HttpClient in JIRA. This code is
> > severely broken.
>
> Hi,
> Which one ?
> Thanks
I suppose those are the tickets:
https://issues.apache.org/jira/browse/HTTPCLIENT-1625
https://issues.apache.org/jira/browse/HTTPCLIENT-1570
--
You are receiving this mail because:
You are the assignee for the bug.