Java SPNEGO Authentication & Kerberos Constrained Delegation (KCD) to backend service

by

I’ve actually been doing something like this recently but am using spring security kerberos. I put an example on github here. The key thing that I found that I needed set up to use constrained delegation like you want it and S4U2Proxy was to make sure (if you’re using Oracle/OpenJDK) you set isInitiator=true in your JAAS Config so that when getDelegCred is called you get back a Krb5ProxyCredential. See comment here. With that credential, you can use it to create service ticket tokens on the Users behalf for the services you are constrained to use in the normal fashion, like this.

More Related Contents:

  1. Should I call ugi.checkTGTAndReloginFromKeytab() before every action on hadoop?
  2. “Defective token detected” error (NTLM not Kerberos) with Kerberos/Spring Security/IE/Active Directory
  3. Skipping Kerberos authentication prompts with JSch [duplicate]
  4. How to connect with Java into Active Directory
  5. Simple Kerberos client in Java?
  6. Initialize class fields in constructor or at declaration?
  7. JPanel in puzzle game not updating
  8. Is there a way to instantiate a class by name in Java?
  9. Is there a way to access an iteration-counter in Java’s for-each loop?
  10. How to add parameters to a HTTP GET request in Android?
  11. Java: Reading a file into an array
  12. how to convert image to byte array in java? [duplicate]
  13. how to get data between quotes in java?
  14. Is there a way to get a reference address? [duplicate]
  15. Get a key from JTextArea
  16. How to generate Javadoc HTML files in Eclipse?
  17. JOptionPane – check user input and prevent from closing until conditions are met
  18. How to get Method Parameter names in Java 8 using reflection?
  19. Why can a enum have a package-private constructor?
  20. “Hello world” Android app with as few files as possible, no IDE, and text editor only
  21. Use of uninitialized final field – with/without ‘this.’ qualifier
  22. How to get day of the month?
  23. Multiplication of two ints overflowing to result in a negative number
  24. Today is nth day of year [duplicate]
  25. Convert String with Dot or Comma to Float Number
  26. Why does printing a Java array show a memory location [duplicate]
  27. Java2D: Is it always safe to cast Graphics into Graphics2D
  28. Spring Data + JPA with multiple datasources but only one set of Repositories
  29. Android color picker to be included in the activity
  30. Encrypt with Node.js Crypto module and decrypt with Java (in Android app)

Leave a Comment