Comments (10)
Sure, that's a good idea...I don't have the set up to test that, so I will need your help to confirm it's still work. Just curious, have you try changing code to see if that works? Merci.
from async-http-client.
As I am primary a Gatling user, I had just take a look at async-http-client yesterday. But yes, I should be able to change code and rebuild in few days.
By the way, the code of our working JUnit is inspired by the same source linked in the javadoc, so it should be compatible.
I will keep you informed.
Fabien.
from async-http-client.
Hello,
After few hours fighting with Wireshark, I can tell it wont be just a modification in SpnegoEngine.
In our setup, we have a multi domain controler, and I can see in normal scenario (kerberos using connected user) that Server Name and REALM are different.
But as soon I try to specify user principal in realm, I can see in Wireshark, that Server Name is the same as REALM, so I have a "no tgt found" error.
I try to force SPN (Server / Service Principal Name) in manager.createContext, but it has no effect.
Any idea of where I should look at ?
Thanks,
Fabien.
from async-http-client.
Gatling requests can take a authRealm
or ntlmAuth
with per user specific data.
from async-http-client.
I have the same challenge as described in initial post by @fabienbancharel. Currently org.asynchttpclient.spnego.SpnegoEngine
uses the credentials of the user who is logged into the system (or who has issued kinit -f
). Apparently I would like to use another user which is configured via login.config
. More over, the granted ticket could get expired e.g. during the Gatling run, however there is no ability to refresh it. Another interesting case is when there are several functional users and SpnegoEngine
wants to decide which of them to use for which domain.
This brings me to idea that there should be a away to replace SpnegoEngine
implementation with some custom one. For example, SpnegoEngine#instance()
method could use java.util.ServiceLoader
helper to locate such custom implementation (this approach needs introduction of some interface with only method String generateToken(String server)
).
from async-http-client.
The core issue with Spnego and other enterprisey auth schemes is that I have neither knowledge, needs, nor such environment at hand for testing :( So I'm afraid I won't be able to investigate and help on such topics.
from async-http-client.
I don't expect SpnegoEngine
to implement all corner cases. I would like somehow to inject my implementation of token provider. That is possible by lookup using java.util.ServiceLoader
, or having public setter SpnegoEngine#setInstance(...)
. This is very small effort: just define interface/API plus add public setter.
from async-http-client.
@dmak Then, if you know what you're doing, please send a PR :)
from async-http-client.
I agree, thanks for your comment. If I get some time to prepare PR, I'll certainly do it.
from async-http-client.
Would be great!
from async-http-client.
Related Issues (20)
- Why did the bom get removed? HOT 2
- Request new release to incorporate changes for Netty vulns to pass CVE scans. HOT 1
- [Question] Using java.time.Duration for timeouts and ttls HOT 2
- Is there a way to reuse AsyncHttpClient asynchronously for different proxy servers? HOT 2
- Integrating async-http-client into OSS-Fuzz HOT 3
- Remove `Authorization` header on redirects? HOT 1
- JakartaEE Release??? HOT 4
- Add configuration options to enable HttpClientCodec.allowDuplicateContentLengths flag HOT 1
- The code seems to spam org.asynchttpclient.netty.channel.NettyChannelConnector$1.operationComplete() HOT 4
- GetResponseBody() seems to crash, return no errors HOT 1
- Is hostname certifcate validation enabled by default? HOT 1
- How to use SSL proxy with AHC HOT 5
- Exception `java.util.NoSuchElementException: socks` when making https request with socks5 proxy HOT 2
- Shutdown is slow
- Remotely closed RemotelyClosedException
- Netty security issues (CVE-2022-41915 and CVE-2021-43797) HOT 1
- Netty security issues (CVE-2022-41915 and CVE-2021-43797) HOT 3
- use promise mode,MaxConnectionSemaphore do not relase lock until channel close. HOT 2
- Invalid Status code=400 text=Bad Request
- JakartaEE and Java 21 issues
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from async-http-client.