United StatesChange Country, Oracle Worldwide Web Sites Communities I am a... I want to...
Bug ID: JDK-4722333 JRE Proxy Authentication Not Working with ISA2000
JDK-4722333 : JRE Proxy Authentication Not Working with ISA2000

Details
Type:
Bug
Submit Date:
2002-07-29
Status:
Resolved
Updated Date:
2012-10-10
Project Name:
JDK
Resolved Date:
2002-10-24
Component:
core-libs
OS:
solaris_9,windows_nt,windows_2000
Sub-Component:
java.net
CPU:
x86,sparc
Priority:
P3
Resolution:
Fixed
Affected Versions:
1.4.0
Fixed Versions:
1.4.1_03 (03)

Related Reports
Backport:
Duplicate:

Sub Tasks

Description
A customer was using MS Proxy 2.0. with NTLM and BASIC authentication
enabled and use JWS 1.0.1 & our jre and everything worked fine but when
they upgraded to MS ISA 2000 with the same authentication enabled, JWS
no longer provides a login popup, and seems to ignore the 407 response
and just fail.

The customer sent in two network traces one with MS Proxy 2.0 where
everything works and the other with ISA 2000 where JWS seems to fail.

WORKS FINE (MS Proxy 2.0):
HTTP: Response to Client; HTTP/1.1; Status Code = 407 - Proxy Authentication 
Required
HTTP: Protocol Version = HTTP/1.1
HTTP: Status Code = Proxy Authentication Required
HTTP: Reason = Proxy authentication required
HTTP: Proxy-Authenticate = NTLM
HTTP: Proxy-Authenticate = Basic realm="10.25.231.211"
HTTP: Undocumented Header = Proxy-Connection: close
HTTP: Undocumented Header Fieldname = Proxy-Connection
HTTP: Undocumented Header Value = close
HTTP: Content-Length = 503
HTTP: Content-Type = text/html

FAILS (ISA 2000):
HTTP: Response to Client; HTTP/1.1; Status Code = 407 - Proxy Authentication 
Required
HTTP: Protocol Version = HTTP/1.1
HTTP: Status Code = Proxy Authentication Required
HTTP: Reason = Proxy Authentication Required ( The ISA Server requires 
authorization
HTTP: Via = .1 SIMISA01
HTTP: Proxy-Authenticate = NTLM
HTTP: Proxy-Authenticate = Basic realm="SIMISA01."
HTTP: Proxy-Authenticate = Kerberos
HTTP: Proxy-Authenticate = Negotiate
HTTP: Pragma = no-cache
HTTP: Cache-Control = no-cache
HTTP: Content-Type = text/html
HTTP: Content-Length = 3761 

                                    

Comments
EVALUATION


We're not handling the case when multiple proxy-authenticate (or
www-authenticate) headers are returned. Additionally we aren't handling 
multi-value responses. Issue is too late for hopper but will fix in
mantis.
                                     
2004-06-11
CONVERTED DATA

BugTraq+ Release Management Values

COMMIT TO FIX:
1.4.1_03
mantis

FIXED IN:
1.4.1_03
mantis

INTEGRATED IN:
1.4.1_03
mantis
mantis-b05


                                     
2004-06-14



Hardware and Software, Engineered to Work Together