JDK-6560218 : Problem with credentials from non-default realm
  • Type: Bug
  • Component: security-libs
  • Sub-Component: org.ietf.jgss:krb5
  • Affected Version: 5.0
  • Priority: P3
  • Status: Closed
  • Resolution: Fixed
  • OS: generic
  • CPU: generic
  • Submitted: 2007-05-21
  • Updated: 2011-05-17
  • Resolved: 2011-05-17
The Version table provides details related to the release that this issue/RFE will be addressed.

Unresolved : Release in which this issue/RFE will be addressed.
Resolved: Release in which this issue/RFE has been resolved.
Fixed : Release in which this issue/RFE has been fixed. The release containing this fix may be available for download as an Early Access Release or a General Availability Release.

To download the current JDK release, click here.
Other JDK 6 JDK 7
1.4.2_19-revFixed 6u4Fixed 7 b15Fixed
See comments for details.

EVALUATION The problem arises when adding Kerberos TGTs to the Subject. We currently check for an explicit match looking for TGTs from the same realm, before adding the TGT to the Subject. Since this TGT was from a non-default realm, it did not get added to the Subject. Fixed to handle TGTs from non-default realm. Seema

EVALUATION Fixed to handle credentials from non-default realm.