Which handler LDAP SSO - NOW kerberos integration
Cantor, Scott
cantor.2 at osu.edu
Wed Nov 19 16:31:58 EST 2014
On 11/19/14, 8:08 PM, "Douglas E Engert" <deengert at gmail.com> wrote:
>
>The patch to the kerberos-login-handler, addressed what I
>would have called an error handling problem. If the "WWW-Authenticate"
>looked like it was looping, the applet would call flushResponse. The
>patch allowed the kerberos-login.inc.jsp to detect this and and turn off
>autologin,
>and give the user another chance at a different type of login.
>
>Unfortunately the SWITCH people did not do anything with the patch.
The problem I'm referring to is that such a hack was needed. That's a sign
something is deeply broken and we're really just talking about our
tolerances.
But the overall push back I would have is, if it's easily supportable,
somebody could have joined the project to maintain the code with us.
Nobody has. So that puts an ever increasing burden on a small group to
support every single different thing people might want and become
"experts" in everything, which is just not sustainable.
-- Scott
More information about the users
mailing list