Reputation: 3
Spring Security Kerberos - using Authentication from session to make Kerberized calls on behalf of user
I'm trying to implement REST services over LDAP directory. Both have Kerberos-protected access. I already have working code (based on Security Server Spnego and Form Auth Sample sample), which login user and store autentication object in users session. Then I make REST call to my app with sessionID and Spring Security pass it through - that's ok.
But now in REST controller I want to make an LDAP call on behalf of logged user using for example Spring's LdapTemplate class.
I have KerberosUsernamePasswordAuthenticationToken instance from user session. From it how can I make KerberosLdapContextSource which is needed for LdapTemplate to make an LDAP calls?
Whether such an approach is correct and implementable at all? If so, could you please suggest some sample code.
Upvotes: 0
Views: 111
Answers (0)
Related Questions
- When using Spring Security, what is the proper way to obtain current username (i.e. SecurityContext) information in a bean?
- Handle spring security authentication exceptions with @ExceptionHandler
- Why is SSO not working with Kerberos using Spring Security?
- "Defective token detected" error (NTLM not Kerberos) with Kerberos/Spring Security/IE/Active Directory
- Spring Security Kerberos SSO for a REST API (Tomcat)
- Forward SPNEGO Credentials to Secure Cluster
- spring security using kerberos/spnego authentication