RFR: 8279842: HTTPS Channel Binding support for Java GSS/Kerberos [v5]
Michael McMahon
michaelm at openjdk.java.net
Mon Jan 24 13:36:50 UTC 2022
On Fri, 21 Jan 2022 19:48:02 GMT, Weijun Wang <weijun at openjdk.org> wrote:
>> Michael McMahon has updated the pull request incrementally with one additional commit since the last revision:
>>
>> added root cause to NamingException
>
> src/java.base/share/classes/java/net/doc-files/net-properties.html line 220:
>
>> 218: This controls the generation and sending of TLS channel binding tokens (CBT) when Kerberos
>> 219: or the Negotiate authentication scheme using Kerberos are employed over HTTPS with
>> 220: {@code HttpsURLConnection}. There are three possible settings:</P>
>
> You can probably mention here that the 'tls-server-end-point' Channel Binding Type defined in RFC 5929 is used.
I've updated this and moved the two properties to LdapSasl where they are used. Also, the test that was failing before needed some further updates.
-------------
PR: https://git.openjdk.java.net/jdk/pull/7065
More information about the net-dev
mailing list