Affects Version/s: 3.0, 4.1.3
Fix Version/s: 7.4-milestone-2
Environment:mod_auth_kerb Apache 2.2, Internet Explorer, Tomcat 5
keywords:AppServerTrustedKerberosAuthServiceImpl kerberos rest
Documentation in Release Notes:N/A
Using mod_auth_kerb with Apache 2.2, Internet Explorer 7 and 8, and the AppServerTrustedKerberosAuthServiceImpl class.
Normally, users aren't required to enter in their passwords, it's all done through mod_auth_kerb.
When doing anything that uses the REST interface, like modifying a parent page, or listing all the wiki pages when creating a link with the WYSIWYG editor to a wiki page, a dialog comes up asking for username/password.
On the apache logs file, I get the following access recorded:
10.10.26.45 - JDoe@DOMAIN.COM [06/May/2011:15:47:08 -0700] "GET /xwiki/rest/wikis/windows7/spaces?r=415914 HTTP/1.1" 401 312
Where DOMAIN.COM is my actual domain.
I tried not requiring a valid user through apache, adding this:
allow from all
That doesn't work for me, I still get asked for log in credentials.
10.10.26.45 - - [06/May/2011:16:31:02 -0700] "GET /xwiki/rest/wikis/windows7/search?scope=name&number=10&media=json&q=H HTTP/1.1" 401 312
The user is null (- -).