Skip to content

G
gitlab-ce
Commit 0fa62bda authored by Jacob Vosmaer's avatar Jacob Vosmaer
Browse files
Options

Explain SPNEGO more

parent 9bc27748
Show whitespace changes
Inline Side-by-side
Showing with 10 additions and 0 deletions
app/controllers/omniauth_kerberos_spnego_controller.rb
View file @ 0fa62bda
...@@ -13,6 +13,16 @@ class OmniauthKerberosSpnegoController < ApplicationController ...@@ -13,6 +13,16 @@ class OmniauthKerberosSpnegoController < ApplicationController
return return
end end
# When the browser is Kerberos-aware, this response will make it try to
# get a Kerberos ticket and present it to us via an SPNEGO token.
#
# When the browser does not know Kerberos, or if it tried to
# authenticate with Kerberos but failed, it shows the special 'Kerberos
# denied' 401 page to the user.
#
# We cannot redirect the user to the sign-in page because we do not know
# when the browser has given up.
#
headers['Www-Authenticate'] = spnego_challenge headers['Www-Authenticate'] = spnego_challenge
render 'errors/kerberos_denied.html.haml', layout: 'errors', status: 401 render 'errors/kerberos_denied.html.haml', layout: 'errors', status: 401
end end
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment
GitLab Nexedi Edition | About GitLab | About Nexedi | 沪ICP备2021021310号-2 | 沪ICP备2021021310号-7