Hi,
I have to integrate Jira with a Windows based web service which allows me to trigger actions by simply sending web requests to defined URLs. The web service requires to authenticate with Kerberos. I managed to get this working with curl at the command line of the Linux based Jira Server. However, I'm not able to find out how to proceed with Tomcat or Jira.
What I have so far:
- a krb5.conf
- a keytab
- a jaas.conf
- successful test with curl using Kerberos auth
- set -Djava.security.krb5.conf=PATH_TO_KRB5.CONF
I see that at start time the setting -D... is read. But I do not see any other clues in the logs refering to Kerberos auth.
I've found posts about how to make Jira work with Kerberos authentication towards the database connection. So, I'm confident that this could also work with Web Requests.
Maybe I'm missing something related to the jaas.conf. So here is my jaas.conf:
com.sun.security.jgss.krb5.initiate {
com.sun.security.auth.module.Krb5LoginModule required
doNotPrompt=true
principal="jira@DEV.LOCAL"
useKeyTab=true
keyTab="/opt/atlassian/jira.keytab"
storeKey=true;
};
com.sun.security.jgss.krb5.accept {
com.sun.security.auth.module.Krb5LoginModule required
doNotPrompt=true
principal="jira@DEV.LOCAL"
useKeyTab=true
keyTab="/opt/atlassian/jira.keytab"
storeKey=true;
};Any help appreciated. Thank you.
