Closed Bug 1353091 Opened 7 years ago Closed 10 days ago

Kerberos authentication under Windows doesn't use context of the account running Mozilla

Categories

(Core :: Networking, defect, P3)

52 Branch
defect

Tracking

()

RESOLVED INCOMPLETE

People

(Reporter: Paul-Andre.Panon, Unassigned)

References

(Blocks 1 open bug)

Details

(Whiteboard: [necko-triaged])

User Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0
Build ID: 20170323105023

Steps to reproduce:

1. Login as user A (i.e. low permissions user)
2. Use Run as a different user to start Mozilla under the context of user B (a high permissions user)
3. Go to a web site that supports Kerberos authentication, with different permissions available for user A and user B



Actual results:

You will notice that Kerberos authentication is being used, but that even though Mozilla is running under user B, the Kerberos credentials presented to the web site are those of user A.


Expected results:

Performing the same test with I.E. shows I.E. correctly authenticates with the credentials of User B.
Component: Untriaged → Networking
Product: Firefox → Core
Whiteboard: [necko-next]
Bulk change to priority: https://bugzilla.mozilla.org/show_bug.cgi?id=1399258
Priority: -- → P2
Moving to p3 because no activity for at least 1 year(s).
See https://github.com/mozilla/bug-handling/blob/master/policy/triage-bugzilla.md#how-do-you-triage for more information
Priority: P2 → P3
Severity: normal → S3
Blocks: necko-auth
Whiteboard: [necko-next] → [necko-triaged]

Do you still observe this issue?

Flags: needinfo?(Paul-Andre.Panon)

Redirect a needinfo that is pending on an inactive user to the triage owner.
:jesup, since the bug has recent activity, could you have a look please?

For more information, please visit BugBot documentation.

Flags: needinfo?(Paul-Andre.Panon) → needinfo?(rjesup)
Status: UNCONFIRMED → RESOLVED
Closed: 10 days ago
Flags: needinfo?(rjesup)
Resolution: --- → INCOMPLETE
You need to log in before you can comment on or make changes to this bug.