Kerberos authentication under Windows doesn't use context of the account running Mozilla

UNCONFIRMED
Unassigned

Status

()

Core
Networking
P2
normal
UNCONFIRMED
a year ago
9 months ago

People

(Reporter: Paul-Andre Panon, Unassigned)

Tracking

52 Branch
Points:
---

Firefox Tracking Flags

(Not tracked)

Details

(Whiteboard: [necko-next])

(Reporter)

Description

a year ago
User Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0
Build ID: 20170323105023

Steps to reproduce:

1. Login as user A (i.e. low permissions user)
2. Use Run as a different user to start Mozilla under the context of user B (a high permissions user)
3. Go to a web site that supports Kerberos authentication, with different permissions available for user A and user B



Actual results:

You will notice that Kerberos authentication is being used, but that even though Mozilla is running under user B, the Kerberos credentials presented to the web site are those of user A.


Expected results:

Performing the same test with I.E. shows I.E. correctly authenticates with the credentials of User B.

Updated

a year ago
Component: Untriaged → Networking
Product: Firefox → Core
Whiteboard: [necko-next]
You need to log in before you can comment on or make changes to this bug.