Collaborate Disseminate
OpenSSL defines an SSL_CTX struct which can be charged with (client or server) identities. If you pass it to SSL_connect, you’re a client; if you pass it to SSL_accept, you’re a server.
With SSPI/SChannel on Windows it appears that you’re … Continue reading What value is there in separating outbound vs. inbound credential usage in a TLS API?
We are implementing a web application that uses Kerberos for authentication. In the browser there is no concerns, so it works perfect. Now we need to supply a subset of web application services via web API.
Getting Kerberos t… Continue reading Web API authentication with Kerberos
We are implementing a web application that uses Kerberos for authentication. In the browser there is no concerns, so it works perfect. Now we need to supply a subset of web application services via web API.
Getting Kerberos t… Continue reading Web API authentication with Kerberos