Hi,

We have made our custom SSO - LDAP, Kerberos, JAASRealm and SPNEGO. Everything was working fluently till we migrated to 6.11.2 (Last working version was 6.10.1). All the configuration remained the same.

Tried to find what was changed in Confluence or Tomcat, but with no luck. Debugging mode just shows that JAASRealm doesn't authenticate user. Kerberos authenticates successfully. 

Our custom authenticator code looks like this:

package com.<our_company_name>.confluence.plugin.preauth;

import org.slf4j.Logger;
import org.slf4j.LoggerFactory;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import java.security.Principal;
import com.atlassian.confluence.user.ConfluenceAuthenticator;

public class PreauthConfluenceSeraphAuthenticator extends ConfluenceAuthenticator {

 private static final Logger log = LoggerFactory.getLogger(PreauthConfluenceSeraphAuthenticator.class); 
 @Override
 public Principal getUser(HttpServletRequest httpServletRequest, HttpServletResponse httpServletResponse)
 {
 Principal principal = super.getUser(httpServletRequest, httpServletResponse);
 if (principal != null) {
 return principal;
 }
 Principal userPrincipal = httpServletRequest.getUserPrincipal();
 if (userPrincipal != null) {
 log.debug("Got userPrincipal from request");
 return getUser(userPrincipal.getName());
 }
 return null;
 }
};

 Maybe someone knows what has changed between version 6.10.1 and 6.11.2 what prevents from authenticating?

Thanks in advance!

BR,

Marius