-
Notifications
You must be signed in to change notification settings - Fork 285
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Update the use of System.Net.NTAuthentication from NegotiateInternalState #917
Conversation
could please run this test
|
I can't get the test to pass without my changes. I get |
To run the test I have used my local domain. I have created a "CoreWCFGroupAdmin" user group and assigned it to my user. Then I have executed the tests and they do pass. Please let me know if I should proceed otherwise.
|
We need to back port this to at least 1.2 as it's a necessary fix for .NET 7 support. We also need to find a way to test this either in CI or at least easily locally using docker containers. |
@nmangue, thank you for this fix. I'd actually like to modify the fix a bit to make it more stable going forwards. There's a new public API in .NET 7 that I'd like to use from .NET 7 onwards. You will still need to call it using reflection as we don't multi-target for different .NET versions, but it's a public API which means it can't be broken by changing the API shape in future versions. Continuing to always use the internal implementation makes us vulnerable to future breaks with further internal refactoring. This is the new .NET7+ api for Negotiate authentication. Here's the PR where asp.net core dropped their reflection based implementation and switched to the new public api. |
I have looked at the differences between |
I think Encrypt and Decrypt are equivalent to Wrap and Unwrap and the name was changed because just signing and not encrypting is an option. I didn't see an easy way to get equivalent info from IsValidContext. I think your suggestion is reasonable. I'll merge it. Can you open an issue for the work to switch this over? There's no obligation on you to do that work. |
Thank you ! I have created the issue #978. |
Update the calls to System.Net.NTAuthentication to be compatible with net5.0, net6.0 and net7.0
#916