- Can Waffle be used on the client side?
- Does Waffle work on *nix, including Linux?
- How can I retrieve additional information, such as user's position in the company, from Active Directory?
- Can Waffle be used with Atlassian JIRA?
- Can Waffle be used with Apache Shiro?
- How can I prevent the browser from showing a login popup on failed authentication?
- How does the Waffle Servlet Security Filter work with CORS?
- Can I provide a custom cache implementation?
- UnsatisfiedLinkerError jnadispatch: solved by placing JNA jars in the common classloader.
- Browser shows BASIC authentication popup: solved by re-ordering authenticators.
- ClassNotFoundException on Tomcat: solved by putting
waffle-tomcat[tomcat version].jar
intomcat/lib
. - ClassNotFoundException on JBoss: solved by putting JARs in
application.ear/APP-INF/lib
. - Popup asking for username/password: solved by forcing NTLM, Kerberos not working.
- Negotiate tries, but keeps failing with 401: solved by creating a proper SPN with
setspn
. - Issues specifying AD groups with Spring-security: solved by using the fully qualified user/group name.
- Tomcat Manager not working under SSO (External Link): solved by editing
401.jsp
. - Password prompt instead of SSO: solved by running Tomcat as
LocalSystem
. - Struts application not accepting multipart/form-data: solved by removing a legacy security constraint.
- Server returns 401 Access Denied with the AP_ERR_MODIFIED error code: solved by running server as a service with a domain account.
- Failed to create temporary file for jnidispatch library:
java.io.IOException
: solved by recreating Tomcat temp dir. - com.sun.jna.platform.win32.Win32Exception: the logon attempt failed: solved by enabling Kerberos logging and KB957097.
- Cannot find where to enable WAFFLE logging in JBoss: solved by locating application's
log4j.xml
. - NTLM fails with an Apache / AJP front-end: solved by properly forwarding port number and re-enabling
keep-alive
in Apachemod_ssl
. - HTTP/1.1 400 Bad Request: Kerberos ticket was longer than 4K, solved by increasing
maxHttpHeaderSize
. - Negotiate fails with a load-balancer: needs some DNS work and a proper SPN.
- java.lang.IllegalStateException: Cannot create a session after the response has been committed error with Spring Security: resolved by disabling
SessionFixationProtectionFilter
. - Waffle returns service user as remote user: fixed by un-saving a user name and password on a local computer.
- Issues with servlet filter on multiple Tomcat 7 Instances Sharing WAFFLE binaries: solved by putting filter-mapping in the application's web.xml, also answered by Tomcat bug 51754.
- Waffle returns outdated nonexistent user name after the user name was changed on domain: solved by clearing the server LSA cache through the Windows registry according to MS Kbase article.
- Status 401 (error code 80090308) when using .NET client and HTTP 1.0 protocol: solved by using default protocol version in .NET HttpWebRequest
- [Disable waffle debug log information in Tomcat server] (#548) : solved by placing the logback configuration file in tomcat server library folder where waffle jar files are available.
- Invalid Authorization Header Problems calling OAUTH2 covered Resources using the NegotiateSecurityFilter : Solved using a combination of TomcatSingleSignOnValve and NegotiateSecurityFilter
- See Troubleshooting