I am currently looking at the fall back scenarios when SPNEGO is not available for some reason - at the moment the Beta releases are an all or nothing approach so require SPNEGO to always work.
I am considering the possibility of NTLM authentication which can be the default fallback mechanism selected by the web browser if SPNEGO is unavailable.
I am also considering the options of falling back to other authentication mechanisms such as BASIC or FORM but there may be some issues as to detect a failure in SPNEGO authentication involves sending an error to the client.
If I understand this correctly, than this means that with the current version, there will always be an error if SPNEGO is configured, but authentication failed.
Currently, we provide our own formular based authentication (not the standard FORM authentication). It would be great if this could be combined with SPNEGO.
I just wanted to ask if you had the time to implement the features you wrote about above?
I have a similar requirement. I'm using the GA version and I'd like to have fallback to a username/password module.
How could that be achieved?