pyspnego 0.2.0

on Python PyPI

0.2.0 - 2021-09-22

Breaking Changes

• Drop support for Python 2.7 and 3.5 - new minimum is 3.6+
• Made the gss, negotiate, ntlm, sspi exports private, use the spnego.client and spnego.server functions instead
  • A deprecation warning is raised when importing from these package directly and this will be removed in the next major release

Features

• Added support for CredSSP authentication using protocol='credssp'
• Allow optional keyword arguments to be used with spnego.client and spnego.server to control authentication specific options

Bugfixes

• Use Kerberos API to acquire Kerberos credential to get a forwardable token in a thread safe manner
• Fix default credential logic when no username is provided based on GSSAPI rules rather than just the default principal - #15
• Ignore SPNEGO mechListMIC if it contains the same value as the responseToken due to an old Windows SPNEGO logic bug - https://github.com/krb5/krb5/blob/3f5a348287646d65700854650fe668b9c4249013/src/lib/gssapi/spnego/spnego_mech.c#L3734-L3744
• Do not use SSPI when auth='ntlm' and the password is in the form {lm_hash}:{nt_hash}