Ignore failure in SpnegoAuthenticationProcessingFilter like in BasicAuthenticationFilter

[b1zzu]

Hi,
I would like to ignore the errors in SpnegoAuthenticationProcessingFilter with an additional option like in BasicAuthenticationFilter. This because I have a client witch is connected to another domain and witch always send a Authentication header with the wrong ticket, because the ticket is valid for the other domain and not my domain. My application allow users to login through kerberos or rest request which is handled by a controller. The problem is that the user will never reach the controller to perform a rest authentication because the SpnegoAuthenticationProcessingFilter will constantly fail try to authenticate the wrong ticket.

My idea to solve this problem is to introduce a ignore attributes which will make the request proceed through the chain without authenticate the user and by default the ignore attribute should be false.

I can work on this Pull request but but before doing so I wanted the approve from the community.

Bye,
Davide

[rwinch]

@b1zzu Thanks for reaching out. This seems like a reasonable proposal to me. Please feel free to create a Pull Request.