Is there an apache module that implements Kerberos authentication for use by Tomcat and also supports Kerberos delegation?

是否有实现 Kerberos 身份验证以供 Tomcat 使用并支持 Kerberos 委派的 apache 模块？

I've already looked at mod_spnego and it throws away the SSPI context it creates only keeping the principal name. Instead, I'm looking for a module that would allow for the delegation of the ticket sent to Tomcat - that is, taking the service ticket sent for authentication and using it server side to access another service on behalf of the user.

我已经看过 mod_spnego，它丢弃了它创建的 SSPI 上下文，只保留主体名称。相反，我正在寻找一个模块，该模块允许委托发送到 Tomcat 的票证 - 也就是说，获取发送用于身份验证的服务票证并使用它的服务器端代表用户访问另一个服务。

EDIT: To clarify, I need to impersonate under Win32 using the GSS/SSPI context so when legacy code connects to another server, the delegated credentials are used.

编辑：为了澄清，我需要使用 GSS/SSPI 上下文在 Win32 下模拟，以便当遗留代码连接到另一台服务器时，使用委托凭据。