I'm trying to find information whether the Spring Security implementation of Kerberos handles delegation/forwarding of ticket granting tickets so that my app server can call other Kerberos services reusing the principals TGT? Any documentation on this would be highly appreciated. Cheers!
Spring security does not implement any Kerberos functionality. If you are referring to the kerberos extension then the answer is no. It only does authentication and it's just a wrapper around the Java JAAS API Krb5LoginModule.