Hi, I was looking at
SLING-5217: Verify if login failures to resource providers are handled correctly and I tried to follow the logic behind the AuthType enum: public enum AuthType { no, lazy, required } The 'lazy' and 'required' values don't really 'partition' the providers well IMO, e.g. you can think of a resource provider that is required and should be lazily authenticated against. I would suggest the following change public enum AuthType { none, lazy, eager } Thoughts? Robert