Brian Moseley wrote:
i've got a webdav interface to my application, and of course dav clients
don't know anything about http sessions, so i've followed the suggestion
in section 1.16.3 of the reference manual, using a
HttpSessionContextIntegrationFilter with allowSessionCreation false.
unfortunately, in 0.8.2, the BasicProcessingFilter still causes a
session to be created with its use of WebAuthenticationDetails.
has this behavior changed since 0.8.2? if not, does anyone else consider
it a bug?
to answer my own question, i pulled last night's cvs tarball and saw
that this issue has indeed been addressed. all seems to work
appropriately now. yay!
-------------------------------------------------------
SF.Net email is sponsored by:
Tame your development challenges with Apache's Geronimo App Server. Download
it for free - -and be entered to win a 42" plasma tv or your very own
Sony(tm)PSP. Click here to play: http://sourceforge.net/geronimo.php
_______________________________________________
Home: http://acegisecurity.sourceforge.net
Acegisecurity-developer mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer
