Re: [PR] [CALCITE-6280] The Jetty's version number leak occurred while using he avatica http server [calcite-avatica]

via GitHub Mon, 26 Feb 2024 05:44:41 -0800


vaijosh commented on code in PR #239:
URL: https://github.com/apache/calcite-avatica/pull/239#discussion_r1502636042



##########
server/src/test/java/org/apache/calcite/avatica/server/HttpServerSpnegoWithoutJaasTest.java:
##########
@@ -186,6 +187,14 @@ private static void setupUsers(File keytabDir) throws 
KrbException {
     assertEquals(401, conn.getResponseCode());
   }
 
+  @Test public void testServerVersionNotReturnedForUnauthorisedAccess() throws 
Exception {

Review Comment:
   Thanks @stoty for the explanation.
   I have added the new check to few more Test classes. Not it covers basic, 
spnego, digest etc. authentication. So we have almost covered most of the cases.



-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: [email protected]

For queries about this service, please contact Infrastructure at:
[email protected]

Re: [PR] [CALCITE-6280] The Jetty's version number leak occurred while using he avatica http server [calcite-avatica]

Reply via email to