[
https://issues.apache.org/jira/browse/HTTPCLIENT-1344?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Oleg Kalnichevski resolved HTTPCLIENT-1344.
-------------------------------------------
Resolution: Fixed
Fixed in SVN trunk. Please review / re-test.
Oleg
> Userinfo Credentials in URI Should Not Default to Preemptive Authentication
> ---------------------------------------------------------------------------
>
> Key: HTTPCLIENT-1344
> URL: https://issues.apache.org/jira/browse/HTTPCLIENT-1344
> Project: HttpComponents HttpClient
> Issue Type: Bug
> Components: HttpClient
> Affects Versions: 4.2.4
> Reporter: James Leigh
> Fix For: 4.3 Beta2
>
>
> When using a request like new HttpGet("http://user:[email protected]/";)
> HttpClient will send along Authorization: Basic header with the first request
> (even if the server uses Digest Access).
> The expected behaviour is for HttpClient to send a request with no user
> credentials at all, wait for the server to send a 401 response. Then based on
> the supported auth scheme, send another request with the credentials in a
> scheme that is supported by the server.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
