Am 2009-09-18 12:58, schrieb Alexander Klimetschek:
Currently Sling's auth handler will assume that a plain request with
no credentials is a "new" user that is not yet logged in and will
redirect him to the login page. That's why there is the special
sling:authRequestLogin parameter that will enforce the normal behavior
that the first login request runs through all the steps: send w/o
credentials, 401, send w/ credentials, 200 => credentials cached
(depending on browser).
I disabled anonymous access in the felix console. right now I cannot
even find the place again, looks to me like it disappeared, a checkbox I
believe in "embedded jcr repository" it was.
A plain request without credentials now here receives a page with this
content:
HTTP ERROR 200
Problem accessing /index.html. Reason:
OK
Powered by Jetty://
Thats a bit of a nuisance, because in my opinion it breaks REST
expectations. What am I doing wrong?
--
peter
