The Authenticator.login method is specified to complete the response but it
currently is not enforced
-----------------------------------------------------------------------------------------------------
Key: SLING-1361
URL: https://issues.apache.org/jira/browse/SLING-1361
Project: Sling
Issue Type: Improvement
Components: Commons
Reporter: Felix Meschberger
Assignee: Felix Meschberger
Fix For: Commons Auth 1.0.0
The Authenticator.login method is specified to complete the response to the
client. This currently depends on the login handlers to actually send a
response back.
If none of the handlers actually commits the response, for example the HTTP
Basic handler just does nothing and the Form Based Authentication Handler just
clears the cookie, the login method implementation should probably handle
finishing the response by redirecting back to either the refere (if any) or to
the servlet context root.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
