[
https://issues.apache.org/jira/browse/SLING-1361?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Felix Meschberger updated SLING-1361:
-------------------------------------
Component/s: Authentication
(was: Commons)
> The Authenticator.login method is specified to complete the response but it
> currently is not enforced
> -----------------------------------------------------------------------------------------------------
>
> Key: SLING-1361
> URL: https://issues.apache.org/jira/browse/SLING-1361
> Project: Sling
> Issue Type: Improvement
> Components: Authentication
> Reporter: Felix Meschberger
> Assignee: Felix Meschberger
> Fix For: Auth Core 1.0.0
>
>
> The Authenticator.login method is specified to complete the response to the
> client. This currently depends on the login handlers to actually send a
> response back.
> If none of the handlers actually commits the response, for example the HTTP
> Basic handler just does nothing and the Form Based Authentication Handler
> just clears the cookie, the login method implementation should probably
> handle finishing the response by redirecting back to either the refere (if
> any) or to the servlet context root.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
