> Hi, > > I don't have any hard feelings here, both ways are basically ok for me. > > On the other hand, given... > > * we documented how to use HTTP Basic Auth with cURL > * we use HTTP Basic auth in the integration tests > * Web Console is no intended for the average user > > I tend to be slightly biased towards keeping HTTP Basic authentication > active in preemptive mode. > > To fix the Web Console problem, I created FELIX-2639 [1] to enhance the > security provider mechanism. Once we have FELIX-2639 fixed we can > enhance our own security provider to use Auth Core for authentication > and have solved the problem. > > WDYT ? > > Regards > Felix
Haven't seen your post before my last post... Nevertheless, +1 for keeping the Basic Auth on. But I would like to have an easy way to change default values in Sling (or other) components/bundles. That's why I created SLING-1822... best regards mike
