Improve credential validation response
--------------------------------------
Key: SLING-1841
URL: https://issues.apache.org/jira/browse/SLING-1841
Project: Sling
Issue Type: Improvement
Components: Authentication
Affects Versions: Auth Core 1.0.2
Reporter: Felix Meschberger
Assignee: Felix Meschberger
Fix For: Auth Core 1.0.4
The AbstractAuthenticationHandler.sendValid currently sends back a simple
200/OK response with no furtĥer content etc. This simplicistic response has two
drawbacks:
* Firefox tries to XML parse the empty response and logs an error because
this fails
* IE 8 seems to aggressively cache such validation requests if sent with an
XHR GET request even though the request has parameters
To prevent these situations the sendValid method should set cache control
headers to prevent caching the response and set the content type to text/plain
with an explicit zero content length to prevent firefox from trying to parse
the result.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
