[jira] [Created] (SLING-2317) Don't call AuthenticationHandler.requestCredentials method on Ajax requests

Felix Meschberger (Created) (JIRA) Sun, 04 Dec 2011 04:58:04 -0800

Don't call AuthenticationHandler.requestCredentials method on Ajax requests
---------------------------------------------------------------------------


                 Key: SLING-2317
                 URL: https://issues.apache.org/jira/browse/SLING-2317
             Project: Sling
          Issue Type: Improvement
          Components: Authentication
    Affects Versions: Auth Core 1.0.6
            Reporter: Felix Meschberger
            Assignee: Felix Meschberger
             Fix For: Auth Core 1.1.0


When handling Ajax requests from browsers, requesting credentials is not 
appropriate. The Sling Authenticator should not request credentials for Ajax 
requests but instead just fail the request with 403/FORBIDDEN.

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: 
https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira

[jira] [Created] (SLING-2317) Don't call AuthenticationHandler.requestCredentials method on Ajax requests

Reply via email to