I'm trying to write a custom Guard that does HTTP SPNEGO authentication (http://tools.ietf.org/html/rfc4559). For SPNEGO to work, the response on a 401 challenge needs to look like
WWW-Authenticate: Negotiate However, Guards currently need a realm and even instantiating a Guard with a null realm causes it to add a WWW-Authenticate: Negotate realm="null" Would it be possible to change com.noelios.restlet.util.SecurityUtils to not add the realm if the realm is null? Thanks. Sumit