details: https://code.openbravo.com/erp/devel/pi/rev/cf2241061313
changeset: 32299:cf2241061313
user: Martin Taal <martin.taal <at> openbravo.com>
date: Mon Jun 12 23:38:46 2017 +0200
summary: Fixes issue 36238: Support basic authentication: if a stateless
request has an invalid login then set the status code to unauthorized
Set status unauthorized
diffstat:
src/org/openbravo/base/secureApp/HttpSecureAppServlet.java | 3 +++
1 files changed, 3 insertions(+), 0 deletions(-)
diffs (13 lines):
diff -r 91dbb09a074c -r cf2241061313
src/org/openbravo/base/secureApp/HttpSecureAppServlet.java
--- a/src/org/openbravo/base/secureApp/HttpSecureAppServlet.java Mon Jun
12 20:45:35 2017 +0200
+++ b/src/org/openbravo/base/secureApp/HttpSecureAppServlet.java Mon Jun
12 23:38:46 2017 +0200
@@ -213,6 +213,9 @@
}
if (strUserAuth == null) {
+ if (AuthenticationManager.isStatelessRequest(request)) {
+ response.setStatus(HttpServletResponse.SC_UNAUTHORIZED);
+ }
// auth-manager return null after redirecting to the login page ->
stop request-processing
return;
}
------------------------------------------------------------------------------
Check out the vibrant tech community on one of the world's most
engaging tech sites, Slashdot.org! http://sdm.link/slashdot
_______________________________________________
Openbravo-commits mailing list
Openbravo-commits@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/openbravo-commits
