[email protected] wrote > > So if you set default Authentificator getPasswordAuthentication() is never > called? >
Beware that the HTTP Keep-Alive option is enabled by default in CXF, which uses the JVM HttpURLConnection, which itself caches connection for 5 seconds (see class sun.net.www.http.KeepAliveCache). A disposed connection on which an NTLM authentication has already performed can be added to the pool and be reused later, therefore reusing the existing credentials. metatech. -- View this message in context: http://cxf.547215.n5.nabble.com/CXF-and-NTLM-on-Java-6-tp4263002p5708408.html Sent from the cxf-user mailing list archive at Nabble.com.
