After upgrading from ATS 3.0.4 to 4.2.0, it appears that Authorization headers are being stripped by ATS (or, at least, they aren't reaching the origin servers).
I've dug through the documentation and mailing list archives, but can't seem to find anything conclusive. Anyone have insight on what may have changed? In case it matters, I'm using NTLM Authentication on the origin servers.
