You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@shindig.apache.org by "Louis Ryan (JIRA)" <ji...@apache.org> on 2008/09/12 19:39:44 UTC

[jira] Updated: (SHINDIG-580) Authentication filter doesnt distinguish between no authentication and invalid authentication

     [ https://issues.apache.org/jira/browse/SHINDIG-580?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Louis Ryan updated SHINDIG-580:
-------------------------------

    Attachment: BetterAuthErrorHandling.patch

Patch attached

> Authentication filter doesnt distinguish between no authentication and invalid authentication
> ---------------------------------------------------------------------------------------------
>
>                 Key: SHINDIG-580
>                 URL: https://issues.apache.org/jira/browse/SHINDIG-580
>             Project: Shindig
>          Issue Type: Improvement
>          Components: Common Components (Java)
>            Reporter: Louis Ryan
>            Assignee: Louis Ryan
>         Attachments: BetterAuthErrorHandling.patch
>
>
> The current mechanism implementation does'nt allow for the distinction between an unspecificed authentication mechanism and a specified but malformed one. 
> Some authentication handlers may also need to initiate additional authentication steps via redirects & headers before allowing further access. 

-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.