You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@felix.apache.org by "Felix Meschberger (JIRA)" <ji...@apache.org> on 2010/01/13 11:13:55 UTC

[jira] Work started: (FELIX-1983) WebConsole HttpContext should flush response after setting response status

     [ https://issues.apache.org/jira/browse/FELIX-1983?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Work on FELIX-1983 started by Felix Meschberger.

> WebConsole HttpContext should flush response after setting response status
> --------------------------------------------------------------------------
>
>                 Key: FELIX-1983
>                 URL: https://issues.apache.org/jira/browse/FELIX-1983
>             Project: Felix
>          Issue Type: Bug
>          Components: Web Console
>    Affects Versions: webconsole-2.0.4
>            Reporter: Felix Meschberger
>            Assignee: Felix Meschberger
>             Fix For: webconsole-2.0.6
>
>
> The Web Console uses its own HttpContext implementation to handle authentication. When authentication is missing, it sets (or currently sendError) the response status 401/UNAUTHENTICATED but does not flush the response.
> The Felix Http Base code overwrites this to 403/FORBIDDEN if the response is not committed.
> So to ensure, the correct status is really sent, the handleSecurity implementation must flush the response.

-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.