cxf-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Sergey Beryozkin (Created) (JIRA)" <j...@apache.org>
Subject [jira] [Created] (CXF-4234) JAX-RS JAASAuthenticatingFilter leaks SecurityException
Date Tue, 10 Apr 2012 14:11:20 GMT
JAX-RS JAASAuthenticatingFilter leaks SecurityException
-------------------------------------------------------

                 Key: CXF-4234
                 URL: https://issues.apache.org/jira/browse/CXF-4234
             Project: CXF
          Issue Type: Bug
            Reporter: Sergey Beryozkin
            Assignee: Sergey Beryozkin
             Fix For: 2.5.3, 2.6


JAASAuthenticatingFilter is a wrapper around JAASLoginInterceptor and is supposed to return
401 in case of the missing HTTP Authorization header or failed logins. At the moment it leaks
SecurityException that JAASLoginInterceptor throws in case of missing (Basic) authorization
data which results in the browser reporting 500 instead of popping up the Authenticate window

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira

        

Mime
View raw message