tomcat-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From bugzi...@apache.org
Subject DO NOT REPLY [Bug 34560] - AuthenticatorBase tests and applies disableProxyCaching even if no auth-constraints
Date Thu, 01 Dec 2005 23:47:13 GMT
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG·
RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT
<http://issues.apache.org/bugzilla/show_bug.cgi?id=34560>.
ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND·
INSERTED IN THE BUG DATABASE.

http://issues.apache.org/bugzilla/show_bug.cgi?id=34560





------- Additional Comments From william.barker@wilshire.com  2005-12-02 00:47 -------
(In reply to comment #8)
> Bill, does the 2nd patch look reasonable?

Actually, we're doing the authRequired check now already :).

It's still my opinion that, given that we are setting these headers, they can 
be omitted for INTEGRAL.  However, not setting them for CONFIDENTIAL seems to 
defeat the purpose of CONFIDENTIAL (since that is what these headers do :).

The lack of a distiction between INTEGRAL and CONFIDENTIAL is why I haven't 
touched it.  However, I won't veto it if you want to apply it as is (I set 
disableProxyCaching="false" personally, so it doesn't affect me either way :).


-- 
Configure bugmail: http://issues.apache.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@tomcat.apache.org
For additional commands, e-mail: dev-help@tomcat.apache.org


Mime
View raw message