tomcat-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From ma...@apache.org
Subject svn commit: r740684 - /tomcat/trunk/java/org/apache/catalina/authenticator/SSLAuthenticator.java
Date Wed, 04 Feb 2009 10:43:10 GMT
Author: markt
Date: Wed Feb  4 10:43:10 2009
New Revision: 740684

URL: http://svn.apache.org/viewvc?rev=740684&view=rev
Log:
Fix https://issues.apache.org/bugzilla/show_bug.cgi?id=38553
A lack of certs is normal if the user doesn't have a trusted cert. Return 401, not 400 in
this case.

Modified:
    tomcat/trunk/java/org/apache/catalina/authenticator/SSLAuthenticator.java

Modified: tomcat/trunk/java/org/apache/catalina/authenticator/SSLAuthenticator.java
URL: http://svn.apache.org/viewvc/tomcat/trunk/java/org/apache/catalina/authenticator/SSLAuthenticator.java?rev=740684&r1=740683&r2=740684&view=diff
==============================================================================
--- tomcat/trunk/java/org/apache/catalina/authenticator/SSLAuthenticator.java (original)
+++ tomcat/trunk/java/org/apache/catalina/authenticator/SSLAuthenticator.java Wed Feb  4 10:43:10
2009
@@ -140,7 +140,7 @@
         if ((certs == null) || (certs.length < 1)) {
             if (containerLog.isDebugEnabled())
                 containerLog.debug("  No certificates included with this request");
-            response.sendError(HttpServletResponse.SC_BAD_REQUEST,
+            response.sendError(HttpServletResponse.SC_UNAUTHORIZED,
                                sm.getString("authenticator.certificates"));
             return (false);
         }



---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@tomcat.apache.org
For additional commands, e-mail: dev-help@tomcat.apache.org


Mime
View raw message