Case Sensitive Basic Authentication Response Header Implementations

Details

Type: Bug
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: None
Fix Version/s: 7.0.0pre4, 6.1.12.rc3, 6.1.12
Component/s: None
Labels:
None

Patch Submitted:

Yes
Number of attachments :
1

Description

Although the HTTP Authentication: Basic and Digest Access Authentication RFC states that the http headers should use "an extensible,
case-insensitive token to identify the authentication scheme" libraries like acegi security require the response header to be case sensitive. ie "Basic" not "basic"

Options
- Sort By Name
- Sort By Date
- Ascending
- Descending
- Download All

Attachments

Basic_Response_Header_Fix.patch

28/Sep/08 6:01 AM

2 kB

Markus Kobler

Activity

Hide

Permalink

David Yu added a comment - 29/Sep/08 4:18 AM

patch applied.

Show

David Yu added a comment - 29/Sep/08 4:18 AM patch applied.

People

Assignee:

David Yu

Reporter:

Markus Kobler

Vote (0)

Watch (0)

Dates

Created:

28/Sep/08 6:01 AM

Updated:

20/Apr/09 1:08 AM

Resolved:

29/Sep/08 4:18 AM