AuthenticationService.getAnonymousSession() should call login and not redirect
to LoginServlet
----------------------------------------------------------------------------------------------
Key: SLING-1032
URL: https://issues.apache.org/jira/browse/SLING-1032
Project: Sling
Issue Type: Bug
Components: Engine
Affects Versions: Engine 2.0.4
Reporter: Felix Meschberger
Assignee: Felix Meschberger
Fix For: Engine 2.0.6
As discussed in [1] the AuthenticationService.getAnonymousSession() method
redirects the request to the LoginServlet if anonymous sessions are not
allowed. This is incorrect since the AuthenticationService.login method should
be called directly as in the case of providing wrong credentials.
[1] http://markmail.org/message/26quk5frp3sidgjh
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
