[jira] Resolved: (SLING-1032) AuthenticationService.getAnonymousSession() should call login and not redirect to LoginServlet

Felix Meschberger (JIRA) Sat, 04 Jul 2009 06:08:20 -0700

     [ 
https://issues.apache.org/jira/browse/SLING-1032?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


Felix Meschberger resolved SLING-1032.
--------------------------------------

    Resolution: Fixed

Fixed in Rev. 791120.

> AuthenticationService.getAnonymousSession() should call login and not 
> redirect to LoginServlet
> ----------------------------------------------------------------------------------------------
>
>                 Key: SLING-1032
>                 URL: https://issues.apache.org/jira/browse/SLING-1032
>             Project: Sling
>          Issue Type: Bug
>          Components: Engine
>    Affects Versions: Engine 2.0.4
>            Reporter: Felix Meschberger
>            Assignee: Felix Meschberger
>             Fix For: Engine 2.0.6
>
>
> As discussed in [1] the AuthenticationService.getAnonymousSession() method 
> redirects the request to the LoginServlet if anonymous sessions are not 
> allowed. This is incorrect since the AuthenticationService.login method 
> should be called directly as in the case of providing wrong credentials.
> [1] http://markmail.org/message/26quk5frp3sidgjh

-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.

[jira] Resolved: (SLING-1032) AuthenticationService.getAnonymousSession() should call login and not redirect to LoginServlet

Reply via email to