svn commit: r740684 - /tomcat/trunk/java/org/apache/catalina/authenticator/SSLAuthenticator.java

[markt]

Author: markt
Date: Wed Feb  4 10:43:10 2009
New Revision: 740684

URL: http://svn.apache.org/viewvc?rev=740684&view=rev
Log:
Fix https://issues.apache.org/bugzilla/show_bug.cgi?id=38553
A lack of certs is normal if the user doesn't have a trusted cert. Return 401, 
not 400 in this case.

Modified:
    tomcat/trunk/java/org/apache/catalina/authenticator/SSLAuthenticator.java

Modified: 
tomcat/trunk/java/org/apache/catalina/authenticator/SSLAuthenticator.java
URL: 
http://svn.apache.org/viewvc/tomcat/trunk/java/org/apache/catalina/authenticator/SSLAuthenticator.java?rev=740684&r1=740683&r2=740684&view=diff
==============================================================================
--- tomcat/trunk/java/org/apache/catalina/authenticator/SSLAuthenticator.java 
(original)
+++ tomcat/trunk/java/org/apache/catalina/authenticator/SSLAuthenticator.java 
Wed Feb  4 10:43:10 2009
@@ -140,7 +140,7 @@
         if ((certs == null) || (certs.length < 1)) {
             if (containerLog.isDebugEnabled())
                 containerLog.debug("  No certificates included with this 
request");
-            response.sendError(HttpServletResponse.SC_BAD_REQUEST,
+            response.sendError(HttpServletResponse.SC_UNAUTHORIZED,
                                sm.getString("authenticator.certificates"));
             return (false);
         }



---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org