https://bz.apache.org/bugzilla/show_bug.cgi?id=57282
--- Comment #22 from Mark Thomas <ma...@apache.org> --- The authentication diagram also looks good. I do have a few more comments on this. registerAuthSuccess() is specific to the LockOutRealm. It would be worth showing this Realm and the 'real' Realm (e.g. UserDataBaseRealm) on the diagram. For BASIC auth I'd add the call to obtain the headers from the request since that is where the user name and password are called from. -- You are receiving this mail because: You are the assignee for the bug. --------------------------------------------------------------------- To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
