[shrinkwrap-issues] [JBoss JIRA] (SHRINKWRAP-385) Bad implementation of AuthStaticFileHandler leads to false positive
Carlo de Wolf (JIRA)
jira-events at lists.jboss.org
Wed Feb 8 13:05:48 EST 2012
Carlo de Wolf created SHRINKWRAP-385:
----------------------------------------
Summary: Bad implementation of AuthStaticFileHandler leads to false positive
Key: SHRINKWRAP-385
URL: https://issues.jboss.org/browse/SHRINKWRAP-385
Project: ShrinkWrap
Issue Type: Bug
Components: ext-resolver
Reporter: Carlo de Wolf
Assignee: Carlo de Wolf
Fix For: resolver-2.0.0-alpha-1
For some reason wagon 2.0 ignores the return code and since the original AuthStaticFileHandler would return the static file regardless the test would pass. Switching back to wagon 1.0-beta-7 (which comes with Maven 3.0.3) exposes this problem as it does abide the return code.
Given http://www.w3.org/Protocols/rfc2616/rfc2616-sec10.html#sec10.4.2 it is clear that the handler is implementing authentication incorrectly since it must include a WWW-Authenticate header field in the response.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.jboss.org/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
More information about the shrinkwrap-issues
mailing list