|
||||||||
|
This message is automatically generated by JIRA. If you think it was sent incorrectly, please contact your JIRA administrators For more information on JIRA, see: http://www.atlassian.com/software/jira |
||||||||
|
||||||||
|
This message is automatically generated by JIRA. If you think it was sent incorrectly, please contact your JIRA administrators For more information on JIRA, see: http://www.atlassian.com/software/jira |
||||||||
As we discussed in
PLINK-157, we have added a configuration option to the AuthenticationFilter to set which methods should be protected.Looking at your branch, the filter in your web.xml is configured with this init-param:
<init-param>
<param-name>unprotectedMethods</param-name>
<param-value>OPTIONS</param-value>
</init-param>
This tells the AuthenticationFilter to not handle OPTIONS requests. That is why you're bypassing the authentication.
Or I'm missing something ?