JAX-RS JAASAuthenticatingFilter leaks SecurityException
-------------------------------------------------------
Key: CXF-4234
URL: https://issues.apache.org/jira/browse/CXF-4234
Project: CXF
Issue Type: Bug
Reporter: Sergey Beryozkin
Assignee: Sergey Beryozkin
Fix For: 2.5.3, 2.6
JAASAuthenticatingFilter is a wrapper around JAASLoginInterceptor and is
supposed to return 401 in case of the missing HTTP Authorization header or
failed logins. At the moment it leaks SecurityException that
JAASLoginInterceptor throws in case of missing (Basic) authorization data which
results in the browser reporting 500 instead of popping up the Authenticate
window
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators:
https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
