Details
-
Improvement
-
Status: Closed
-
Major
-
Resolution: Fixed
-
None
-
None
Description
The Authenticator.login method is specified to complete the response to the client. This currently depends on the login handlers to actually send a response back.
If none of the handlers actually commits the response, for example the HTTP Basic handler just does nothing and the Form Based Authentication Handler just clears the cookie, the login method implementation should probably handle finishing the response by redirecting back to either the refere (if any) or to the servlet context root.