Uploaded image for project: 'Sling'
  1. Sling
  2. SLING-1400

OPTIONS request on / returns login form if "Allow Anonymous Access" set to false

    XMLWordPrintableJSON

Details

    • Bug
    • Status: Closed
    • Minor
    • Resolution: Fixed
    • None
    • Auth Core 1.0.4
    • Authentication
    • None

    Description

      If "Allow Anonymous Access" is true (that's the default default) in theorg.apache.sling.engine.impl.auth.SlingAuthenticator config, curl -X OPTIONS http://localhost:8888/ correctly returns a 401 status.

      If the setting is false, the same request returns 200 and the login form.

      Not sure if that's really a problem, but I thought I'd report it as it caused the WebDAV mount on / to become unusable with samples that recommend setting that parameter to false. I'll change the samples to use sling:authRequestLogin=true instead.

      Attachments

        Issue Links

          is related to

          Test - A new unit, integration or system test. SLING-1786 Integration tests for authentication

          • Minor - Minor loss of function, or other problem where easy workaround is present.
          • Resolved

          Activity

            People

              fmeschbe Felix Meschberger
              bdelacretaz Bertrand Delacretaz
              Votes:
              0 Vote for this issue
              Watchers:
              0 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: