diff options
author | Simon Rettberg | 2019-10-11 13:13:44 +0200 |
---|---|---|
committer | Simon Rettberg | 2019-10-11 13:13:44 +0200 |
commit | 30f95c630e4e6c4f52ccc3899bcea2612bdf88d8 (patch) | |
tree | 50f8a21816cc24ec921baecccb5489f3beebae47 /pom.xml | |
parent | Support retrying authentication without an @... suffix automatically (diff) | |
download | ecp-client-lean-30f95c630e4e6c4f52ccc3899bcea2612bdf88d8.tar.gz ecp-client-lean-30f95c630e4e6c4f52ccc3899bcea2612bdf88d8.tar.xz ecp-client-lean-30f95c630e4e6c4f52ccc3899bcea2612bdf88d8.zip |
Unconditionally send Auth header to IdP
The apache HTTP lib "helpfully" tries to talk to the IdP without sending
the provided credentials first, and only retries the request with those
credentials if the first attempt results in "401 Authorization
Required". This apparently breaks with IdP 3.x's integrated ECP support
as that always replies with "200 OK", putting an error message in the
XML payload of the reply instead, so the apache lib never retries the
request with credentials.
Diffstat (limited to 'pom.xml')
0 files changed, 0 insertions, 0 deletions