Please sign in to comment.
SEC-1975: Ignore anonymous users for AuthenticationSimpleHttpInvokerR…
…equestExecutor Previously anonymous authentication was submitted as credentials over the wire which caused the applications to attempt to authenticate the anonymous user. Now if the user is anonymous (determined by the AuthenticationTrustResolver), the AuthenticationSimpleHttpInvokerRequestExecutor does not populate any credentials.
- Loading branch information...
Showing with 27 additions and 1 deletion.