GitHub-Spring
/
spring-security
mirror of https://github.com/spring-projects/spring-security.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
Browse Source

Polish gh-16280

pull/16505/head
Steve Riesenberg 9 months ago
parent
21fb5f92cf
commit
eb510ab59d
1 changed files with 3 additions and 5 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Unified View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 8
      docs/modules/ROOT/pages/servlet/authentication/passwords/basic.adoc

8
docs/modules/ROOT/pages/servlet/authentication/passwords/basic.adoc
Unescape View File

@ -24,11 +24,9 @@ The `RequestCache` is typically a `NullRequestCache` that does not save the requ
[NOTE] [NOTE]
==== ====
The default HTTP Basic Auth Provider will suppress both Response body and `WWW-Authenticate` header in the 401 response when The default HTTP Basic Auth Provider will suppress both Response body and `WWW-Authenticate` header in the 401 response when the request was made with a `X-Requested-By: XMLHttpRequest` header.
the request was made with a `X-Requested-By: XMLHttpRequest` header. This allows frontends to implement their own This allows frontends to implement their own authentication code, instead of triggering the browser login dialog.
authentication code, instead of triggering the browser login dialog. To override, implement your own javadoc:org.springframework.security.web.authentication.www.BasicAuthenticationEntryPoint[].
To override, implement your own
javadoc:org.springframework.security.web.authentication.www.BasicAuthenticationEntryPoint[] .
==== ====
When a client receives the `WWW-Authenticate` header, it knows it should retry with a username and password. When a client receives the `WWW-Authenticate` header, it knows it should retry with a username and password.

Write Preview
Loading…
Cancel
Save