RFR: 8326949: Authorization header is removed when a proxy Authenticator is set on HttpClient [v5]
Michael McMahon
michaelm at openjdk.org
Wed Oct 16 10:51:10 UTC 2024
On Mon, 14 Oct 2024 15:11:02 GMT, Michael McMahon <michaelm at openjdk.org> wrote:
>> When to use the Authenticator (or not) is typically implementation dependent. We should have documented how our implementation used the authenticator when the API was added in JDK 11. I am not sure we should make this text normative, but if you believe we should I will not object. Do you think we should?
>
> Would it be better as an implNote then? I guess it's possible that other implementations of the API might not behave this way.
I have changed it to an implNote, referring to the JDK built-in implementation, as elsewhere.
-------------
PR Review Comment: https://git.openjdk.org/jdk/pull/21408#discussion_r1802864711
More information about the net-dev
mailing list