From: markt <markt@13f79535-47bb-0310-9956-ffa450edef68>
Date: Wed, 4 Feb 2009 10:43:10 +0000 (+0000)
Subject: Fix https://issues.apache.org/bugzilla/show_bug.cgi?id=38553
X-Git-Url: https://git.internetallee.de/?a=commitdiff_plain;h=4b1236ee84b30d288d86f3aebf78100a1ca6d1d5;p=tomcat7.0

Fix https://issues.apache.org/bugzilla/show_bug.cgi?id=38553
A lack of certs is normal if the user doesn't have a trusted cert. Return 401, not 400 in this case.

git-svn-id: https://svn.apache.org/repos/asf/tomcat/trunk@740684 13f79535-47bb-0310-9956-ffa450edef68
---

diff --git a/java/org/apache/catalina/authenticator/SSLAuthenticator.java b/java/org/apache/catalina/authenticator/SSLAuthenticator.java
index 9cfc6cb46..1c4220a19 100644
--- a/java/org/apache/catalina/authenticator/SSLAuthenticator.java
+++ b/java/org/apache/catalina/authenticator/SSLAuthenticator.java
@@ -140,7 +140,7 @@ public class SSLAuthenticator
         if ((certs == null) || (certs.length < 1)) {
             if (containerLog.isDebugEnabled())
                 containerLog.debug("  No certificates included with this request");
-            response.sendError(HttpServletResponse.SC_BAD_REQUEST,
+            response.sendError(HttpServletResponse.SC_UNAUTHORIZED,
                                sm.getString("authenticator.certificates"));
             return (false);
         }