From 4b1236ee84b30d288d86f3aebf78100a1ca6d1d5 Mon Sep 17 00:00:00 2001
From: markt <markt@13f79535-47bb-0310-9956-ffa450edef68>
Date: Wed, 4 Feb 2009 10:43:10 +0000
Subject: [PATCH] Fix https://issues.apache.org/bugzilla/show_bug.cgi?id=38553
 A lack of certs is normal if the user doesn't have a trusted cert. Return
 401, not 400 in this case.

git-svn-id: https://svn.apache.org/repos/asf/tomcat/trunk@740684 13f79535-47bb-0310-9956-ffa450edef68
---
 java/org/apache/catalina/authenticator/SSLAuthenticator.java | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/java/org/apache/catalina/authenticator/SSLAuthenticator.java b/java/org/apache/catalina/authenticator/SSLAuthenticator.java
index 9cfc6cb46..1c4220a19 100644
--- a/java/org/apache/catalina/authenticator/SSLAuthenticator.java
+++ b/java/org/apache/catalina/authenticator/SSLAuthenticator.java
@@ -140,7 +140,7 @@ public class SSLAuthenticator
         if ((certs == null) || (certs.length < 1)) {
             if (containerLog.isDebugEnabled())
                 containerLog.debug("  No certificates included with this request");
-            response.sendError(HttpServletResponse.SC_BAD_REQUEST,
+            response.sendError(HttpServletResponse.SC_UNAUTHORIZED,
                                sm.getString("authenticator.certificates"));
             return (false);
         }
-- 
2.11.0