1 Reply Latest reply on Oct 5, 2016 5:45 AM by Darran Lofthouse

    Form based authentication status code always 200 despite failure

    harish Kumar Newbie

      We are using wildfly 10, form based authentication. Whether authentication is successful or failure,

      response status code is 200.  In case of authentication failure, should not status code be different from 200 like 401 unauthorized ?

       

      Is there way to return different status code other then 200 in case of authentication failure ?

       

      web.xml

      <login-config>

        <auth-method>FORM</auth-method>

        <realm-name>ServerAuthRealm</realm-name>

        <form-login-config>

        <form-login-page>/login.html</form-login-page>

        <form-error-page>/loginError.html</form-error-page>

        </form-login-config>

      </login-config>