net/http/http_auth_controller.cc - Issue 2507253002: [net/auth] Treat ERR_INVALID_HANDLE as a identity invalidating error.

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Unified Diff: net/http/http_auth_controller.cc

Issue 2507253002: [net/auth] Treat ERR_INVALID_HANDLE as a identity invalidating error. (Closed)

Patch Set: Reparent this CL so that it detaches from its dependencies Created 4 years, 1 month ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

Index: net/http/http_auth_controller.cc

diff --git a/net/http/http_auth_controller.cc b/net/http/http_auth_controller.cc

index 01245a9b8c7f9af7f94e306302740518ef6450c3..d7d5f0608f92148e18bebc0bc60b01c753fe91c2 100644

--- a/net/http/http_auth_controller.cc

+++ b/net/http/http_auth_controller.cc

@@ -475,16 +475,22 @@ void HttpAuthController::PopulateAuthChallenge() {

int HttpAuthController::HandleGenerateTokenResult(int result) {

DCHECK(CalledOnValidThread());

switch (result) {

+ // Occurs if the credential handle is found to be invalid at the point it is

+ // exercised (i.e. GenerateAuthToken stage). We are going to consider this

+ // to be an error that invalidates the identity but not necessarily the

+ // scheme. Doing so allows a different identity to be used with the same

+ // scheme. See https://crbug.com/648366.

+ case ERR_INVALID_HANDLE:

+ // If the GenerateAuthToken call fails with this error, this means that the

+ // handler can no longer be used. However, the authentication scheme is

+ // considered still usable. This allows a scheme that attempted and failed

+ // to use default credentials to recover and use explicit credentials.

+ //

+ // The current handler may be tied to external state that is no longer

+ // valid, hence should be discarded. Since the scheme is still valid, a new

+ // handler can be created for the current scheme.

case ERR_INVALID_AUTH_CREDENTIALS:

- // If the GenerateAuthToken call fails with this error, this means that

- // the handler can no longer be used. However, the authentication scheme

- // is considered still usable. This allows a scheme that attempted and

- // failed to use default credentials to recover and use explicit

- // credentials.

- //

- // The current handler may be tied to external state that is no longer

- // valid, hence should be discarded. Since the scheme is still valid, a

- // new handler can be created for the current scheme.

InvalidateCurrentHandler(INVALIDATE_HANDLER_AND_CACHED_CREDENTIALS);

auth_token_.clear();

return OK;

« no previous file with comments | « no previous file | no next file » | no next file with comments »