Basic Authentication Scheme is case sensitive
Issue
- The Basic Authentication headers using the Elytron modules are case sensitive.
- According to the specification document RFC-7617, both scheme and parameters should be case insensitive.
- This issue is not present on JBoss EAP 6 with legacy security.
Environment
- Red Hat JBoss Enterprise Application Platform (JBoss EAP)
- 7.4
Subscriber exclusive content
A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.