From c994d9bc0e6bfa2a730f71be8fcafd708537a240 Mon Sep 17 00:00:00 2001
From: Chris Hegarty <chegar@openjdk.org>
Date: Fri, 4 Jan 2013 11:34:17 +0000
Subject: [PATCH] 8005638: Less secure Authentication schemes should work when
 more secure schemes are not available

Reviewed-by: alanb
---
 .../sun/net/www/protocol/http/AuthenticationHeader.java        | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/jdk/src/share/classes/sun/net/www/protocol/http/AuthenticationHeader.java b/jdk/src/share/classes/sun/net/www/protocol/http/AuthenticationHeader.java
index 390898292f0..41f55998973 100644
--- a/jdk/src/share/classes/sun/net/www/protocol/http/AuthenticationHeader.java
+++ b/jdk/src/share/classes/sun/net/www/protocol/http/AuthenticationHeader.java
@@ -206,7 +206,8 @@ public class AuthenticationHeader {
 
             if(v == null) {
                 if ((v=schemes.get ("digest")) == null) {
-                    if (((v=schemes.get("ntlm"))==null)) {
+                    if (!NTLMAuthenticationProxy.supported
+                        || ((v=schemes.get("ntlm"))==null)) {
                         v = schemes.get ("basic");
                     }
                 }