1 files changed, 5 insertions, 2 deletions

diff --git a/jetty-security/src/main/java/org/eclipse/jetty/security/authentication/ClientCertAuthenticator.java b/jetty-security/src/main/java/org/eclipse/jetty/security/authentication/ClientCertAuthenticator.java
index 0db6551c5a..9eedbf56ce 100644
--- a/jetty-security/src/main/java/org/eclipse/jetty/security/authentication/ClientCertAuthenticator.java
+++ b/jetty-security/src/main/java/org/eclipse/jetty/security/authentication/ClientCertAuthenticator.java
@@ -75,6 +75,7 @@ public class ClientCertAuthenticator extends LoginAuthenticator
         super();
     }
 
+    @Override
     public String getAuthMethod()
     {
         return Constraint.__CERT_AUTH;
@@ -84,10 +85,11 @@ public class ClientCertAuthenticator extends LoginAuthenticator
      * @return Authentication for request
      * @throws ServerAuthException
      */
+    @Override
     public Authentication validateRequest(ServletRequest req, ServletResponse res, boolean mandatory) throws ServerAuthException
     {
         if (!mandatory)
-            return _deferred;
+            return new DeferredAuthentication(this);
 
         HttpServletRequest request = (HttpServletRequest)req;
         HttpServletResponse response = (HttpServletResponse)res;
@@ -129,7 +131,7 @@ public class ClientCertAuthenticator extends LoginAuthenticator
                 }
             }
 
-            if (!_deferred.isDeferred(response))
+            if (!DeferredAuthentication.isDeferred(response))
             {
                 response.sendError(HttpServletResponse.SC_FORBIDDEN);
                 return Authentication.SEND_FAILURE;
@@ -181,6 +183,7 @@ public class ClientCertAuthenticator extends LoginAuthenticator
         return CertificateUtils.loadCRL(crlPath);
     }
 
+    @Override
     public boolean secureResponse(ServletRequest req, ServletResponse res, boolean mandatory, User validatedUser) throws ServerAuthException
     {
         return true;