Hello,
I am using 1.9.8. As it is implemented right now in HttpServletRequestImpl the attributed is blindly cast to a string, which is causing me some problems with attempting to use spring-security with grizzly. I am doing this as part of a jersey-test-framework test for some jersey resources which are protected with basic auth..
I think that simply checking for instanceOf string should be enough and skip the notification if the attribute returned is not a string. If this sounds good, I'll open a bug and submit a patch.
regards,
-jr