We're using a custom authenticationfilter based on httprequestauthenticationfilter so I'm pretty sure this would apply to httprequestauht-filter also.
When trying to checkout customized content (my:content) in the current space I get a "Duplicate child name not allowed exception". Checking out cm:content works fine with this filter. AND checking out my:content using default authentication filter also works fine. Pretty weird and I'm out of ideas with this one.