[jboss-jira] [JBoss JIRA] Created: (AS7-1861) Detect Proxied HTTP requests within Digest authenticator.
Darran Lofthouse (JIRA)
jira-events at lists.jboss.org
Mon Sep 19 08:46:26 EDT 2011
Detect Proxied HTTP requests within Digest authenticator.
---------------------------------------------------------
Key: AS7-1861
URL: https://issues.jboss.org/browse/AS7-1861
Project: Application Server 7
Issue Type: Task
Components: Domain Management, Security
Reporter: Darran Lofthouse
Assignee: Darran Lofthouse
Requests coming over a proxy may use a HTTP Keep-Alive connection between the server and the proxy, this connection could be shared by multiple clients so connection based caching should be disabled for proxy requests.
>From w3.org: -
{quote}
The Via general-header field MUST be used by gateways and proxies to indicate the intermediate protocols and recipients between the user agent and the server on requests, and between the origin server and the client on responses.
{quote}
--
This message is automatically generated by JIRA.
For more information on JIRA, see: http://www.atlassian.com/software/jira
More information about the jboss-jira
mailing list