[jboss-jira] [JBoss JIRA] Updated: (AS7-1861) Detect Proxied HTTP requests within Digest authenticator.

Darran Lofthouse (JIRA) jira-events at lists.jboss.org
Mon Sep 19 12:20:26 EDT 2011 

     [ https://issues.jboss.org/browse/AS7-1861?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Darran Lofthouse updated AS7-1861:
----------------------------------

    Description: 
Requests coming over a proxy may use a HTTP Keep-Alive connection between the server and the proxy, this connection could be shared by multiple clients so connection based caching should be disabled for proxy requests.

>From w3.org: -
{quote}
The Via general-header field MUST be used by gateways and proxies to indicate the intermediate protocols and recipients between the user agent and the server on requests, and between the origin server and the client on responses.
{quote}

http://www.w3.org/Protocols/rfc2616/rfc2616-sec14.html#sec14.45

  was:
Requests coming over a proxy may use a HTTP Keep-Alive connection between the server and the proxy, this connection could be shared by multiple clients so connection based caching should be disabled for proxy requests.

>From w3.org: -
{quote}
The Via general-header field MUST be used by gateways and proxies to indicate the intermediate protocols and recipients between the user agent and the server on requests, and between the origin server and the client on responses.
{quote}



> Detect Proxied HTTP requests within Digest authenticator.
> ---------------------------------------------------------
>
>                 Key: AS7-1861
>                 URL: https://issues.jboss.org/browse/AS7-1861
>             Project: Application Server 7
>          Issue Type: Task
>          Components: Domain Management, Security
>            Reporter: Darran Lofthouse
>            Assignee: Darran Lofthouse
>
> Requests coming over a proxy may use a HTTP Keep-Alive connection between the server and the proxy, this connection could be shared by multiple clients so connection based caching should be disabled for proxy requests.
> From w3.org: -
> {quote}
> The Via general-header field MUST be used by gateways and proxies to indicate the intermediate protocols and recipients between the user agent and the server on requests, and between the origin server and the client on responses.
> {quote}
> http://www.w3.org/Protocols/rfc2616/rfc2616-sec14.html#sec14.45

--
This message is automatically generated by JIRA.
For more information on JIRA, see: http://www.atlassian.com/software/jira

More information about the jboss-jira mailing list