[jboss-jira] [JBoss JIRA] (ELY-1410) Digest auth uses single use nonces, causing browsers to replay every request
Stuart Douglas (JIRA)
issues at jboss.org
Tue Oct 17 10:01:00 EDT 2017
[ https://issues.jboss.org/browse/ELY-1410?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Stuart Douglas moved JBEAP-13527 to ELY-1410:
---------------------------------------------
Project: WildFly Elytron (was: JBoss Enterprise Application Platform)
Key: ELY-1410 (was: JBEAP-13527)
Workflow: GIT Pull Request workflow (was: CDW with loose statuses v1)
Component/s: HTTP
(was: Security)
> Digest auth uses single use nonces, causing browsers to replay every request
> ----------------------------------------------------------------------------
>
> Key: ELY-1410
> URL: https://issues.jboss.org/browse/ELY-1410
> Project: WildFly Elytron
> Issue Type: Bug
> Components: HTTP
> Reporter: Stuart Douglas
> Assignee: Stuart Douglas
> Priority: Blocker
>
> The results in every single request being retried. This has two negative impacts. The extra request adds a round trip which hurts response time on high latency connections. Additionally large posts have double the bandwidth consumption and can be interpreted as failures. For example a 300 mb upload in the console would likely lead to the user assuming a hang.
--
This message was sent by Atlassian JIRA
(v7.5.0#75005)
More information about the jboss-jira
mailing list