hc-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Ortwin Gl├╝ck <ortwin.glu...@nose.ch>
Subject Re: DO NOT REPLY [Bug 20089] - Authentication fails with proxied SSL Connections
Date Thu, 22 May 2003 07:07:23 GMT
Adrian Sutton wrote:
>> Okay, if we put this problem with the known workaround in the 
>> documentation then it should be okay. Can this be worked around by 
>> preemptive authentication as well?
> I'd imagine so, but that would then require using basic authentication 
> (which shouldn't be a problem over SSL).  Essentially, as long as the 
> server doesn't close the request with a response that HttpClient will 
> retry for (redirect and authentication are the two I know of).  The 
> problem would appear if the server requested a redirect and closed the 
> connection as well, however most servers seem to keep the connection 
> open when sending redirect responses back.  So if you can configure your 
> server to not close the connection when it rejects authentication, that 
> would be another workaround.

Ah that's why we did not notice the misbehaviour. We do not use the 
MultiClient / Connectionpool but only single connections. Furthermore we 
only use basic authentication (which is okay over SSL) with preemtive 
authentication with Tomcat and ServletExec. So it may be that we just do 
not notice this problem. So, personaly, I can live with it beeing fixed 
in 2.1

So in the release notes there should be a section about this known 
problem and the above hints on how to work around it.

Never mind


View raw message