hc-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Oleg Kalnichevski (JIRA)" <j...@apache.org>
Subject [jira] Commented: (HTTPCLIENT-917) When authentication is invalidated during redirection, proxy authentication also should be invalidated
Date Wed, 24 Feb 2010 09:14:27 GMT

    [ https://issues.apache.org/jira/browse/HTTPCLIENT-917?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12837701#action_12837701
] 

Oleg Kalnichevski commented on HTTPCLIENT-917:
----------------------------------------------

Karl,

(1) HttpComponents is an open-source project overseen by ASF. The only thing we can truly
_guarantee_ here is that you get full source code and _nothing_ else. 

(2) HttpClient 4.0 does a lot of things very differently compared to HttpClient 3.1, so there
is really no way of telling whether the problem is still there without proper testing. However,
just by looking at the code I do think HttpClient 4.0 is no longer affected by the bug.

http://hc.apache.org/httpcomponents-client/httpclient/xref/org/apache/http/impl/client/DefaultRequestDirector.html#995

(3) I will commit your patch to the 3.x branch tonight.

(4) I am not sure I fully understand why you are not able to upgrade Lucene Connector Framework
to the latest version of HttpClient and what this has to do with Debian stable. 

Oleg


> When authentication is invalidated during redirection, proxy authentication also should
be invalidated
> ------------------------------------------------------------------------------------------------------
>
>                 Key: HTTPCLIENT-917
>                 URL: https://issues.apache.org/jira/browse/HTTPCLIENT-917
>             Project: HttpComponents HttpClient
>          Issue Type: Bug
>          Components: HttpClient
>    Affects Versions: 3.1 Final
>            Reporter: Karl Wright
>         Attachments: proxy-auth-invalidate.patch
>
>
> This was discovered during use by Lucene Connector Framework, on 3.1.
> When a document is fetched through a proxy authenticated with NTLM, and
> that document is a redirection (301 or 302), the httpclient fails to
> properly use the right proxy credentials on the subsequent document
> fetch. This leads to 407 errors on these kinds of documents.
> I've attached a proposed patch.

-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.


---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@hc.apache.org
For additional commands, e-mail: dev-help@hc.apache.org


Mime
View raw message