Return-Path: X-Original-To: apmail-hc-dev-archive@www.apache.org Delivered-To: apmail-hc-dev-archive@www.apache.org Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by minotaur.apache.org (Postfix) with SMTP id 7DCC095BA for ; Tue, 27 Sep 2011 19:18:09 +0000 (UTC) Received: (qmail 35856 invoked by uid 500); 27 Sep 2011 19:18:09 -0000 Delivered-To: apmail-hc-dev-archive@hc.apache.org Received: (qmail 35814 invoked by uid 500); 27 Sep 2011 19:18:09 -0000 Mailing-List: contact dev-help@hc.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: "HttpComponents Project" Delivered-To: mailing list dev@hc.apache.org Received: (qmail 35806 invoked by uid 99); 27 Sep 2011 19:18:09 -0000 Received: from nike.apache.org (HELO nike.apache.org) (192.87.106.230) by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 27 Sep 2011 19:18:09 +0000 X-ASF-Spam-Status: No, hits=-2000.5 required=5.0 tests=ALL_TRUSTED,RP_MATCHES_RCVD X-Spam-Check-By: apache.org Received: from [140.211.11.116] (HELO hel.zones.apache.org) (140.211.11.116) by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 27 Sep 2011 19:18:06 +0000 Received: from hel.zones.apache.org (hel.zones.apache.org [140.211.11.116]) by hel.zones.apache.org (Postfix) with ESMTP id 67CA1289F1C for ; Tue, 27 Sep 2011 19:17:45 +0000 (UTC) Date: Tue, 27 Sep 2011 19:17:45 +0000 (UTC) From: "Harald Kirsch (Commented) (JIRA)" To: dev@hc.apache.org Message-ID: <486849155.734.1317151065426.JavaMail.tomcat@hel.zones.apache.org> In-Reply-To: <1878642498.12790.1317049588016.JavaMail.tomcat@hel.zones.apache.org> Subject: [jira] [Commented] (HTTPCLIENT-1129) Redirect and Kerberos authentication in conflict MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 7bit X-JIRA-FingerPrint: 30527f35849b9dde25b450d4833f0394 X-Virus-Checked: Checked by ClamAV on apache.org [ https://issues.apache.org/jira/browse/HTTPCLIENT-1129?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13115826#comment-13115826 ] Harald Kirsch commented on HTTPCLIENT-1129: ------------------------------------------- Hello Oleg, no, except I have to relay this to my colleagues tomorrow. But we will get you the logs. Harald. > Redirect and Kerberos authentication in conflict > ------------------------------------------------ > > Key: HTTPCLIENT-1129 > URL: https://issues.apache.org/jira/browse/HTTPCLIENT-1129 > Project: HttpComponents HttpClient > Issue Type: Wish > Components: HttpClient > Affects Versions: 4.1.2 > Reporter: Harald Kirsch > Attachments: examples.txt, logFrom401Example.txt, wiresharkFrom401.txt > > > We are using the HttpClient to connect to a Website that uses Kerberos-Authentication. > Beware this trigger word: Kerberos! I think this is *not* the problem, but please read on. > Here is the sequence of events: > Client: GET / > Server: Unauthorized. > Client: GET / and includes authentication. > Server: 302 to /something on the same host (this shows that in principle authentication works) > Client: GET /something, does not include authentication > Server: Unauthorized > Client quits with 401-Unauthorized. > I would have expected one of the following instead: > 1) Client immediately sends authorization information with the redirected GET /something > 2) Client re-requests the /something with authorization after 401-Unauthorized. > We could get around the problem by setting the ConnectionReuseStrategy to a constant false. > It would be great if someone could tell me if HttpClient works as expected or whether there is a bug or misconfiguration lurking. > Thanks, > Harald. -- This message is automatically generated by JIRA. If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa For more information on JIRA, see: http://www.atlassian.com/software/jira --------------------------------------------------------------------- To unsubscribe, e-mail: dev-unsubscribe@hc.apache.org For additional commands, e-mail: dev-help@hc.apache.org