hc-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Adil Mughal (JIRA)" <j...@apache.org>
Subject [jira] [Updated] (HTTPCLIENT-1707) Cookie value is not updated when cookie already exists during negotiation
Date Thu, 17 Dec 2015 23:07:46 GMT

     [ https://issues.apache.org/jira/browse/HTTPCLIENT-1707?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]

Adil Mughal updated HTTPCLIENT-1707:
------------------------------------
    Description: 
As we hit the authenticate Uri, I think it ask for cookie and redirect to /my.policy with
cookie and then during negotiation the HttpResponse ask to Set-Cookie with same name but updated
value. I am not sure if this is an issue or something needs to be configured. 

Following is the communication between Android and APIs

Request 1:

GET https://connectuat.snclavalinom.com/sites/nexacor/tankmanagement/_vti_bin/NintexFormsServices/NfMobileAppService.svc/authenticate
HTTP/1.1
Accept-Charset: utf-8
Accept-Encoding: gzip, deflate
User-Agent: nintex-mobile-ap
Accept-Language: en-AU
NM_ETag: 783e6a83-670e-4b56-81eb-7584609ad0c0
NM_LastModified: 1970-01-01T10:00:00.0000000+10:00
Host: connectuat.snclavalinom.com
Connection: Keep-Alive

Response 1:

HTTP/1.0 302 Found
Server: BigIP
Connection: Close
Content-Length: 0
Location: /my.policy
Set-Cookie: LastMRH_Session=29c62c5b;path=/;secure
*Set-Cookie: MRHSession=22afd2631f7031af58bbc09829c62c5b;path=/;secure*
Set-Cookie: MRHSHint=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/

Request 2:

GET https://connectuat.snclavalinom.com/my.policy HTTP/1.1
Accept-Charset: utf-8
Accept-Encoding: gzip, deflate
User-Agent: nintex-mobile-ap
Accept-Language: en-AU
NM_ETag: 783e6a83-670e-4b56-81eb-7584609ad0c0
NM_LastModified: 1970-01-01T10:00:00.0000000+10:00
Host: connectuat.snclavalinom.com
Connection: Keep-Alive
Cookie: LastMRH_Session=29c62c5b; *MRHSession=22afd2631f7031af58bbc09829c62c5b*
Cookie2: $Version=1

Response 2:

HTTP/1.1 401 Unauthorized
Server: Apache
Content-Type: text/html; charset=utf-8
X-Frame-Options: DENY
Pragma: no-cache
Cache-Control: no-cache, must-revalidate
Accept-Ranges: bytes
Connection: close     
Date: Thu, 17 Dec 2015 22:16:06 GMT
Age: 5938   
Content-Length: 304
WWW-Authenticate: Basic realm=""
Set-Cookie: LastMRH_Session=29c62c5b;path=/;secure
Set-Cookie: *MRHSession=f755cbe45e1b00fd8edfd41629c62c5b;path=/;secure*

Request 3:



  was:
As we hit the authenticate Uri, I think it ask for cookie and redirect to /my.policy with
cookie and then during negotiation the HttpResponse ask to Set-Cookie with same name but updated
value. I am not sure if this is an issue or something needs to be configured. 

Following is the communication between Android and APIs

Request 1:



> Cookie value is not updated when cookie already exists during negotiation
> -------------------------------------------------------------------------
>
>                 Key: HTTPCLIENT-1707
>                 URL: https://issues.apache.org/jira/browse/HTTPCLIENT-1707
>             Project: HttpComponents HttpClient
>          Issue Type: Bug
>          Components: Android Port
>    Affects Versions: 4.3.5.1-android
>         Environment: Android - Sharepoint and BigIP/F5 in the middle
>            Reporter: Adil Mughal
>             Fix For: 4.3.5.1-android
>
>
> As we hit the authenticate Uri, I think it ask for cookie and redirect to /my.policy
with cookie and then during negotiation the HttpResponse ask to Set-Cookie with same name
but updated value. I am not sure if this is an issue or something needs to be configured.

> Following is the communication between Android and APIs
> Request 1:
> GET https://connectuat.snclavalinom.com/sites/nexacor/tankmanagement/_vti_bin/NintexFormsServices/NfMobileAppService.svc/authenticate
HTTP/1.1
> Accept-Charset: utf-8
> Accept-Encoding: gzip, deflate
> User-Agent: nintex-mobile-ap
> Accept-Language: en-AU
> NM_ETag: 783e6a83-670e-4b56-81eb-7584609ad0c0
> NM_LastModified: 1970-01-01T10:00:00.0000000+10:00
> Host: connectuat.snclavalinom.com
> Connection: Keep-Alive
> Response 1:
> HTTP/1.0 302 Found
> Server: BigIP
> Connection: Close
> Content-Length: 0
> Location: /my.policy
> Set-Cookie: LastMRH_Session=29c62c5b;path=/;secure
> *Set-Cookie: MRHSession=22afd2631f7031af58bbc09829c62c5b;path=/;secure*
> Set-Cookie: MRHSHint=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
> Request 2:
> GET https://connectuat.snclavalinom.com/my.policy HTTP/1.1
> Accept-Charset: utf-8
> Accept-Encoding: gzip, deflate
> User-Agent: nintex-mobile-ap
> Accept-Language: en-AU
> NM_ETag: 783e6a83-670e-4b56-81eb-7584609ad0c0
> NM_LastModified: 1970-01-01T10:00:00.0000000+10:00
> Host: connectuat.snclavalinom.com
> Connection: Keep-Alive
> Cookie: LastMRH_Session=29c62c5b; *MRHSession=22afd2631f7031af58bbc09829c62c5b*
> Cookie2: $Version=1
> Response 2:
> HTTP/1.1 401 Unauthorized
> Server: Apache
> Content-Type: text/html; charset=utf-8
> X-Frame-Options: DENY
> Pragma: no-cache
> Cache-Control: no-cache, must-revalidate
> Accept-Ranges: bytes
> Connection: close     
> Date: Thu, 17 Dec 2015 22:16:06 GMT
> Age: 5938   
> Content-Length: 304
> WWW-Authenticate: Basic realm=""
> Set-Cookie: LastMRH_Session=29c62c5b;path=/;secure
> Set-Cookie: *MRHSession=f755cbe45e1b00fd8edfd41629c62c5b;path=/;secure*
> Request 3:



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@hc.apache.org
For additional commands, e-mail: dev-help@hc.apache.org


Mime
View raw message