Return-Path: X-Original-To: apmail-hc-dev-archive@www.apache.org Delivered-To: apmail-hc-dev-archive@www.apache.org Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by minotaur.apache.org (Postfix) with SMTP id 1916D18902 for ; Fri, 18 Dec 2015 00:51:47 +0000 (UTC) Received: (qmail 18779 invoked by uid 500); 18 Dec 2015 00:51:46 -0000 Delivered-To: apmail-hc-dev-archive@hc.apache.org Received: (qmail 18732 invoked by uid 500); 18 Dec 2015 00:51:46 -0000 Mailing-List: contact dev-help@hc.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: "HttpComponents Project" Delivered-To: mailing list dev@hc.apache.org Received: (qmail 18355 invoked by uid 99); 18 Dec 2015 00:51:46 -0000 Received: from arcas.apache.org (HELO arcas) (140.211.11.28) by apache.org (qpsmtpd/0.29) with ESMTP; Fri, 18 Dec 2015 00:51:46 +0000 Received: from arcas.apache.org (localhost [127.0.0.1]) by arcas (Postfix) with ESMTP id 9CB302C0AFA for ; Fri, 18 Dec 2015 00:51:46 +0000 (UTC) Date: Fri, 18 Dec 2015 00:51:46 +0000 (UTC) From: "Adil Mughal (JIRA)" To: dev@hc.apache.org Message-ID: In-Reply-To: References: Subject: [jira] [Issue Comment Deleted] (HTTPCLIENT-1707) Cookie value is not updated when cookie already exists during auth negotiation MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 7bit X-JIRA-FingerPrint: 30527f35849b9dde25b450d4833f0394 [ https://issues.apache.org/jira/browse/HTTPCLIENT-1707?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Adil Mughal updated HTTPCLIENT-1707: ------------------------------------ Comment: was deleted (was: Want to mark it as resolved not closed) > Cookie value is not updated when cookie already exists during auth negotiation > ------------------------------------------------------------------------------ > > Key: HTTPCLIENT-1707 > URL: https://issues.apache.org/jira/browse/HTTPCLIENT-1707 > Project: HttpComponents HttpClient > Issue Type: Bug > Components: Android Port > Affects Versions: 4.3.5.1-android > Environment: Android - Sharepoint and F5 in the middle > Reporter: Adil Mughal > Fix For: 4.3.5.1-android > > > As we hit the authenticate Uri, I think it ask for cookie and redirect to /my.policy with cookie and then during negotiation the HttpResponse ask to Set-Cookie with same name but updated value. I am not sure if this is an issue or something needs to be configured. > Following is the communication between Android and APIs > Request 1: > GET https://websiteUrl/authenticate HTTP/1.1 > Accept-Charset: utf-8 > Accept-Encoding: gzip, deflate > User-Agent: nintex-mobile-ap > Accept-Language: en-AU > NM_ETag: 783e6a83-670e-4b56-81eb-7584609ad0c0 > NM_LastModified: 1970-01-01T10:00:00.0000000+10:00 > Host: connectuat.snclavalinom.com > Connection: Keep-Alive > Response 1: > HTTP/1.0 302 Found > Server: BigIP > Connection: Close > Content-Length: 0 > Location: /my.policy > Set-Cookie: LastMRH_Session=29c62c5b;path=/;secure > *Set-Cookie: MRHSession=22afd2631f7031af58bbc09829c62c5b;path=/;secure* > Set-Cookie: MRHSHint=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/ > Request 2: > GET https://websiteUrl/my.policy HTTP/1.1 > Accept-Charset: utf-8 > Accept-Encoding: gzip, deflate > User-Agent: nintex-mobile-ap > Accept-Language: en-AU > NM_ETag: 783e6a83-670e-4b56-81eb-7584609ad0c0 > NM_LastModified: 1970-01-01T10:00:00.0000000+10:00 > Host: connectuat.snclavalinom.com > Connection: Keep-Alive > Cookie: LastMRH_Session=29c62c5b; *MRHSession=22afd2631f7031af58bbc09829c62c5b* > Cookie2: $Version=1 > Response 2: > HTTP/1.1 401 Unauthorized > Server: Apache > Content-Type: text/html; charset=utf-8 > X-Frame-Options: DENY > Pragma: no-cache > Cache-Control: no-cache, must-revalidate > Accept-Ranges: bytes > Connection: close > Date: Thu, 17 Dec 2015 22:16:06 GMT > Age: 5938 > Content-Length: 304 > WWW-Authenticate: Basic realm="" > Set-Cookie: LastMRH_Session=29c62c5b;path=/;secure > Set-Cookie: *MRHSession=f755cbe45e1b00fd8edfd41629c62c5b;path=/;secure* > Request 3: > GET https://websiteUrl/my.policy HTTP/1.1 > Accept-Charset: utf-8 > Accept-Encoding: gzip, deflate > User-Agent: nintex-mobile-ap > Accept-Language: en-AU > NM_ETag: 783e6a83-670e-4b56-81eb-7584609ad0c0 > NM_LastModified: 1970-01-01T10:00:00.0000000+10:00 > Host: connectuat.snclavalinom.com > Connection: Keep-Alive > Cookie: LastMRH_Session=29c62c5b; *MRHSession=22afd2631f7031af58bbc09829c62c5b* > Cookie2: $Version=1 > Authorization: Basic > Response 3: > HTTP/1.0 302 Found > Server: BigIP > Connection: Close > Content-Length: 0 > Location: /my.logout.php3?errorcode=20 > Set-Cookie: LastMRH_Session=29c62c5b;path=/;secure > Set-Cookie: MRHSession=22afd2631f7031af58bbc09829c62c5b;path=/;secure > *This is working fine on iOS because the value of MRHSession is being updated.* -- This message was sent by Atlassian JIRA (v6.3.4#6332) --------------------------------------------------------------------- To unsubscribe, e-mail: dev-unsubscribe@hc.apache.org For additional commands, e-mail: dev-help@hc.apache.org