hc-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From sebastiencaille <...@git.apache.org>
Subject [GitHub] httpclient issue #52: HTTPCLIENT-1748: fix for proxy authentication issue / ...
Date Sat, 25 Jun 2016 16:45:39 GMT
Github user sebastiencaille commented on the issue:

    https://github.com/apache/httpclient/pull/52
  
    Hello
    
    At first I tried to provide the proxy's url, but the applet was always asking for credentials.
    It works fine when I provide the request URI.
    Then, according to a breakpoint I put in Authenticator.requestPasswordAuthentication,
the applet plugin uses the url of the jar files it wants to download.
    
    I just checked the code of the openjdk... It looks like they are doing that, too 
    http://grepcode.com/file/repository.grepcode.com/java/root/jdk/openjdk/8u40-b25/sun/net/www/protocol/http/HttpURLConnection.java#HttpURLConnection.getHttpProxyAuthentication%28sun.net.www.protocol.http.AuthenticationHeader%29
(line 2223)
    
    My guess is that the other parameters are sufficient to define the realm of the auth challenge.
That one is probably used to strengthen the security in some use cases (eg to reduce the risks
of cross domain calls).
    
    By the way, it looks like providing HTTP_TARGET_HOST is sufficient to fix my use case,
but strictly speaking it should be the entire request URI (but at the moment I don't know
how to get that one)...
    
    Sebastien



---
If your project is set up for it, you can reply to this email and have your
reply appear on GitHub as well. If your project does not have this feature
enabled and wishes so, or if the feature is enabled but not working, please
contact infrastructure at infrastructure@apache.org or file a JIRA ticket
with INFRA.
---

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@hc.apache.org
For additional commands, e-mail: dev-help@hc.apache.org


Mime
View raw message