tomcat-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Bernd Eilers <...@stardivision.de>
Subject Why are some header values hidden in HttpProcessor.java ?
Date Tue, 12 Sep 2000 12:34:52 GMT

Hi there !

I'm not sure if this is a bug or a feature, so a Question to the 
HttpProcessor.java in Catalina

Why is it that HttpProcessor.java hides some informations send in the 
HTTP request to the servlet API and as such makes it impossible for a 
servlet to reconstruct the original Request ?

Example for why this is at least a undisirable "feature" is the following 
Servlet API use:

Implement a servlet that runs in a webserver before the firewall and 
forwards the request (probably a little bit modified) to annother 
webserver in the intranet.

More detailed questions:

What is the reason to exclude the "authorisation" header by the following 
code ?

if (!match.equals("authorisation"))
	request.addHeader(name,value);


And what is the reason for excluding the jsession Session ID Cookie from 
the list of cookies by using this construct ?

if 
(cookies[i].getName().equals(org.apache.tomcat.connector.Constants.Sessi
onCookie))
// ...
else
request.addCookie(cookies[i]);


Bernd


Mime
View raw message