You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@shindig.apache.org by "Paul Lindner (JIRA)" <ji...@apache.org> on 2010/09/02 01:26:54 UTC

[jira] Resolved: (SHINDIG-1167) HttpCache ignores authorization headers

     [ https://issues.apache.org/jira/browse/SHINDIG-1167?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Paul Lindner resolved SHINDIG-1167.
-----------------------------------

    Fix Version/s: 2.0.0
       Resolution: Fixed

content caching is totally different now...


> HttpCache ignores authorization headers
> ---------------------------------------
>
>                 Key: SHINDIG-1167
>                 URL: https://issues.apache.org/jira/browse/SHINDIG-1167
>             Project: Shindig
>          Issue Type: Bug
>          Components: Java
>    Affects Versions: 1.0
>            Reporter: Richard Wallace
>             Fix For: 2.0.0
>
>
> HttpRequest Authorization headers are being ignored when deciding if the HttpRequest/HttpResponse is cacheable.  This is causing a problem in gadgets that try and use makeRequest with the OAUTH_USE_TOKEN parameter set to 'if_available' and then later makes a request to the same web services with the OAUTH_USE_TOKEN set to 'always'.  It should be respecting the Authorization header according to the [HTTP spec|http://www.w3.org/Protocols/rfc2616/rfc2616-sec14.html#sec14.8].

-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.