You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@shindig.apache.org by "Mat Mannion (JIRA)" <ji...@apache.org> on 2010/07/13 14:42:52 UTC

[jira] Commented: (SHINDIG-1382) MakeRequestHandler keeps and sends cookies regardless of contexes / users etc.

    [ https://issues.apache.org/jira/browse/SHINDIG-1382?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12887734#action_12887734 ] 

Mat Mannion commented on SHINDIG-1382:
--------------------------------------

Alternatively, we could modify BasicHttpFetcher to do:

{code}
client.removeRequestInterceptorByClass(RequestAddCookies.class);
client.removeResponseInterceptorByClass(ResponseProcessCookies.class);
{code}

> MakeRequestHandler keeps and sends cookies regardless of contexes / users etc. 
> -------------------------------------------------------------------------------
>
>                 Key: SHINDIG-1382
>                 URL: https://issues.apache.org/jira/browse/SHINDIG-1382
>             Project: Shindig
>          Issue Type: Bug
>          Components: Java
>    Affects Versions: 2.0.0-RC1
>         Environment: N/A
>            Reporter: Hasan Ceylan
>            Priority: Critical
>         Attachments: shindig-cookie.patch
>
>
> AFAIK, shindig switched to http-comps as the http library. 
> This library by default just like a browser caches the cookies returned by the backend servers and re-uses those cookies all the time.
> Attached patch resolves the issues by rejecting validation of cookies with a custom cookie policy.
> Regards,
> Hasan Ceylan  

-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.