You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@hc.apache.org by "Adil Mughal (JIRA)" <ji...@apache.org> on 2015/12/18 00:07:46 UTC
[jira] [Updated] (HTTPCLIENT-1707) Cookie value is not updated when
cookie already exists during negotiation
[ https://issues.apache.org/jira/browse/HTTPCLIENT-1707?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Adil Mughal updated HTTPCLIENT-1707:
------------------------------------
Description:
As we hit the authenticate Uri, I think it ask for cookie and redirect to /my.policy with cookie and then during negotiation the HttpResponse ask to Set-Cookie with same name but updated value. I am not sure if this is an issue or something needs to be configured.
Following is the communication between Android and APIs
Request 1:
GET https://connectuat.snclavalinom.com/sites/nexacor/tankmanagement/_vti_bin/NintexFormsServices/NfMobileAppService.svc/authenticate HTTP/1.1
Accept-Charset: utf-8
Accept-Encoding: gzip, deflate
User-Agent: nintex-mobile-ap
Accept-Language: en-AU
NM_ETag: 783e6a83-670e-4b56-81eb-7584609ad0c0
NM_LastModified: 1970-01-01T10:00:00.0000000+10:00
Host: connectuat.snclavalinom.com
Connection: Keep-Alive
Response 1:
HTTP/1.0 302 Found
Server: BigIP
Connection: Close
Content-Length: 0
Location: /my.policy
Set-Cookie: LastMRH_Session=29c62c5b;path=/;secure
*Set-Cookie: MRHSession=22afd2631f7031af58bbc09829c62c5b;path=/;secure*
Set-Cookie: MRHSHint=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
Request 2:
GET https://connectuat.snclavalinom.com/my.policy HTTP/1.1
Accept-Charset: utf-8
Accept-Encoding: gzip, deflate
User-Agent: nintex-mobile-ap
Accept-Language: en-AU
NM_ETag: 783e6a83-670e-4b56-81eb-7584609ad0c0
NM_LastModified: 1970-01-01T10:00:00.0000000+10:00
Host: connectuat.snclavalinom.com
Connection: Keep-Alive
Cookie: LastMRH_Session=29c62c5b; *MRHSession=22afd2631f7031af58bbc09829c62c5b*
Cookie2: $Version=1
Response 2:
HTTP/1.1 401 Unauthorized
Server: Apache
Content-Type: text/html; charset=utf-8
X-Frame-Options: DENY
Pragma: no-cache
Cache-Control: no-cache, must-revalidate
Accept-Ranges: bytes
Connection: close
Date: Thu, 17 Dec 2015 22:16:06 GMT
Age: 5938
Content-Length: 304
WWW-Authenticate: Basic realm=""
Set-Cookie: LastMRH_Session=29c62c5b;path=/;secure
Set-Cookie: *MRHSession=f755cbe45e1b00fd8edfd41629c62c5b;path=/;secure*
Request 3:
was:
As we hit the authenticate Uri, I think it ask for cookie and redirect to /my.policy with cookie and then during negotiation the HttpResponse ask to Set-Cookie with same name but updated value. I am not sure if this is an issue or something needs to be configured.
Following is the communication between Android and APIs
Request 1:
> Cookie value is not updated when cookie already exists during negotiation
> -------------------------------------------------------------------------
>
> Key: HTTPCLIENT-1707
> URL: https://issues.apache.org/jira/browse/HTTPCLIENT-1707
> Project: HttpComponents HttpClient
> Issue Type: Bug
> Components: Android Port
> Affects Versions: 4.3.5.1-android
> Environment: Android - Sharepoint and BigIP/F5 in the middle
> Reporter: Adil Mughal
> Fix For: 4.3.5.1-android
>
>
> As we hit the authenticate Uri, I think it ask for cookie and redirect to /my.policy with cookie and then during negotiation the HttpResponse ask to Set-Cookie with same name but updated value. I am not sure if this is an issue or something needs to be configured.
> Following is the communication between Android and APIs
> Request 1:
> GET https://connectuat.snclavalinom.com/sites/nexacor/tankmanagement/_vti_bin/NintexFormsServices/NfMobileAppService.svc/authenticate HTTP/1.1
> Accept-Charset: utf-8
> Accept-Encoding: gzip, deflate
> User-Agent: nintex-mobile-ap
> Accept-Language: en-AU
> NM_ETag: 783e6a83-670e-4b56-81eb-7584609ad0c0
> NM_LastModified: 1970-01-01T10:00:00.0000000+10:00
> Host: connectuat.snclavalinom.com
> Connection: Keep-Alive
> Response 1:
> HTTP/1.0 302 Found
> Server: BigIP
> Connection: Close
> Content-Length: 0
> Location: /my.policy
> Set-Cookie: LastMRH_Session=29c62c5b;path=/;secure
> *Set-Cookie: MRHSession=22afd2631f7031af58bbc09829c62c5b;path=/;secure*
> Set-Cookie: MRHSHint=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
> Request 2:
> GET https://connectuat.snclavalinom.com/my.policy HTTP/1.1
> Accept-Charset: utf-8
> Accept-Encoding: gzip, deflate
> User-Agent: nintex-mobile-ap
> Accept-Language: en-AU
> NM_ETag: 783e6a83-670e-4b56-81eb-7584609ad0c0
> NM_LastModified: 1970-01-01T10:00:00.0000000+10:00
> Host: connectuat.snclavalinom.com
> Connection: Keep-Alive
> Cookie: LastMRH_Session=29c62c5b; *MRHSession=22afd2631f7031af58bbc09829c62c5b*
> Cookie2: $Version=1
> Response 2:
> HTTP/1.1 401 Unauthorized
> Server: Apache
> Content-Type: text/html; charset=utf-8
> X-Frame-Options: DENY
> Pragma: no-cache
> Cache-Control: no-cache, must-revalidate
> Accept-Ranges: bytes
> Connection: close
> Date: Thu, 17 Dec 2015 22:16:06 GMT
> Age: 5938
> Content-Length: 304
> WWW-Authenticate: Basic realm=""
> Set-Cookie: LastMRH_Session=29c62c5b;path=/;secure
> Set-Cookie: *MRHSession=f755cbe45e1b00fd8edfd41629c62c5b;path=/;secure*
> Request 3:
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@hc.apache.org
For additional commands, e-mail: dev-help@hc.apache.org