Summary: | Requests to open URL that include an Authorization header do not reach servlet | ||
---|---|---|---|
Product: | Tomcat 7 | Reporter: | Craig Chaney <apachebugs> |
Component: | Catalina | Assignee: | Tomcat Developers Mailing List <dev> |
Status: | RESOLVED FIXED | ||
Severity: | regression | CC: | matt.lavin |
Priority: | P2 | ||
Version: | 7.0.16 | ||
Target Milestone: | --- | ||
Hardware: | PC | ||
OS: | Linux |
Description
Craig Chaney
2011-06-30 14:10:50 UTC
Please provide a simple sample web application that demonstrates this issue.
Your snippet of web.xml is incomplete: I suspect that this issue depends on the <auth-method> that you are using.
(The Authorization header is used by Tomcat Ant tasks, and nobody reported that those were broken.)
> This has worked in older versions of Tomcat.
Which versions?
This looks like a regression due to the addition of the optional pre-authentication support. I should have a fix for this shortly. This has been fixed in 7.0.x and will be included in 7.0.17 onwards. (In reply to comment #3) > This has been fixed in 7.0.x and will be included in 7.0.17 onwards. Is this fix now available in the following SVN path? http://svn.apache.org/repos/asf/tomcat/tc7.0.x/tags/TOMCAT_7_0_17/ I would like to give it a try before 7.0.17 goes out. Thanks! The 7.0.17 was stopped, as was 7.0.18. 7.0.19 in currently in progress. You can build it from the tag or from http://people.apache.org/~markt/dev/tomcat-7/ WARNING: This is NOT an official ASF release. It is a release candidate for testing purposes only. |