DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT <http://nagoya.apache.org/bugzilla/show_bug.cgi?id=24081>. ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND INSERTED IN THE BUG DATABASE.
http://nagoya.apache.org/bugzilla/show_bug.cgi?id=24081 Manually set 'Cookie' & 'Authorization' headers get discarded ------- Additional Comments From [EMAIL PROTECTED] 2003-10-30 08:35 ------- Hello Oleg, I have just taken a look at it. In combination with pluggable cookie policies, this patch provides everything I would need. Cookies can be set manually, with or without being extended by the cookies from the HttpState. Resolving clashes between manually set cookies and those in the state is the responsibility of whom who sets cookies manually. And someone who wants his cookie header to be removed automatically shouldn't set it in the first place :-) No, wait, there is one thing: RFC 2965 in section 3.3.4 (last paragraph before the note) specifies that cookies shall be sent in a defined order, those with more specific paths preceeding those with less specific paths. Considering the fuss of parsing manually set cookie headers, I wouldn't want this to be implemented by the HTTP Client. But that should at least be pointed out somewhere in the JavaDocs. In HttpMethod.{set|add}RequestHeader? cheers, Roland --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
