[
https://issues.apache.org/jira/browse/KNOX-3113?focusedWorklogId=963508&page=com.atlassian.jira.plugin.system.issuetabpanels:worklog-tabpanel#worklog-963508
]
ASF GitHub Bot logged work on KNOX-3113:
----------------------------------------
Author: ASF GitHub Bot
Created on: 26/Mar/25 09:40
Start Date: 26/Mar/25 09:40
Worklog Time Spent: 10m
Work Description: hanicz opened a new pull request, #1008:
URL: https://github.com/apache/knox/pull/1008
…opying the HSTS header if its already set
## What changes were proposed in this pull request?
[KNOX-3111](https://issues.apache.org/jira/projects/KNOX/issues/KNOX-3111)
introduced a bug. If the global settings for HSTS is set and the topology wide
setting is disabled the HSTS header is duplicated in case the proxied service
also adds its own header. This PR adds verification to the response header copy
method that checks whether this header is already set or not.
Also added `includeSubDomains` to the default global setting.
## How was this patch tested?
New unit tests
Manually tests
Issue Time Tracking
-------------------
Worklog Id: (was: 963508)
Remaining Estimate: 0h
Time Spent: 10m
> HSTS headers duplicated with global config
> ------------------------------------------
>
> Key: KNOX-3113
> URL: https://issues.apache.org/jira/browse/KNOX-3113
> Project: Apache Knox
> Issue Type: Bug
> Components: Server
> Affects Versions: 2.2.0
> Reporter: Tamás Hanicz
> Assignee: Tamás Hanicz
> Priority: Critical
> Time Spent: 10m
> Remaining Estimate: 0h
>
> HSTS headers duplicated if the global config is enabled, the topology wide
> config is disabled and the proxied service adds its own HSTS header.
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
