https://issues.apache.org/bugzilla/show_bug.cgi?id=57180
Frank Kline <frank.kl...@gmail.com> changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|RESOLVED |REOPENED
Resolution|FIXED |---
--- Comment #5 from Frank Kline <frank.kl...@gmail.com> ---
Seems like this is still broken in 8.0.18. The check for a valid cors method is
gated by a check against HTTP_METHODS, which doesn't include PATCH.
Note there is an additional spec for the addition of PATCH:
http://tools.ietf.org/html/rfc5789
/**
* {@link Collection} of HTTP methods. Case sensitive.
*
* @see <a href="http://tools.ietf.org/html/rfc2616#section-5.1.1";
* >http://tools.ietf.org/html/rfc2616#section-5.1.1</a>
*
*/
public static final Collection<String> HTTP_METHODS =
new HashSet<>(Arrays.asList("OPTIONS", "GET", "HEAD", "POST",
"PUT",
"DELETE", "TRACE", "CONNECT"));
--
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org
