DO NOT REPLY [Bug 17884] - Multiple DIGEST authentication attempts with same credentials

2003-03-21 Thread bugzilla
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT . ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND INSERTED IN THE BUG DATABASE. http://nagoya.apache.org/bugzilla/show_bu

Re: Using appropriate credentials and state with multiple hosts

2003-03-21 Thread Oleg Kalnichevski
Chris No discussion, such solution would have security implications. However, it wouldn't be any less secure compared to the present implementation. It does look plausible just to extend the HttpState class with additional methods that would require host to be specified along the authentication r

Re: Using appropriate credentials and state with multiple hosts

2003-03-21 Thread Chris Brown
Wouldn't that create a *possible* security risk? For example, if we store the "admin" realm on www.apache.org, and then connect to another site with a realm deliberately named to "[EMAIL PROTECTED]", it could be sent the login credentials for the first site by HttpClient, and then this other site

Re: CRLF and Connection: close

2003-03-21 Thread Eric Johnson
Mike, I like the idea of a cap on the total number of connections as a configurable default. Perhaps HttpClient doesn't need to implicitly perform connection recycling on idle connections, but how about adding an explicit method on MultiThreadedConnectionManager that clients can call - somethi

RE: Using appropriate credentials and state with multiple hosts

2003-03-21 Thread Kalnichevski, Oleg
Just a quick follow-up to my previous posting. I think there is a solution to the problem of conflicting authentication realms that would allow us to retain compatibility with the existing code: Authenticator class should initially attempt to obtain appropriate credentials using a key in the fo

RE: Using appropriate credentials and state with multiple hosts

2003-03-21 Thread Kalnichevski, Oleg
Hi Chris As far as your first point is concerned, just bear with us for a short while. I am currently working on a patch that should address the problem. http://nagoya.apache.org/bugzilla/show_bug.cgi?id=17884 http://nagoya.apache.org/bugzilla/show_bug.cgi?id=17158 As far as your second point

Using appropriate credentials and state with multiple hosts

2003-03-21 Thread Chris Brown
Hi, I'm using HttpClient 2.0 alpha 3, and am trying to find out how to work with multiple hosts, sometimes with authentification, sometimes without, sometimes with NTLM. Some questions, hope should be easy to answer... 1.) Is there already some method to parse authentification headers to extrac

DO NOT REPLY [Bug 17884] - Multiple DIGEST authentication attempts with same credentials

2003-03-21 Thread bugzilla
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT . ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND INSERTED IN THE BUG DATABASE. http://nagoya.apache.org/bugzilla/show_bu

[PATCH] HttpParser.readRawLine

2003-03-21 Thread Kalnichevski, Oleg
The patch fixes RFC 822 non-compliant line termination problem reported by Carl A. Dunham Cheers Oleg Index: java/org/apache/commons/httpclient/HttpMethodBase.java === RCS file: /home/cvspublic/jakarta-commons/httpclient/src/java

[PATCH] HttpParser.readRawLine

2003-03-21 Thread Kalnichevski, Oleg
The patch fixes RFC 822 non-compliant line termination problem reported by Carl A. Dunham Cheers Oleg -Original Message- From: Carl A. Dunham [mailto:[EMAIL PROTECTED] Sent: Donnerstag, 20. März 2003 20:44 To: 'Commons HttpClient Project' Subject: CRLF and Connection: close First, let

DO NOT REPLY [Bug 17884] - Multiple DIGEST authentication attempts with same credentials

2003-03-21 Thread bugzilla
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT . ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND INSERTED IN THE BUG DATABASE. http://nagoya.apache.org/bugzilla/show_bu

connections on pool close unexpectedly

2003-03-21 Thread Sergio Berna
Hello, I am having problems with HttpClient 2.0-alpha3 when i try to pool it. After the first call to stablish a connection against a server i usually can work with the client for 1 minue requetsing new pages. But after that minute i think the connecion is been closed somehow because any new atte

DO NOT REPLY [Bug 17884] - Multiple DIGEST authentication attempts with same credentials

2003-03-21 Thread bugzilla
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT . ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND INSERTED IN THE BUG DATABASE. http://nagoya.apache.org/bugzilla/show_bu

DO NOT REPLY [Bug 17884] - Multiple DIGEST authentication attempts with same credentials

2003-03-21 Thread bugzilla
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT . ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND INSERTED IN THE BUG DATABASE. http://nagoya.apache.org/bugzilla/show_bu