-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Michael,
On 8/16/2011 4:42 PM, Zampani, Michael wrote: > I don't understand why it was ever present, though. Does anybody > know why you wouldn't want these headers on secure requests? The svn comment says "...to reduce the likelihood of issues when downloading files with IE.". Presumably, [MS]IE has "issues" with downloading files with those response headers. > Is there a separate way I'm supposed to configure Tomcat to add > these flags for secure requests? The only change was that the Authenticator's default value for securePagesWithPragma was changed from "true" to "false". Don't have an Authenticator <Valve> set up? Add one. - -chris -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iEYEARECAAYFAk5K2bYACgkQ9CaO5/Lv0PBDAwCfY/U+WFXO4rnZqztkSgV2/5el QYYAnj1qvQKWeNTmepid4Qhj9PG866Jd =ro3C -----END PGP SIGNATURE----- --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org