after a couple of weeks reading a myriad of posts, mailing lists and posible solutions, I came up with a solution that worked for me
I developed a web application using wicket, this application have some links to a static resources, specifically pdf and excel files, (License Agreements, Privacy Policies, etc.), when I started to use SSL, none of these static resources could be viewed in IE, (others browsers work fine), this is due to an "IE feature", (in Microsoft words, by design, weird behavior by design), that makes the resource unavailable through SSL. I needed a general solution that could be applied to all the posible static resources in my application, so, I came up with a filter that intercepts all the requests for those static resources, (pdf, xls, etc), and set the apropriate headers to avoid the problem with IE, after try a zillion combination of headers, (pragma, content-cache, expiration, etc, none of them worked for me), I found a solution, just use the response.reset() method and voila that's all this is a reduced version of the filter I came up with, for the sake of brevity. <pre> public class HttpsHeaderFilter implements Filter { private FilterConfig config = null; public void init(FilterConfig config) throws ServletException { this.config = config; } public void destroy() { config = null; } @Override public void doFilter(ServletRequest request, ServletResponse response, FilterChain chain) throws IOException, ServletException { response.reset() ; chain.doFilter(request, response ); } } </pre> and in the web.xml, I configured the url for the appropiate resources I wanted to filter. I think that the reset could work better after the doFilter() call, (I'm going to test that). as I told before, I even tried to set the headers in the filter but it didn't work either. at the end it came out in the simplest way . lol. Hope it helps to save some time and sleep hours to somebody else, I spent quite a few of mine working around Microsoft's "design" . -- View this message in context: http://www.nabble.com/Wicket-Application-bypassing--Internet-Explorer-file-downloads-over-SSL-do-not-work-with-the-cache-control-headers%E2%80%8F-tp22519881p22552462.html Sent from the Wicket - User mailing list archive at Nabble.com. --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@wicket.apache.org For additional commands, e-mail: users-h...@wicket.apache.org