JDK-6360774 : IIS issue with multpile Cookie headers
- Type: Bug
- Component: core-libs
- Sub-Component: java.net
- Affected Version: 6
- Priority: P2
- Status: Resolved
- Resolution: Fixed
- OS: generic
- CPU: generic
- Submitted: 2005-12-08
- Updated: 2010-04-02
- Resolved: 2006-01-07
The Version table provides details related to the release that this issue/RFE will be addressed.
Unresolved : Release in which this issue/RFE will be addressed.
Resolved: Release in which this issue/RFE has been resolved.
Fixed : Release in which this issue/RFE has been fixed. The release containing this fix may be available for download as an Early Access Release or a General Availability Release.
To download the current JDK release, click here.
Unresolved : Release in which this issue/RFE will be addressed.
Resolved: Release in which this issue/RFE has been resolved.
Fixed : Release in which this issue/RFE has been fixed. The release containing this fix may be available for download as an Early Access Release or a General Availability Release.
To download the current JDK release, click here.
| Other | JDK 6 |
|---|---|
| 5.0u7Fixed | 6 b67Fixed  |
Description
The fix for CR: 5017051 causes cookies to be set for 401 Unauthorized responses, but the Cookie header has already been set for the initial request. Therefore 2 Cookie headers are being set. This causes a problem for some asp's running on IIS.
example:
telnet IIS_Server 80
Trying IIS_Server...
Connected to IIS_Server.
Escape character is '^]'.
GET /b.asp HTTP/1.0
Cookie: A=0; B=0
Cookie: A=0; B=0
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2005 09:53:06 GMT
Server: Microsoft-IIS/6.0
Content-Length: 585
Content-Type: text/html
You provide A: 0
<hr/>
You provide B: 0%2CA=0
<hr/>
Connection to 129.158.215.247 closed by foreign host.
where the code of b.asp is:
-------------
You provide A: <%=Response.Write(Request.Cookies("A"))%> <hr/>
You provide B: <%=Response.Write(Request.Cookies("B"))%> <hr/>
-------------
This may appear as a regression from 1.5
Comments
|