Re: [jetty-users] Possible bug in 9.4 HttpServletResponse redirect?

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [List Home]

Re: [jetty-users] Possible bug in 9.4 HttpServletResponse redirect?

From: Silvio Bierman <sbierman@xxxxxxxxxxxxxxxxxx>
Date: Thu, 5 Jan 2017 21:19:33 +0100
Delivered-to: jetty-users@xxxxxxxxxxx
List-archive: <https://dev.eclipse.org/mailman/private/jetty-users>
List-help: <mailto:jetty-users-request@eclipse.org?subject=help>
List-subscribe: <https://dev.eclipse.org/mailman/listinfo/jetty-users>, <mailto:jetty-users-request@eclipse.org?subject=subscribe>
List-unsubscribe: <https://dev.eclipse.org/mailman/options/jetty-users>, <mailto:jetty-users-request@eclipse.org?subject=unsubscribe>
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:45.0) Gecko/20100101 Thunderbird/45.5.1



On 01/05/2017 07:53 PM, Simone Bordet wrote:

Hi,

On Thu, Jan 5, 2017 at 4:14 PM, Silvio Bierman
<sbierman@xxxxxxxxxxxxxxxxxx> wrote:

Hello all,

With Jetty 9.4 I experience failure of some code that used to work with
previous Jetty versions. But since I am unsure if my code is valid I want to
check here first.

My code is supposed to proxy an incoming request by forwarding it to another
server (using HttpURLConnection) and then pass back the result to the
response. In pseudo-code and somewhat simplified it does something like:

- forward all headers from HttpServletRequest#getHeaderNames +
HttpServletRequest#getHeaders via HttpURLConnection#addRequestProperty
- forward request body from HttpServletRequest#getInputStream to
HttpURLConnection#getOutputStream
- pass back all headers from HttpURLConnection#getHeaderFields to
HttpServletResponse#addHeader
- pass back response body from HttpURLConnection#getInputStream to
HttpServletResponse#getOutputStream
- HttpServletResponse#sendError(HttpURLConnection#getResponseCode)

Oh wow !

You cannot do that, and I'm surprised it even worked in Jetty 9.3 - it
probably only does because the content is small.

You want to set the response code *before* writing any content via
HttpServletResponse#setStatus().

The reason it does not work in 9.4.x is that we have cleaned up the
way we handle errors, that was pretty broken in 9.3.x (so I guess your
code was working because of a Jetty 9.3.x bug).

Have you considered using one of the many Jetty ProxyServlets, or at
least HttpClient instead of HttpURLConnection ?


Simone,

Thank you for the info. Sounds plausible, I will fix that. SosendRedirect clears everything, sets the status and then then Locationheader, I guess.

Yes, I have considered alternatives. But this is part of some inheritedlegacy code which I would prefer to change as little as possible. Infact, this has worked since the days of Jetty 4 so it as never under anysuspicion.


Thanks again,

Cheers,

Silvio

Follow-Ups:
- Re: [jetty-users] Possible bug in 9.4 HttpServletResponse redirect?
  - From: Simone Bordet

References:
- [jetty-users] Possible bug in 9.4 HttpServletResponse redirect?
  - From: Silvio Bierman
- Re: [jetty-users] Possible bug in 9.4 HttpServletResponse redirect?
  - From: Simone Bordet

Prev by Date: Re: [jetty-users] Possible bug in 9.4 HttpServletResponse redirect?
Next by Date: Re: [jetty-users] Possible bug in 9.4 HttpServletResponse redirect?
Previous by thread: Re: [jetty-users] Possible bug in 9.4 HttpServletResponse redirect?
Next by thread: Re: [jetty-users] Possible bug in 9.4 HttpServletResponse redirect?
Index(es):
- Date
- Thread

Breadcrumbs