Re: RFR: 8326949: Authorization header is removed when a proxy Authenticator is set on HttpClient

2024-09-30 Thread Michael McMahon
On Sun, 29 Sep 2024 16:46:06 GMT, Michael McMahon wrote: > This fix relaxes the constraints on user set authentication headers. > Currently, any user set authentication headers are filtered out, if the > HttpClient has an Authenticator set. The reason being that the authenticator > is expected

Re: RFR: 8326949: Authorization header is removed when a proxy Authenticator is set on HttpClient

2024-09-30 Thread Michael McMahon
On Sun, 29 Sep 2024 18:29:27 GMT, Alan Bateman wrote: > Would there be any merit to adding something to > Builder.authenticator(Authenticator) to document the behavior? I don't know > if this would be an API note or impNote. I'm mostly wondering where a > developer might read about how/when it

Re: RFR: 8326949: Authorization header is removed when a proxy Authenticator is set on HttpClient

2024-09-30 Thread Daniel Fuchs
On Sun, 29 Sep 2024 16:46:06 GMT, Michael McMahon wrote: > This fix relaxes the constraints on user set authentication headers. > Currently, any user set authentication headers are filtered out, if the > HttpClient has an Authenticator set. The reason being that the authenticator > is expected

Re: RFR: 8326949: Authorization header is removed when a proxy Authenticator is set on HttpClient

2024-09-30 Thread Daniel Fuchs
On Sun, 29 Sep 2024 16:46:06 GMT, Michael McMahon wrote: > This fix relaxes the constraints on user set authentication headers. > Currently, any user set authentication headers are filtered out, if the > HttpClient has an Authenticator set. The reason being that the authenticator > is expected

Re: RFR: 8340326: Remove references to Applet in core-libs/security tests [v7]

2024-09-30 Thread Daniel Fuchs
On Fri, 27 Sep 2024 18:08:54 GMT, Justin Lu wrote: >> Please review this PR which removes usages of Applet within the corelibs >> tests. >> >> Most changes are removed comments/updated var names. The JBS issue lists >> more files than the ones included in this pull request, please see the >>

Re: RFR: 8326949: Authorization header is removed when a proxy Authenticator is set on HttpClient

2024-09-30 Thread Daniel Fuchs
On Sun, 29 Sep 2024 16:46:06 GMT, Michael McMahon wrote: > This fix relaxes the constraints on user set authentication headers. > Currently, any user set authentication headers are filtered out, if the > HttpClient has an Authenticator set. The reason being that the authenticator > is expected