spring-cloud-dataflow icon indicating copy to clipboard operation
spring-cloud-dataflow copied to clipboard
verified publisher icon spring-cloud

The authorization header was not dropped by redirect strategy as expected.

Open corneil opened this issue 1 year ago • 2 comments

Edit: Discovered that RedirectStrategy was change from Apache HTTP Client 4 -> 5. The change meant header changes were not possible. I copied to RedirectExec interceptor / chain handler and modified it to use the modified request instead of the original request to create a request builder.

corneil avatar Oct 15 '24 12:10 corneil

This is on the mailing list here w/ 3 options.

onobc avatar Oct 16 '24 21:10 onobc

This is on the mailing list here w/ 3 options.

I will look into a chain handler that strips the header if I can consistently figure out that we are handling a redirect.

corneil avatar Oct 16 '24 22:10 corneil

Using a client that supports request changes on redirect is a better option than a custom redirect handler.

corneil avatar Oct 24 '24 15:10 corneil