java - The Case of The Mysterious Content-Disposition Header -


our product includes flash application loaded swfobject. 1 customer, when accessing swf via https (but not http), flash player not load it.

i asked customer go directly url of swf file (rather wrapper page):

  • when via http, swf loads in browser.
  • when via https, ie7 presents him 'save file' dialog box. implies "content-disposition: attachment" header present in response. explain why swf isn't loading in flash player: security measure, not play swfs served header.

so, have couple of things i'm trying figure out:

  1. how can content-disposition header being sent server (rather being strange artifact of ie7)? user has ie7 @ disposal, , cannot use firefox, chrome, etc. ie7 doesn't include handy 'network' tab that's present in ie9's developer tools.

  2. assuming header present, how getting there? running tomcat 6. swf being served tomcat's default servlet. header appears present if https connector used, not if http connector used. tomcat configuration stock except enabling https connector.

on side note, don't trust flash's cache clearing. on machine under ie9, swf satisfied cache after explicitly clear browser cache , flash player's stored data: don't see request in fiddler, or in tomcat's access logs, swf loads in browser. missing here? customer accessing bogus cached version of swf?

edit: apparently 'clear cache' command in developer tools doesn't really clear cache. using standard method yielded expected results.

edit 2: tracing within tomcat indicates content-disposition header not set. don't know it's not being received browser, afaik browser connecting directly tomcat. seems odd browser-side behavior.

the issue had presence of following headers in response:

cache-control: no-cache pragma: no-cache

these being sent tomcat because page being protected security constraint (configured in conf/web.xml). these headers caused ie7 act 'content-disposition: attachment' header present.

my solution have customer add following configuration tomcat's conf/context.xml:

<valve classname="org.apache.catalina.authenticator.basicauthenticator" securepageswithpragma="false" />

this replaces headers with:

cache-control: private

...which should still fulfill goal of preventing proxies caching page, while working around ie's issues. based on solution found here:

http://daveharris.wordpress.com/2007/07/09/how-to-configure-cache-control-in-tomcat/

however, very-similar solution suppressed headers entirely. details of these attributes can found in tomcat docs here:

http://tomcat.apache.org/tomcat-6.0-doc/config/valve.html#basic_authenticator_valve/attributes


Comments

Post a Comment

Popular posts from this blog

c# - SharpSVN - How to get the previous revision? -

i trying find efficient way previous revision of file text comparison using sharpsvn. using (svnclient c = new svnclient()) { c.authentication.defaultcredentials = new networkcredential( configurationmanager.appsettings.get("svnserviceusername") , configurationmanager.appsettings.get("svnservicepassword") , configurationmanager.appsettings.get("svnservicedomain") ); c.authentication.sslservertrusthandlers += new eventhandler<svnsslservertrusteventargs>(authentication_sslservertrusthandlers); collection<svnfileversioneventargs> fileversioncollection = new collection<svnfileversioneventargs>(); svnrevisionrange range = new svnrevisionrange(0, this.hooks.revision); svnfileversionsargs args = new svnfileversionsargs(); args.retrieveproperties = true; args.range = range; foreach (svnchangeitem item in log.changedpaths) { string path = this.repositorypath + it...
Read more

c++ - Is it possible to compile a VST on linux? -

for class project i'm attempting write vst plugin backed cuda. current cuda workflow on linux box, i'd prefer compile , link there. according wikipedia , should possible (i couldn't find steinberg documentation relevant linux) can't find makefile or instructions on how build if aren't using xcode or visual studio. i'm vst 3 sdk doesn't support linux. when try compile plugin under linux, error: ./base/source/fatomic.cpp:39:30: fatal error: libkern/osatomic.h: no such file or directory this issue caused following code in "vst3 sdk/base/source/fatomic.cpp" #if mac #include <libkern/osatomic.h> #if mac_os_x_version_min_required > mac_os_x_version_10_4 #define native_atomic_type (volatile int32_t*) #else #define native_atomic_type (int32_t*) #endif #elif windows #include <windows.h> #endif but hope compiling under linux work vst sdk 2.4. reading. jvstwrapper seems run on lin...
Read more

url - Querystring manipulation of email Address in PHP -

i using third party application (email2http) send me emailid, body , message. unable retrieve email id due name appended on , enclosed < , >. here querystring getting. test.php?from=ajay+reddy &subject=cx&body=somebody when print variable in php returns name , not email id. $from = $_get['from']; echo $from; //output ajay reddy please suggest me how can emailid also. i dont want use post method due testing , debugging. it's working fine. forgot use htmlentities() in debugging.
Read more