[
https://issues.apache.org/jira/browse/HADOOP-9244?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13919791#comment-13919791
]
Haohui Mai commented on HADOOP-9244:
------------------------------------
+1 on moving towards servlet 3.0. Servlet 3.0 allows specifies {{HttpOnly}} and
{{Secure}} flags in the cookie, which is required by HADOOP-10379.
I agree that mixing servlet 3.0 and jetty 6 might confuse the developers, but I
think upgrading servlet and jetty can be independently addressed.
> Upgrade servlet-api dependency from version 2.5 to 3.0.
> -------------------------------------------------------
>
> Key: HADOOP-9244
> URL: https://issues.apache.org/jira/browse/HADOOP-9244
> Project: Hadoop Common
> Issue Type: Improvement
> Affects Versions: 2.0.3-alpha
> Reporter: Plamen Jeliazkov
> Assignee: Plamen Jeliazkov
> Priority: Minor
> Fix For: 3.0.0
>
> Attachments: HDFS-4422.patch
>
>
> Please update the servlet-api jar from 2.5 to javax.servlet 3.0 via Maven:
> <dependency>
> <groupId>javax.servlet</groupId>
> <artifactId>javax.servlet-api</artifactId>
> <version>3.0.1</version>
> <scope>provided</scope>
> </dependency>
> I am running a 2.0.3 dev-cluster and can confirm compatibility. I have
> removed the servlet-api-2.5.jar file and replaced it with
> javax.servlet-3.0.jar file. I am using javax.servlet-3.0 because it
> implements methods that I use for a filter, namely the
> HttpServletResponse.getStatus() method.
> I believe it is a gain to have this dependency as it allows more
> functionality and has so far proven to be backwards compatible.
--
This message was sent by Atlassian JIRA
(v6.2#6252)
