[Bug 69439] New: ExpiresFilter - improper handling of conflicting cache-control directives

bugzilla Mon, 11 Nov 2024 22:27:49 -0800

https://bz.apache.org/bugzilla/show_bug.cgi?id=69439


            Bug ID: 69439
           Summary: ExpiresFilter - improper handling of conflicting
                    cache-control directives
           Product: Tomcat 10
           Version: 10.1.33
          Hardware: PC
            Status: NEW
          Severity: normal
          Priority: P2
         Component: Catalina
          Assignee: [email protected]
          Reporter: [email protected]
  Target Milestone: ------

Since multiple Cache-Control headers are allowed (via #addHeader), then
conflict may happen.

Currently ExpiresFilter pickup the first-added cache-control header as the
effective field, cause follow-up directives (like no-store or max-age) to be
ignored.

rfc9111 - 4.2.1 - If directives conflict (e.g., both max-age and no-cache are
present), the most restrictive directive should be honored.

-- 
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

[Bug 69439] New: ExpiresFilter - improper handling of conflicting cache-control directives

Reply via email to