[HTTPCLIENT-751] ProtocolSocketFactory to upgrade an unsecured connection to secured via TLS - ASF JIRA

XML

Word

Printable

JSON

Details

Type: New Feature
Status: Resolved
Priority: Minor
Resolution: Fixed
Affects Version/s: None
Fix Version/s: 5.4-alpha2
Component/s: None
Labels:
None
Environment:
Coded for Java 1.4.2, but interested parties should be able to make it work for less than that.

Description

HTTP allows a client to upgrade its connection from an unsecured one to a secured one via the Upgrade header. This protocol component implements a mandatory upgrade. From RFC2817, section 3.2:

>> OPTIONS * HTTP/1.1
>> Host: example.bank.com
>> Upgrade: TLS/1.0
>> Connection: Upgrade
>>

<< HTTP/1.1 101 Switching Protocols
<< Upgrade: TLS/1.0, HTTP/1.1
<< Connection: Upgrade
<<

– send and complete the TLS handshake
– server answers the original OPTIONS request

<< HTTP/1.1 200 OK
<< Date: Sun, 17 Feb 2008 17:23:35 GMT
<< Server: Apache
<< Content-Length: 0
<< Content-Type: text/plain
<<

My reason for developing this protocol socket factory was to support secure IPP over the standard IPP port.

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending

TLSProtocolSocketFactory.java
17/Feb/08 17:27
12 kB
Stephen O'Neil Butler

Issue Links

causes

HTTPCLIENT-2344 HTTP/1.1 TLS Upgrade (RFC-2817) should not be default

Resolved

depends upon

HTTPCORE-158 Support for 'Upgrade' request header / 101 (Switching Protocols) response (as defined per RFC 2817)

Resolved

Activity

People

Assignee:: Unassigned

Reporter:: Stephen O'Neil Butler

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 17/Feb/08 17:26

Updated:: 24/Sep/24 14:48

Resolved:: 29/Jan/24 13:16

Time Tracking

Estimated:

Not Specified

Remaining:

Logged: