[JSPWIKI-1071] Ajax request header 'Connection' forbidden since 2015 - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Closed
Priority: Major
Resolution: Fixed
Affects Version/s: 2.10.4
Fix Version/s: 2.10.5
Component/s: Templates and UI
Labels:
None

Description

Since 2015, for security reason, it is no more accepted for Ajax request to set the Connection HTTP header.

Unfortunately, the Ajax in JSPWiki uses this deprecated and forbidden feature
For example, in the on-fly preview of a page edition. So any Ajax requests from JSPs are blocked by the current web browser.

This affect all versions

Attachments

Activity

People

Assignee:: Dirk Frederickx

Reporter:: Miguel Moquillon

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Dates

Created:: 04/Jun/18 15:27

Updated:: 15/Nov/21 13:49

Resolved:: 05/Jun/18 20:47