ProtocolException: Bad Set-Cookie header

Similar Messages

• Whats happening to my set-cookie header?

  I'm writing a desktop client for a Django app running on an https domain.
  I'm attempting to retrieve cookies set by the django site when I call the site using URLRequest as follows:
  var urlVariables = new air.URLVariables();
  urlVariables.foo = "bar"
  var request = new air.URLRequest("https://www.example.com/api/foo/");
  request.data = urlVariables;
  request.method = air.URLRequestMethod.POST;
  var loader = new air.URLLoader();
  loader.addEventListener(air.HTTPStatusEvent.HTTP_RESPONSE_STATUS, httpStatusHandler);
  loader.addEventListener(air.Event.COMPLETE, completeHandler);
  loader.addEventListener(air.IOErrorEvent.IO_ERROR, ioErrorHandler);
  loader.load(request);
  However if I loop over the headers returned by the site like so...
  function httpStatusHandler(event){
      for(var i=0; i<event.responseHeaders.length; i++){
         air.trace(event.responseHeaders[i].name);
  ...I discover that that the Set-Cookies header is conspicuously absent.
  Is this a deliberate security restriction for calls to HTTPS sites? I'm completely baffled.
  Any help appreciated.

  Go into the System Preferences and click on Users & Groups. Try creating a new user account and then log into it to see if you have the same issues. Since your hard drive appears to be fine with plenty of space on it, and you have no major permission's issues, creating a new user for test purposes will help confirm whether you are dealing with some sort of software issue. Did you recently install some new software?
  If a new user account resolves the issue then open the Activity Monitor application located in the Applications/Utiliteis folders and click on the CPU button. In the lower left corner you should see a summary listing the % User, % System, % Idle. What are these percentages? If the CPU idle percentage is near zero then you have a process running that is consuming your SPU time. To try and find it pull down the menu to select 'All Processes', then click on the %CPU column to sort by the percent that each process is consuming your CPU.   The numbers constantly change, but do your best to see if there are one or two processes consuming the majority of the CPU time and post the names. Then do the same test in the new user account. I suspect you may have some process from a previously installed utility, virus checker, etc. that is keeping your system busy. I've included a screenshot from my system below. It doesn't have much going on, and as you can see in the lower left corner the CPU is basically idle most of the time. If I were to launch a CPU intensive app the numbers would change dramatically.

• HTTPURLConnection response with multiple Set-Cookie Header key

  I set up a connection to a server and it gives me a response. This response has two header keys but when I loop through like so many reference and how-to sites tell me I only get one and its the last value.
  This is some code that I'm using:
  for (int i=1; (headerName = conn.getHeaderFieldKey(i))!=null; i++) {
       System.out.println(headerName);
       if (headerName.equals("Set-Cookie")) {                 
                   cookie += conn.getHeaderField(i);   }           
       }Has anyone attempted this successfully? This code was copy and pasted from an example claimed to work but I used it myself and it doesn't work.
  This is the response message:
  HTTP/1.1 302 Moved Temporarily
  Date: Mon, 16 Feb 2009 03:47:47 GMT
  Server: Apache
  Set-Cookie: JSESSIONID=E7C54E0ECE8CCFD89EF91FF8A47E34BC; Path=/
  Location: http://<SITEURL>/redirecting.jsp
  Content-Length: 0
  P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE PSA"
  Keep-Alive: timeout=15, max=15
  Connection: Keep-Alive
  Content-Type: text/html;charset=ISO-8859-1
  Set-Cookie: BIGipServerI2O_pool_A=1815557130.20480.0000; path=/

  I just read in the Bug database that this is a JDK 1.4 bug, with no workaround proposed. I am using JDK 1.3.
  Does anyone out there know about a workaround or what other scheme I could use to do the same thing? (For me it's necessary to set at least the User-Agent and the Cookie headers).

• IWS 4.1 Set-cookie

  Hi all
  The "IWS 4.1 SP5" http header response is:
  HTTP/1.1 200 OK
  Server: Netscape/Enterprise/4.1
  Date:
  Set-cookie:
  In our system, the "Set-cookie" header needs to be "Set-Cookie", with "C" instead of "c"
  Is there any configuration file or similar where we can change this header?
  Thank you very much
  R&F

  No, there is no configuration option to change the case of the HTTP header fields generated by the server. Note that the HTTP specification requires that clients treat "Set-cookie" and "Set-Cookie" as equivalent.

• Set-cookie cache

  Hi All,
  If we develop the set-cookie using NSAPI on Proxy Server 4.0.2, the proxy server cache the following information.
  Request Headers
  content-length     =     165
  content-type     =     text/html
  status     =     200 OK
  Set-cookie     =     CTSESSION=AAewewedwewewew; domain=.cc.company.net; path=/
  server     =     Sun-ONE-Web-Server/6.1
  date     =     Tue, 24 Jan 2006 11:45:57 GMT
  last-modified     =     Wed, 18 Jan 2006 04:27:28 GMT
  etag     =     "a5-43cdc3b0"
  accept-ranges     =     bytes
  via     =     1.1 proxy-proxy402
  proxy-agent     =     Sun-Java-System-Web-Proxy-Server/4.0.2
  How to avoid this "Set-cookie" on cache of Proxy Server?
  regards;
  Tash

  Cannot reproduce this issue. Tried the following with 4.0.2 proxy server:
  1. Origin server sends the following response with "Set-cookie" header,
  HTTP/1.1 200 OK
  Content-length: 34
  Content-type: text/html
  Server: Sun-ONE-Web-Server/6.1
  Date: Fri, 27 Jan 2006 06:34:49 GMT
  Set-cookie: "CTSESSION=AAewewedwewewew; domain=.cc.company.net; path=/"
  Last-modified: Fri, 27 Jan 2006 06:33:33 GMT
  Etag: "22-43d9bebd"
  Accept-ranges: bytes
  Via: 1.1 S1PS
  Via: 1.1 proxy-server1
  Proxy-agent: Sun-Java-System-Web-Proxy-Server/4.0.3
  iPlanet File.
  iPlanet web server.
  2. Proxy server caches the document but without the "set-cookie" header. Following is the contents of the cached file:
  11556FFE46101FC41D     1     1138323813     0     1138323889     34
  text/html     http://dummy.com:8080/myfile8.html0014content-length0002340012content-type0009text/html0006status0006200 OK0006server0022Sun-ONE-Web-Server/6.10004date0029Fri, 27 Jan 2006 06:34:49 GMT0013last-modified0029Fri, 27 Jan 2006 06:33:33 GMT0004etag0013"22-43d9bebd"0013accept-ranges0005bytes0003via00081.1 S1PS0003via00171.1 proxy-server10011proxy-agent0038Sun-Java-System-Web-Proxy-Server/4.0.3^M
  iPlanet File.
  iPlanet web server.

• How to deal with the "Set-Cookie" field in HTTP header??

  I follow the RFC-2616 specification to write a socket program to fetch web pages.
  I have to deal with all the fields included in the HTTP header.
  But the RFC-2616 doesn't talk anything about the "Set-Cookie" field.
  Does anyone know how to handle this field or provide me any useful documentation.
  Any help is appreciated.

  A cookie is set with the "Set-Cookie: "-field in the http header, like this:
  Set-Cookie: mycookie=someValue
  This cookie should only be returned to the same host as it came from, like this in the http header of a request:
  Cookie: mycookie=someValue
  If the parameter looks like this:
  Set-Cookie: mycookie=someValue; path=/cgi-bin
  , the cookie should only be returned to the host if the request path starts with /cgi-bin
  If the parameter looks liek this:
  Set-Cookie: mycookie=someValue; domain=.mydomain.com
  , the cooke should be returned to all hosts in the .mydomain.com-domain
  There is also a "expires="-field, which works as expected and a "secure"-field, which I'm not sure how to handle. Maybe the cookie should only be sent to an SSL-enabled host?
  Hope this helps you. Bye,
  Dag W.

• How to set HTTP header field "cookie" with http receiver adapter?

  Hi,
  I am using http receiver adapter (not axis) in a scenario. I could not set a parameter with key cookie in http header. Is there some kind of restriction to set it? I am able to set others like connection and create custom fields using ASMA and dynamic key configuration via UDF on mapping.
  Could you please comment on, is cookie http parameter special or noneditable by PI's http adapter? I am looking for a solution without editing any abap code...
  Regards,

  I believe it is possible since axis adapter provides very same functionality. Let me summarize my scenario may be it helps:
  I am trying to call series of webservice lets say in a BPM. First service (login service) will provide me with a session id (in http header with key Set-Cookie) then I will call another service which has that session id in its http header with key cookie then I am going to logout. So I am testing the second part now, but it doest let me send cookie http header parameter.
  I hope I clarified a bit more my problem.
  Regards,

• OSB called stateful service & extracting Set-Cookie Transport header

  I need to call a Stateful Web service which returns a JSessionId (Set-Cookie) which I need to use to subsequent service calls. In my message flow, a service callout calls a web service which returns a JSessionId which is part of the Transport Header. I need to extract this value into a variable and use it to call a couple of other web service calls using Service callouts. I have tried numerous things listed below but failed
  1)     In the service callout Response actions, I have added a Transport header to capture this into a variable but in vain
  2)     Added a Transport header in the Response action on the main pipeline
  3)     Used Inbound variable to extract however it turns up empty.
  any useful ideas would be appreciated. Thanks

  When you call the external service it returns a SessionID in the header?
  If that is the case then test the service from sbconsole debug console and in the invocation trace check the value of $inbound variable within the context of service callout and check if external service has actually added a transport header for session ID.

• How to  get rid of "Content-type: text/html; charset=UTF-8 Set-Cookie..." ?

  Hi
  I have several applications and I am working on making some kind of APEX "SSO".
  An user is authentified in one application. Then he may go to another application. The cookie has the same name from one application to another. The session ID is preserved from one application to another : i use this kind of URL : "f?p=109:1:&SESSION.:"
  I have seen that I need to authentify automatically the user when he swap to another application. For that i have a process in the welcome page that authentify the user, using the :app_user and the password, a PL/SQL after header:
  wwv_flow_custom_auth_std.login(
      P_UNAME       => :APP_USER,
      P_PASSWORD    => :P1_PASSWORD,
      P_SESSION_ID  => v('APP_SESSION'),
      P_FLOW_PAGE   => :APP_ID||':1'
      );So far so good. User is authenticated. The problem I face is that this message appears :
  Content-type: text/html; charset=UTF-8 Set-Cookie: TELEGESTION_AUTH=-1; path=/; Location: /pls/apex/f?p=109:1How to get rid of this message ?
  Thank you for your kind help !
  Christian
  PS: My question has not been answered... I hope somebody could help me on this topic.
  Edited by: Christian from France on Mar 4, 2010 2:02 AM

  Hi
  Have you tried using "f?p=109:1:&APP_SESSION.:" instead of "f?p=109:1:&SESSION.:".
  I don't see why you need to reauthenticate if they're in the same workspace?
  Cheers
  Ben

• Getting "Set-Cookie" from response message

  Hello XI SDN'ers,
  I am calling an external webservice through my "SOAP (Axis)" adapter and I am getting the response. The response header looks like this:
  HTTP/1.1 200 OK
  Server: Apache-Coyote/1.1
  X-Powered-By: Servlet 2.4; JBoss-4.0.5.GA (build: CVSTag=Branch_4_0 date=200610162339)/Tomcat-5.5
  Set-Cookie: JSESSIONID=4DF8F0B8FAF5A1F2D7EE6A0110A33E70; Path=/
  Content-Type: text/xml;charset=utf-8
  Date: Mon, 26 May 2008 10:07:58 GMT
  Connection: close
  I want to get this "Set-Cookie" from my initial "Login" response and set the cookie in further "Synchronous Request" so that I won't loose my sessions.
  so I wrote my UDF to get this SetCookie:
  DynamicConfiguration conf = (DynamicConfiguration) container
      .getTransformationParameters()
      .get(StreamTransformationConstants.DYNAMIC_CONFIGURATION);
  DynamicConfigurationKey key = DynamicConfigurationKey.create(
  paramNamespace, paramName);
  String value = conf.get(key);
  return myString;
  but I am getting "Null" value.
  Please correct me to get "Set Cookie" value from my response!
  Thanks & Regards,
  Satish.

  Hi,
  Check this URL for more clarification:
  help.sap.com/saphelp_nw70/helpdata/en/a6/10b98ae47ef14799a918db66ee9477/content.htm - 34k
  https://www.sdn.sap.com/irj/sdn/go/portal/prtroot/docs/library/uuid/b092777b-ee47-2a10-17b3-c5f59380957f
  Thanks,
  Boopathi

• Sending "Cookie" header  with JRE 1.5.0_07 doesn't work with JWS

  Hi
  I have a JWS application that runs from JRE 1.4.0_XX to JRE 1.5.0_06
  The app sends a "Cookie" header to our webserver
  HttpURLConnection tc = (HttpURLConnection)repository.openConnection();
  tc.setRequestProperty("Cookie", "GLINK=TOKENID");
  Now this has worked thru 20 different runtime versions since 1.4.0_xx until JRE 1.5.0_07 was released. My code has remained unchanged for 3 years. And with JRE 1.5.0_07 the "Cookie" header is simply gone in the webserver or never sent at all. The changelog for 1.5.0_07 only has a rough description of what has changed. I can see that SUN has made som changes to class HttpUrlConnection in 1.5.0_07 by comparing class files against 1.5.0_06 and apparently disturbed som funtionality that worked before. Other headers are received but not the "Cookie" header. If the application is executed without JWS, for example with Eclipse or Jbuilder, the "Cookie" header is received by the web server and all other headers as well.
  Any ideas what SUN has done in 1.5.0_07 and JWS ?? and more specifically in class URLConnection or HttpURLConnection.
  Here is some code example to test the issue:
  Run this code with and without Java Web Start
  With JWS, the "Cookie" header is never received by the server.
  without JWS, the header value is reveived.
  import java.net.*;
  import java.io.*;
  public class HTTPTest
  public static byte[] crLfArr = {13,10};
  public static String contenttype_ = "text/plain";
  public static BufferedReader retval = null;
  public static void main(String[] args) throws IOException
  int tecken = (int)'X';
  String boundary = "12345xyzzy";
  URL repository = new URL("http://myserver");
  URLConnection tc = (URLConnection)repository.openConnection();
  tc.setDoOutput(true);
  tc.setDoInput(true);
  tc.setAllowUserInteraction(false);
  tc.setRequestProperty("Content-Type"," multipart/form-data; boundary=" + boundary);
  tc.setRequestProperty("Cookie", "GLINK=TOKENID");
  OutputStream out = tc.getOutputStream();
  printPartHeader(out, boundary, "filtag" , "filnamn");
  out.write(tecken);
  printEndBoundary(out,boundary);
  out.close();
  retval = new BufferedReader(new InputStreamReader(tc.getInputStream()));
  public static void printEndBoundary(OutputStream out, String boundary) throws IOException
  String str;
  str = "--" + boundary + "--";
  out.write(str.getBytes());
  out.write(crLfArr);
  out.write(crLfArr);
  public static void printPartHeader(OutputStream out,
  String boundary,
  String field,
  String filename) throws IOException
  String str;
  printBoundary(out,boundary);
  str = "Content-Disposition: form-data; name=\"" + field + "\"";
  out.write(str.getBytes());
  if (filename.length() > 0) {
  str = "; filename=\"" + filename + "\"";
  out.write(str.getBytes());
  out.write(crLfArr);
  str = "Content-Type: " + contenttype_;
  out.write(str.getBytes());
  out.write(crLfArr);
  out.write(crLfArr);
  public static void printBoundary(OutputStream out, String boundary) throws IOException
  String str;
  str = "--" + boundary;
  out.write(str.getBytes());
  out.write(crLfArr);
  Regards
  Jojje

  Hi,
  I decompiled the HttpURLConnection implementation in question from the rt.jar file. I do not think that you can find the source code for these SUN-specific implementations anywhere (except maybe through the new Java 6.0 collaboration process).
  JAD did the trick.
  For the standard classes (packages java.*, javax.*), I think that the most current source code is included in the corresponding JDK download.
  As to the JWS vs. standalone effect, I do not know what happens there.
  Maybe Java uses a different HttpURLConnection implementation when running as a standalone application?
  For our applet, the problem is definitely there. The cookie header was set but already removed when the CookieHandler method was called.
  The trouble is, that our applet can operate multiple independent sessions (with different session-ids), so a global CookieHandler is not an option. The only reason why I previously had to implement my own CookieHandler implementation in 1.5 was in order to remove unwanted Cookies which were otherwise inherited from the browser session by the CookieHandler�s applet default implementation.
  I also entered a bug report (on Wednesday already)...
  regards,
  Gunnar

• Acess "set-cookie" and set later in lookup in UDF?

  Hello Experts,
  I' have a senario where I need to get a session ID in order to handle a series of web service request. Therefore I have written a UDF in the mapping where the first method (as login message) where I get a login key as payload and the session-id in the response header. This session Id then needs to be set before several other calls within the same udf are made to the webservice. We are not able to use the Axis-adapter and therefore have to use the normal SOAP-adapter.
  My question now is, is there any way to access the header of the first response message? I need to read the returned session-id and then write it to the other requests. Any idea?
  regards
  Christian

  Hi Mark,
  for sure I can post the UDF. This UDF that I have written is a generic UDF that I call from several other UDF's where ever I need to create a lookup:
  AbstractTrace trace = container.getTrace();
  String returnValue = "";
  try {
    Channel channel =  LookupService.getChannel(party,communicationComponent, communicationChannel);
    SystemAccessor accessor = LookupService.getSystemAccessor(channel);     
    InputStream inputStream = new ByteArrayInputStream(requestXMLString.getBytes());
    XmlPayload payload = LookupService.getXmlPayload(inputStream);
    Payload SOAPOutPayload = null;  
    /*The SOAP call is made here and the response obtained is in the SOAPOutPayload.*/     
    SOAPOutPayload = accessor.call(payload);   
    /* Parsing the Returnvalue     */
    InputStream inp = SOAPOutPayload.getContent();     
    DocumentBuilderFactory factory = DocumentBuilderFactory.newInstance();   
    /* Build DOM Structure for Input XML */     
    DocumentBuilder builder = factory.newDocumentBuilder();     
    Document document = builder.parse(inp);  
    /* Set the XML-Tag for the Response  */     
    NodeList list = document.getElementsByTagName(requestXMLValueTag);
    Node node = list.item(0);     
    if (node != null)
     node = node.getFirstChild();
     if (node != null)
      returnValue = node.getNodeValue();          
  } catch (Exception e)
    trace.addWarning("Error" + e);
  return returnValue;
  So within this function I need to access the set-cookie and then set it accordingly. If have you have any suggestions I'm very happy to hear about it.
  I don't think that I can use your link that you posted as I don't have a URLConnection-Object
  Can you show us your UDF? Maybe this blog can help:
  Simple Way to Get HTTP Response Header in Java • Crunchify
  regards
  Christian

• IE not set cookie for downloaded js file.Why?

  I'm trying to  download a js file from a different domain  like main page  is from  www.abc.com but js file is from www.def.com. www.def.com sets a cookie . All major browsers get the cookie and sends it in the other requests to www.def.com.But
  IE sends this cookie to www.abc.com. Cookie has also domain field set www.def.com. Any possible solution?

  How, specifically, is the cookie set?
  When you use document.cookie to set a cookie, ALL BROWSERS set the cookie in the domain in which the script runs (e.g. the page that includes it). NO BROWSERS set the cookie in the domain from which the script downloaded.
  When you use a SET-COOKIE response header to set a cookie, MOST browsers set the cookie in the domain from which the download occurs. Internet Explorer will IGNORE that cookie (not setting it anywhere) unless a P3P statement is supplied. See
  http://blogs.msdn.com/b/ieinternals/archive/2013/09/17/simple-introduction-to-p3p-cookie-blocking-frame.aspx

• Payables Open Interface Import pass distribution set for header?

  Hi all,
  i'm using OEBS 12.1.3. I want to insert data into payables interface tables to create invoice via back-end. Is it possible to pass data for the DISTRIBUTION SET on header level? I searched in the table AP_INVOICES_INTERFACE but no such column founded. I'm able to pass info for the distribution on the line level...
  Any ideas?
  Thanks in advance,
  Bahchevanov.

  The before report trigger error does occur for n number of reasons...some of the solutions could be
  1. Setting up the debug/summarized params to Y or
  2. Two payables open interface import programs running at the same time and due to non-incompatibility setups, one of them is getting errored out. Try setting up incompatibility and this error will go away - the only problem with this approach is that if this program needs to run on frequent basis, then one will wait on other to complete and consume lot of time.
  3. Try to increase threads of concurrent manager under which this program runs for better resouce management.
  4. Check the normal AP side setups such as tax code definition, supplier site 'pay site flag' etc --Although before report error occurs at the place in rdf where these checks are yet not done but thought to share with you if it helps
  Thanks
  Girish

• How to set the header variables in weblogic

  Hi,
  We have a following set up in our environment.
  We have weblogic and on the top of it we have apex listener deployed which redirects Oracle Apex.
  My Issue:
  How can we set up the header variables in weblogic once the user is authenticated against weblogic server.
  We are struck here, not knowing how to set the header variables in weblogic server. Its fairly straight forward for Oracle Access Manager or others..
  Thanks
  Ramesh P.

  maybe you are looking for the routing options
  http://docs.oracle.com/cd/E13159_01/osb/docs10gr3/userguide/modelingmessageflow.html#wp1125348