in asp there's an Application object, which is like the Session but it's shared among all sessions... http://msdn.microsoft.com/en-us/library/ms525360.aspx You can use the Application object to share information among all users of a given application. An ASP-based application is defined as all the .asp files in a virtual directory a...
I have an application that sends a report path and parameter collection to a Microsoft Reporting Services server. One of these reports is very long running and when users try to generate reports within a few seconds of one another, one will receive a duplicate of the report requested by the second user. This doesn't happen as a glitch,...
I thought that the only way to intercept a request is to use a proxy, but fiddler somehow can intercept HTTP requests and responses without configuring anything on any browsers. What's going on under the hood ? And do you know any library to do that ? (In any languages) ...
Applications on Google App Engine must have web requests that return response data within 30 seconds. When this time is exceeded, a DeadlineExceededException exception is thrown: /time.jsp java.lang.ClassCastException: com.google.apphosting.api.DeadlineExceededException cannot be cast to javax.servlet.ServletException at org.apache....
There're many ways to write an HTTP-status header: HTTP/1.1 404 Not Found Status: 404 Status: 404 Not Found but which is the semantically-correct and spec-compliant way? Edit: By status headers I mean this, using a function such as PHP's header(). ...
in asp there's request.form and request.queryString attributes, but in java it seems like we have only one collection, which can be accessed via request.getParamaterMap, getParametersNames, getParameterValues, etc... is there some way to tell which values have been posted nd which ones have been specified in the url? -- ps: what I'm...
I'm returning an UTF-8 XML response and some elements have user provided content, so I must ensure they are properly escaped. Is using htmlspecialchars(..., ENT_COMPAT, 'UTF-8') enough for a proper escape of an XML element text? ...
I have found the following asp.net code to be very useful when serving files from a database: Response.AppendHeader("content-disposition", "attachment; filename=" + fileName); This lets the user save the file to their computer and then decide how to use it, instead of the browser trying to use the file. What other things can be done ...
In response to this, what are the security considerations when using the content-disposition HTTP header? ...
I'm currently working on a project that does a lot of HTTP requests for data that it needs. It works by writing all the data into a buffer, then returning that buffer to the caller. It seems that waiting for the entire file to download data that can essentially streamed is a bad idea. Question 1: Is there already a library / public code...
As a relative newbie in the Java world, I am finding many things frustratingly obtuse to accomplish that are relatively trivial in many other frameworks. A primary example is a simple solution for asynchronous http requests. Seeing as one doesn't seem to already exist, what is the best approach? Creating my own threads using a blocking t...
I manage a system for academic software projects which, as well as other things, allows projects to provide web pages integrated with an instance of the Trac bug tracker / wiki / source browser. The idea is that the users have freedom to design their main pages as they like (they really like that), but with some convenience/branding feat...
I have a dev server in our office that is behind the firewall. The hostname is franklin. We name all our servers after scientists or inventors. When I set an HTTP cookie: Set-Cookie: user=kenny; expires=1245424860.11; Path=/; domain=franklin The cookie doesn't set. I have tried the following with no luck. .franklin .franklin.loc...
For security, requests to a PHP webservice will require a Date: header. I need to calculate if the Date: header is within 15 minutes of the computer clock. I can easily do this by comparing $dt = new DateTime($_SERVER['HTTP_DATE']); to the actual date. However, strotime also supports formats such as "now", which will always be 'valid...
For a long time I've been not happy with the behavior of Google in the cases below, and after accidentally noting that 80+ other people feel the same way (and 20+ people upvote the idea of Google bug report) I thought it's useful to tap into SO's wisdom on HTTP protocols and the web culture. This behavior appears every time I go to a d...
Hello, I use the API with HTTP POST to create a wiki page in a Mediawiki (1.14): I require an edit token It works, I get a fresh token (example: d96d72fae5e6c43b0b9f63d82ace366) I send the HTTP POST for creating a new site with my new token (sth. similar to "d96d72fae5e6c43b0b9f63d82ace366+\" I get an error message "Invalid Token" ...
Some phones only prompt the user for permission the first time a connection is made. Others pop up the permission prompt whenever the MIDlet attempts to make a HTTP connection! What are the options if we want to suppress the prompt? Can we sign the JAR using only one CA (Certificate Authority) and have it work on all devices? Do we have...
I need to transfer data from a PHP script on my local server to a remote API (also written in PHP) on my hosting server. It is basically a primitive version control system, and I use both HTTP GET and HTTP POST to transfer files and strings. I would like the connection encrypted, but my (shared) web host tells me I can't use SSL because...
As far as I'm concerned, Ajax provides a workaround for behaving like connection-oriented with HTTP protocol. But why wasn't HTTP protocol designed to be connection-oriended at first? ...
Do you know of any practical use of If-Unmodified-Since in the wild? From the description, it appears that this header was meant to help with avoiding dirty writes. i.e. update this resource only if it hasn't been modified since the last-modified-time available with client. Unlike If-Modified-Since, it doesn't seem to help with caching. ...