RFR: 8328638: Fallback option for POST-only OCSP requests
Sean Mullan
mullan at openjdk.org
Thu Mar 21 20:20:20 UTC 2024
On Wed, 20 Mar 2024 19:48:52 GMT, Aleksey Shipilev <shade at openjdk.org> wrote:
> See the rationale/discussion in the bug. This patch introduces the option that allows to restore pre-[JDK-8179503](https://bugs.openjdk.org/browse/JDK-8179503) behavior. The default behavior does not change. Better suggestions for flag name are welcome.
>
> Additional testing:
> - [x] `jdk_security` passes out of the box (includes new test config)
> - [x] `jdk_security` passes with flag override
> - [x] Eyeballing `GetPostTests` amended debugging output, `GET`-s are used by default for small requests, `POST`-s are used for everything with flag override
Thanks for doing this - I think it is a fine idea to have a fallback option to use GET. It does need a CSR though since you are introducing a new system property.
-------------
PR Comment: https://git.openjdk.org/jdk/pull/18408#issuecomment-2013649890
More information about the security-dev
mailing list