Tomcat 6 disableProxyCaching with no authentication

Question

I have an application running on Tomcat 6, that (from Tomcat perspective) doesn't have any authentication. Also, it needs to run over SSL. Last, one of the pages allows you to save an Excel file. Saving file fails with an error described here: Pragma No-Cache prevents the file from being saved, and then browser complains about connection lost. This happens on IE 7 and 8; doesn't happen in Firefox or IE 9 (unfortunately most of the users have IE7).

Tomcat has attributes disableProxyCaching and securePagesWithPragma that work around caching issues in some browsers however, these are attributes for various authenticator valves.

My question is, how can I prevent Tomcat from adding a Pragma: no-cache header when there is SSL, but no authentication?

EDIT: I tried nonloginauthenticator valve - but it doesn't seem to make any difference, and I don't see it in Tomcat 6 configuration administration anyway (although I see it in APIs)

score 1 · Accepted Answer · answered Dec 18 '11 at 04:37

1

It turns out that no-cache was added by F5 load balancer. Once networking guys put an iRule to not do it - the problem went away. Tomcat was not adding anything inappropriate.

answered Dec 18 '11 at 04:37

Felix

533
4
10
23

score 0 · Answer 2 · answered Dec 15 '11 at 04:33

0

Shouldn't adding it to the SSLAuthenticator valve work?

answered Dec 15 '11 at 04:33

mahnsc

1,776
13
11

tried it... nope :( in fact, I tired all 4: Basic, Forms, SSL and NonLogin – Felix Dec 15 '11 at 05:11

score 0 · Answer 3 · answered Oct 11 '12 at 14:25

I had same problem, and solved it adding this

 <Valve className="org.apache.catalina.authenticator.SSLAuthenticator" securePagesWithPragma="false"/>
 <Valve className="org.apache.catalina.authenticator.NonLoginAuthenticator" securePagesWithPragma="false"/>

in CATALINA_HOME/conf/context.xml.

Thanks

Tomcat 6 disableProxyCaching with no authentication

3 Answers3