Merge branch 'www-authenticate-case' into 'master'

Accomodate broken HTTP clients HTTP header lookups are supposed to be case-insensitive but some clients do a case insensitive lookup, which breaks because of Go's header canonicalization. See merge request !2

Merge branch 'www-authenticate-case' into 'master'
Accomodate broken HTTP clients HTTP header lookups are supposed to be case-insensitive but some clients do a case insensitive lookup, which breaks because of Go's header canonicalization. See merge request !2
b41805c0 · Jacob Vosmaer · 6f561220 · d91d0c63 · b41805c0
Commit b41805c0 authored Oct 30, 2015 by Jacob Vosmaer
Show whitespace changes
Inline Side-by-side

Showing with 7 additions and 2 deletions

githandler.go githandler.go +7 -2

No files found.
--- a/githandler.go
+++ b/githandler.go
@@ -98,11 +98,16 @@ func (h *gitHandler) ServeHTTP(w http.ResponseWriter, r *http.Request) {
 		// The Git request is not allowed by the backend. Maybe the
 		// client needs to send HTTP Basic credentials.  Forward the
 		// response from the auth backend to our client. This includes
-		// the 'WWW-Authentication' header that acts as a hint that
+		// the 'WWW-Authenticate' header that acts as a hint that
 		// Basic auth credentials are needed.
 		for k, v := range authResponse.Header {
+			// Accomodate broken clients that do case-sensitive header lookup
+			if k == "Www-Authenticate" {
+				w.Header()["WWW-Authenticate"] = v
+			} else {
 				w.Header()[k] = v
 			}
+		}
 		w.WriteHeader(authResponse.StatusCode)
 		io.Copy(w, authResponse.Body)
 		return