Opened 13 years ago
Closed 13 years ago
#17620 closed Bug (invalid)
Chrome fails with additional Content-Disposition header
Reported by: | Owned by: | nobody | |
---|---|---|---|
Component: | Documentation | Version: | 1.3 |
Severity: | Normal | Keywords: | |
Cc: | Triage Stage: | Unreviewed | |
Has patch: | no | Needs documentation: | no |
Needs tests: | no | Patch needs improvement: | no |
Easy pickings: | no | UI/UX: | no |
Description
Later versions of Chrome will fail to render content if you follow this example by assigning an addition Content-Disposition
header, e.g.
response['Content-Disposition'] = 'attachment; filename=somefilename.pdf'
The Chrome browser returns:
Duplicate headers received from server
The response from the server contained duplicate headers. This problem is generally the result of a misconfigured website or proxy. Only the website or proxy administrator can fix this issue.
Error 349 (net::ERR_RESPONSE_HEADERS_MULTIPLE_CONTENT_DISPOSITION): Multiple Content-Disposition headers received. This is disallowed to protect against HTTP response splitting attacks.
This apparently fails only with certain kinds of filenames (embedded spaces, commas), so I'm going to mark it as invalid.