add Strict-Transport-Security to list of http response headers to swallow, to avoid some problems with HSTS when browsing through warcprox (doesn't solve the case of preloaded HSTS though)

2025-01-18 13:22:09 +01:00 · 2016-04-08 23:26:20 -07:00 · 2016-04-08 23:26:20 -07:00 · 0809c78486
commit 0809c78486
parent 6f10e2708d
2 changed files with 5 additions and 3 deletions
--- a/setup.py
+++ b/setup.py
@ -50,7 +50,7 @@ except:
    deps.append('futures')

 setuptools.setup(name='warcprox',
-        version='2.0.dev6',
+        version='2.0.dev7',
        description='WARC writing MITM HTTP/S proxy',
        url='https://github.com/internetarchive/warcprox',
        author='Noah Levitt',
--- a/warcprox/warcproxy.py
+++ b/warcprox/warcproxy.py
@ -147,8 +147,10 @@ class ProxyingRecordingHTTPResponse(http_client.HTTPResponse):

        status_and_headers = 'HTTP/1.1 {} {}\r\n'.format(self.status, self.reason)
        for k,v in self.msg.items():
-            if k.lower() not in ('connection', 'proxy-connection', 'keep-alive',
-                    'proxy-authenticate', 'proxy-authorization', 'upgrade'):
+            if k.lower() not in (
+                    'connection', 'proxy-connection', 'keep-alive',
+                    'proxy-authenticate', 'proxy-authorization', 'upgrade',
+                    'strict-transport-security'):
                status_and_headers += '{}: {}\r\n'.format(k, v)
        status_and_headers += 'Connection: close\r\n\r\n'
        self.proxy_dest.sendall(status_and_headers.encode('latin1'))