我正在更改下载端点的行为以重定向到实际下载文件的其他域。这已经开始在IE10中失败(之前没有尝试过),而它在Chrome等中运行良好。人。它不是启动下载对话框,而是将用户重定向到新文件URL,然后打开对话框。
以下是新的请求序列及其标题:
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.1.19
Date: Wed, 02 Oct 2013 11:30:07 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Status: 307 Temporary Redirect
X-Content-Type-Options: nosniff
X-Date: 1380713407016
Cache-Control: max-age=0, private
Location: https://someotherdomain.com/files/100?token=jfkldsfdshlfsdlkdfs
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Robots-Tag: none
X-Runtime: 0.129865
X-XSS-Protection: 1; mode=block
X-UA-Compatible: IE=Edge,chrome=1
curl -I "https://someotherdomain.com/files/100?token=jfkldsfdshlfsdlkdfs"
HTTP/1.1 200 OK
Server: nginx/1.1.19
Date: Wed, 02 Oct 2013 11:19:43 GMT
Content-Type: image/jpeg
Content-Length: 9961
Connection: keep-alive
Content-Disposition: attachment; filename="some file "with" + & wierd characters.jpeg"; filename*=UTF-8''some%20file%20%22with%22%20%2B%20%26%20wierd%20characters.jpeg
Last-Modified: Fri, 20 Sep 2013 15:30:53 GMT
ETag: "04e88973d658dc21e263865cbd6d20da"
Accept-Ranges: bytes
X-Content-Type-Options: nosniff
X-Download-Options: noopen
Cache-Control: max-age=0, must-revalidate
Expires: Fri, 01 Jan 1990 00:00:00 GMT
任何人都可以看到任何可疑的东西。我被认为Content-Type和Content-Disposition是重要的标题,它们是正常的,所以它必须是导致问题的重定向/新域。
答案 0 :(得分:0)
找到它。原始域位于Intranet选项卡下的企业安全策略中,Internet选项,第二个不是。