Allow to deactivate "Server HTTP Header"

This issue is archived. You can view it, but you can't modify it. Learn more

XMLWordPrintable

      Support sendServerVersion option to unset server version http header.

      There is a HTTP header which returns the Jetty server version:

      plata:winstone escoem$ curl -I https://JENKINS_SERVER/
      HTTP/1.1 302 Found
      Date: Wed, 02 Nov 2016 13:32:14 GMT
      Expires: Thu, 01 Jan 1970 00:00:00 GMT
      Location: https://JENKINS_SERVER/securityRealm/commenceLogin?from=%2F
      Server: Jetty(9.2.z-SNAPSHOT)
      Set-Cookie: JSESSIONID.dsaw=daseawew;Path=/;Secure;HttpOnly
      X-Content-Type-Options: nosniff
      X-Hudson: 1.395
      X-Hudson-CLI-Port: 10081
      X-Jenkins: 2.7.4.4
      X-Jenkins-CLI-Host: IP
      X-Jenkins-CLI-Port: 10081
      X-Jenkins-CLI2-Port: 10081
      X-Jenkins-Session: dsaw
      Connection: keep-alive

      Jetty support a configuration option for sending or not the Server version (by default is sent).

            Assignee:
            Emilio Escobar
            Reporter:
            Emilio Escobar
            Archiver:
            Jenkins Service Account

              Created:
              Updated:
              Resolved:
              Archived: