Authorization Header case sensitivity

Document ID : KB000126468
Last Modified Date : 11/02/2019
Show Technical Document Details
Question:
The user noticed a behaviour regarding the Authorization header when it leaves the gateway. We send the request as "Authorization" but when it leaves the gateway it turns to lower case "authorization" and the request fails. 

Is this by design or a bug? 
Environment:
Gateway 9.3
Answer:
This is as per design and RFC 2616 spec where headers are designed as case insensitive. Also the APIs responsible of getting the headers to gateway are by default making it smaller case and handing it to Gateway. Hence gateway does not have any control on preserving the source formatting.

Workaround has been given which converts the small letter Header names to Capital Letter using the Transport Properties/Header Properties to transform the Header.