Skip to content

Resolution for DATAREST-763 #208

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 7 commits into
base: main
Choose a base branch
from
Open

Resolution for DATAREST-763 #208

wants to merge 7 commits into from

Conversation

@Nugs
Copy link

@Nugs Nugs commented Feb 9, 2016

Unit tests and code fix for DATAREST-763.

Apologies I am unable to squash the commits at present as I'm working through the web UI due to access restrictions to gitHub.

This fix URL encodes/decodes entity ids to prevent the potential for invalid characters ending up in the URL. This is simply a case of encode/decode for all characters save for '/' which in its encoded form of %2F is not accepted by most webservers due to security issues (allowing for spurious modification of paths - partly what this change addresses from the DATAREST side!)

The proposed solution for this specific case is to double encode and decode the / --> %2F --> %252F which avoids this issue.
@spring-projects-issues spring-projects-issues mentioned this pull request Dec 31, 2020
Open
@spring-projects-issues spring-projects-issues added the status: waiting-for-triage An issue we've not yet triaged label Jan 4, 2021
@gregturn gregturn changed the base branch from master to main April 16, 2021 17:56
@odrotbohm odrotbohm force-pushed the main branch 3 times, most recently from 63ac127 to cfb7079 Compare September 21, 2021 15:03
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

status: waiting-for-triage An issue we've not yet triaged

2 participants

@Nugs @spring-projects-issues