KEM requests with whitespace in key name fail #135
Comments
Could it be https://bugzilla.redhat.com/show_bug.cgi?id=1411810? |
|
Simo and I came to an agreement how to fix the issue. Custodia no longer url-decodes the URL keys because we ran into issues with url-encoded slash ( |
tiran
added a commit
to tiran/custodia
that referenced
this issue
Mar 23, 2017
The old path handling code used a string of '/' separated path segments. This was causing trouble with unquoted of %2F (quoted slash). A new request parameter 'path_chain' contains a tuple of unquoted path segments. Since / is no longer used as path separator inside the path, quoted slash can be safely used. The old path argument is still available until all plugins have been ported. Closes: latchset#135 Signed-off-by: Christian Heimes <cheimes@redhat.com>
tiran
added a commit
to tiran/custodia
that referenced
this issue
Mar 23, 2017
The old path handling code used a string of '/' separated path segments. This was causing trouble with unquoted of %2F (quoted slash). A new request parameter 'path_chain' contains a tuple of unquoted path segments. Since / is no longer used as path separator inside the path, quoted slash can be safely used. The old path argument is still available until all plugins have been ported. Closes: latchset#135 Signed-off-by: Christian Heimes <cheimes@redhat.com>
tiran
added a commit
to tiran/custodia
that referenced
this issue
Mar 23, 2017
The old path handling code used a string of '/' separated path segments. This was causing trouble with unquoted of %2F (quoted slash). A new request parameter 'path_chain' contains a tuple of unquoted path segments. Since / is no longer used as path separator inside the path, quoted slash can be safely used. The old path argument is still available until all plugins have been ported. Closes: latchset#135 Signed-off-by: Christian Heimes <cheimes@redhat.com>
tiran
added a commit
that referenced
this issue
Mar 23, 2017
The old path handling code used a string of '/' separated path segments. This was causing trouble with unquoted of %2F (quoted slash). A new request parameter 'path_chain' contains a tuple of unquoted path segments. Since / is no longer used as path separator inside the path, quoted slash can be safely used. The old path argument is still available until all plugins have been ported. Closes: #135 Signed-off-by: Christian Heimes <cheimes@redhat.com>
tiran
added a commit
to tiran/custodia
that referenced
this issue
Mar 28, 2017
The old path handling code used a string of '/' separated path segments. This was causing trouble with unquoted of %2F (quoted slash). A new request parameter 'path_chain' contains a tuple of unquoted path segments. Since / is no longer used as path separator inside the path, quoted slash can be safely used. The old path argument is still available until all plugins have been ported. Closes: latchset#135 Signed-off-by: Christian Heimes <cheimes@redhat.com>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
The issue was discovered by @MartinBasti in FreeIPA freeipa/freeipa#517 (comment) . @adelton reported the same bug a while ago on bugzilla (can't find it right now).
See PR #134 for a reproducer.
The text was updated successfully, but these errors were encountered: