This repository has been archived by the owner on May 10, 2019. It is now read-only.
improve validation of origin params to API calls #1981
Assignees
Labels
Comments
ghost
assigned 
|
@zaach - you want? |
|
That's a wicked regex. I'm on it. |
|
One thing that I'll be doing soon is refactoring the code that extract the domain from an email address (GH-1994). Once I do that, I'll validate the extracted domain, just in case. So I would suggest that we create a domain/hostname validation function that the origin type checking code could use to check the hostname part of the origin. Or perhaps we should create a new 'hostname' type instead? |
zaach
added a commit
to zaach/browserid
that referenced
this issue
Jul 12, 2012
lloyd
added a commit
that referenced
this issue
Jul 14, 2012
new regex for matching origins - issue #1981
Closed
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
and others
as @fmarier pointed out in issue #1979, we can do much better with our regex in validate.js - more tightly validating incoming origins.
Not extremely high priority, but why not?
for reference, http://blog.gnukai.com/2010/06/fqdn-regular-expression/
The text was updated successfully, but these errors were encountered: