url.parse doesn't decode auth field #2736
Comments
Would anyone like to do a patch for this? Should probably do #1163 along with it. Note that it's also used by |
It's possible but is it sensible? |
For Basic Authentication, the username is not allowed to have a colon (http://tools.ietf.org/html/rfc2617#section-2). Furthermore, away from the URL layer (which I would argue is the layer I intend to be at if I am using the results of url.parse) there is no concept of "URL escaping". |
@bnoordhuis bnoordhuis/node@c157b16 looks good to me, but we need a test to make sure that |
Oh, actually, that commit fixes a failure in http:
Since the auth section should have any non-urlsafe chars encoded, this bit in http.js is a bug. |
Shouldn't the url.parse function decode the auth portion of a URL? I'd have expected the following to be true:
Another user has also requested this via a comment on the somewhat separate issue #1163: #1163 (comment)
The text was updated successfully, but these errors were encountered: