Skip to content

Fix @ in URL path confusing the parser #2906

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Nov 5, 2024
Merged

Fix @ in URL path confusing the parser #2906

merged 1 commit into from
Nov 5, 2024

Conversation

@itowlson
Copy link
Collaborator

@itowlson itowlson commented Nov 5, 2024

Fixes #2905.

I've added some tests to cover the behaviour. However, it will get confused in a different way if the username-password segment contains a forward slash (ivan:sec/[email protected]). I'm not sure if that's a concern? @rylev you may know a better way to tackle this in which case feel free to close this!

@itowlson itowlson requested a review from rylev November 5, 2024 03:16
@itowlson itowlson force-pushed the fix-at-in-url-path-host branch from cff929c to c2ec1de Compare November 5, 2024 03:24
@rajatjindal rajatjindal mentioned this pull request Nov 5, 2024
Merged
rylev
rylev approved these changes Nov 5, 2024
View reviewed changes
Copy link
Collaborator

@rylev rylev left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This seems like an improvement though we probably want to at some point throw away this code and use some sort of off-the-shelf URL parser.

lann
lann reviewed Nov 5, 2024
View reviewed changes
@itowlson itowlson force-pushed the fix-at-in-url-path-host branch from c2ec1de to 227aa8c Compare November 5, 2024 18:10
@itowlson itowlson enabled auto-merge November 5, 2024 18:20
@itowlson itowlson merged commit 0685481 into spinframework:main Nov 5, 2024
17 checks passed
@itowlson itowlson mentioned this pull request Nov 5, 2024
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@lann lann lann left review comments

@rylev rylev rylev approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

incorrect outbound http validation blocks request if url contains '@'

3 participants

@itowlson @lann @rylev