Adding claims with non-ascii character to headers fails #26

davidmarekmsft · 2021-03-25T20:34:12Z

If a user has non-ascii characters in their name, the service will throw an exception when trying to add the name claim to response headers in AddResponseHeadersFromClaims.

System.InvalidOperationException: 'Invalid non-ASCII or control character in header: 0x00F6'
   at Microsoft.AspNetCore.Server.Kestrel.Core.Internal.Http.HttpHeaders.ThrowInvalidHeaderCharacter(Char ch)
   at Microsoft.AspNetCore.Server.Kestrel.Core.Internal.Http.HttpHeaders.ValidateHeaderValueCharacters(StringValues headerValues)
   at Microsoft.AspNetCore.Server.Kestrel.Core.Internal.Http.HttpResponseHeaders.AddValueFast(String key, StringValues value)
   at Microsoft.AspNetCore.Server.Kestrel.Core.Internal.Http.HttpHeaders.System.Collections.Generic.IDictionary<System.String,Microsoft.Extensions.Primitives.StringValues>.Add(String key, StringValues value)
   at OCP.Msal.Proxy.Web.Controllers.AuthController.AddResponseHeadersFromClaims(IEnumerable`1 claims, IHeaderDictionary headers) in C:\Users\x\src\EasyAuthForK8s\OCP.Msal.Proxy.Web\Controllers\AuthController.cs:line 111

The text was updated successfully, but these errors were encountered:

github-actions · 2021-03-25T20:34:53Z

Message that will be displayed on users' first issue

davidmarekmsft mentioned this issue Mar 25, 2021

Validate header value in AddResponseFromClaims #25

Merged

danielkon96 closed this as completed Jun 4, 2021

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Adding claims with non-ascii character to headers fails #26

Adding claims with non-ascii character to headers fails #26

davidmarekmsft commented Mar 25, 2021

github-actions bot commented Mar 25, 2021

Adding claims with non-ascii character to headers fails #26

Adding claims with non-ascii character to headers fails #26

Comments

davidmarekmsft commented Mar 25, 2021

github-actions bot commented Mar 25, 2021