Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

fix: prevent passing bad character to wp (#11099) #11113

Merged
merged 2 commits into from
May 31, 2021
Merged

fix: prevent passing bad character to wp (#11099) #11113

merged 2 commits into from
May 31, 2021

Conversation

pleku
Copy link
Contributor

@pleku pleku commented May 31, 2021

The webpack dev-server does not escape " character, as it is not valid
URL. This limitation was not checked when passing request to it via
DevModeHandler.

@pleku pleku requested a review from caalador May 31, 2021 07:47
caalador
caalador previously approved these changes May 31, 2021
View reviewed changes
@caalador caalador enabled auto-merge (squash) May 31, 2021 07:49
@caalador caalador disabled auto-merge May 31, 2021 07:55
@pleku
fix: prevent passing bad character to wp (#11099)
afb36c5 
The webpack dev-server does not escape " character, as it is not valid
URL. This limitation was not checked when passing request to it via
DevModeHandlerImpl.
@caalador caalador enabled auto-merge (squash) May 31, 2021 12:29
@vaadin-bot
Copy link
Collaborator

SonarQube analysis reported 4 issues

  1. MAJOR DevModeHandler.java#L603: Remove this unused private "checkPort" method. rule
  2. MAJOR DevModeHandler.java#L740: Either re-interrupt this method or rethrow the "InterruptedException". rule
  3. MAJOR HandlerHelper.java#L321: Define and throw a dedicated exception instead of using a generic one. rule
  4. INFO HandlerHelper.java#L333: Public static com.vaadin.flow.server.HandlerHelper.getPublicResources() may expose internal representation by returning HandlerHelper.publicResources rule

@caalador caalador merged commit de94968 into 7.0 May 31, 2021
@caalador caalador deleted the cp/11099 branch May 31, 2021 14:41
@vaadin-bot
Copy link
Collaborator

This ticket/PR has been released with platform 20.0.0. For prerelease versions, it will be included in its final version.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@caalador caalador caalador approved these changes

Assignees
No one assigned
Labels
Released with Platform 20.0.0 +0.0.1
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@pleku @vaadin-bot @caalador