Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

fix: prevent passing bad character to wp (#11099) #11114

Merged
merged 2 commits into from
May 31, 2021
Merged

fix: prevent passing bad character to wp (#11099) #11114

merged 2 commits into from
May 31, 2021

Conversation

pleku
Copy link
Contributor

@pleku pleku commented May 31, 2021

The webpack dev-server does not escape " character, as it is not valid
URL. This limitation was not checked when passing request to it via
DevModeHandlerImpl.

@pleku pleku requested a review from caalador May 31, 2021 07:47
caalador
caalador previously approved these changes May 31, 2021
View reviewed changes
@caalador caalador enabled auto-merge (squash) May 31, 2021 07:50
@caalador caalador disabled auto-merge May 31, 2021 07:55
@pleku
fix: prevent passing bad character to wp (#11099)
7ac67cb 
The webpack dev-server does not escape " character, as it is not valid
URL. This limitation was not checked when passing request to it via
DevModeHandlerImpl.
@caalador caalador enabled auto-merge (squash) May 31, 2021 12:29
@vaadin-bot
Copy link
Collaborator

SonarQube analysis reported 4 issues

  1. CRITICAL HandlerHelper.java#L18: Remove this unused import 'javax.servlet.http.HttpServletRequest'. rule
  2. MAJOR DevModeHandler.java#L603: Remove this unused private "checkPort" method. rule
  3. MAJOR DevModeHandler.java#L740: Either re-interrupt this method or rethrow the "InterruptedException". rule
  4. MAJOR HandlerHelper.java#L209: Define and throw a dedicated exception instead of using a generic one. rule

@vaadin-bot vaadin-bot added +1.0.0 and removed +0.0.1 labels May 31, 2021
@caalador caalador merged commit e3d2a74 into 6.0 May 31, 2021
@caalador caalador deleted the cp/11099-6.0 branch May 31, 2021 13:13
@vaadin-bot
Copy link
Collaborator

This ticket/PR has been released with platform 19.0.9. For prerelease versions, it will be included in its final version.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@caalador caalador caalador approved these changes

Assignees
No one assigned
Labels
Released with Platform 19.0.9 +1.0.0
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@pleku @vaadin-bot @caalador