Bug #1793

WebDAV MOVE doesn’t work when Destination contains login information

Added by Anonymous about 6 years ago. Updated about 5 years ago.

Status:FixedStart date:
Priority:NormalDue date:
Assignee:jan% Done:

100%

Category:mod_webdav
Target version:1.4.24
Missing in 1.5.x:No

Description

The Destination field of a WebDAV MOVE request isn’t limited to the format suggested in mod_webdav.c. It can also contain login information, for example,

https://user:password@domain.tld/path?query

Mod_webdav.c doesn’t care to look for any login information, however, and thus the “same domain” test can fail, even though the actual domain is the same. The patch is simple: Simply look for an ‘@’ in the part that we’re considering to be the the domain. If we find it, start the domain right after it.

-- now

mod_webdav.c.login.patch Magnifier - Patch to skip login information for domain part of Destination field -- now (598 Bytes) Anonymous, 2008-10-08 12:24

Associated revisions

Revision 2629
Added by stbuehler about 5 years ago

mod_webdav: Patch to skip login information for domain part of Destination field (fixes #1793)

Revision 2665
Added by stbuehler about 5 years ago

fix mod_webdav crash from #1793 (fixes #2048, thx hiroya)

History

#1 Updated by icy almost 6 years ago

  • Target version changed from 1.4.21 to 1.4.22
  • Patch available set to No

#2 Updated by stbuehler almost 6 years ago

  • Target version changed from 1.4.22 to 1.4.23

#3 Updated by stbuehler over 5 years ago

  • Target version changed from 1.4.23 to 1.4.24

#4 Updated by stbuehler about 5 years ago

  • Status changed from New to Fixed
  • % Done changed from 0 to 100

Applied in changeset r2629.

#5 Updated by stbuehler about 5 years ago

  • Missing in 1.5.x set to No

Also available in: Atom