[
https://issues.apache.org/jira/browse/WICKET-6230?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15435778#comment-15435778
]
ASF subversion and git services commented on WICKET-6230:
---------------------------------------------------------
Commit 25a6b7268f72a5b5225a500b6c3ba42c2a3d55d0 in wicket's branch
refs/heads/wicket-7.x from [~mgrigorov]
[ https://git-wip-us.apache.org/repos/asf?p=wicket.git;h=25a6b72 ]
WICKET-6230 Infinite redirection when using UrlPathPageParametersEncoder
Treat specially only "." and "..". Any longer sequence of dots should be left
as is.
> Infinite redirection when using UrlPathPageParametersEncoder
> ------------------------------------------------------------
>
> Key: WICKET-6230
> URL: https://issues.apache.org/jira/browse/WICKET-6230
> Project: Wicket
> Issue Type: Bug
> Components: wicket
> Affects Versions: 6.22.0, 6.24.0
> Reporter: Daniel Stoch
> Assignee: Martin Grigorov
> Attachments: mountingtest.zip
>
>
> When you mount page with UrlPathPageParametersEncoder:
> {code}
> mount(new MountedMapper("/test", TestPage.class, new
> UrlPathPageParametersEncoder()));
> {code}
> and then user pass a special parameter value in url which ends with more than
> one dot and slash (eg. "../", ".../", etc.) then application starts endless
> redirects. It leads to error in browser such as:
> {quote}
> The page isn’t redirecting properly
> {quote}
> Without last slash everything works ok.
> I have attached a quickstart. Run this application and enter the following
> url in your browser:
> {code}
> http://localhost:8080/test/text/aaa.../
> {code}
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
