[jira] [Updated] (KNOX-2827) isDispatchAllowed should cut off path segments from the URL

Attila Magyar (Jira) Tue, 25 Oct 2022 01:18:04 -0700


     [ 
https://issues.apache.org/jira/browse/KNOX-2827?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


Attila Magyar updated KNOX-2827:
--------------------------------
    Description: In isDispatchAllowed we check the full URL against the 
whitelist regexp (including /path, but not including query parameters).  (was: 
In isDispatchAllowed we check the full URL against the whitelist regexp 
(including /path, but not including query parameters) which raises security 
concenrs.)

> isDispatchAllowed should cut off path segments from the URL
> -----------------------------------------------------------
>
>                 Key: KNOX-2827
>                 URL: https://issues.apache.org/jira/browse/KNOX-2827
>             Project: Apache Knox
>          Issue Type: Bug
>            Reporter: Attila Magyar
>            Assignee: Attila Magyar
>            Priority: Major
>             Fix For: 2.0.0
>
>          Time Spent: 20m
>  Remaining Estimate: 0h
>
> In isDispatchAllowed we check the full URL against the whitelist regexp 
> (including /path, but not including query parameters).



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

[jira] [Updated] (KNOX-2827) isDispatchAllowed should cut off path segments from the URL

Reply via email to