[
https://issues.apache.org/jira/browse/SLING-4560?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15436574#comment-15436574
]
Radu Cotescu commented on SLING-4560:
-------------------------------------
Both this issue's summary and description are rather wrong. First, the
characters that are tested are Chinese, not Bengali or Hindi. Second, they are
symbols. According to https://tools.ietf.org/html/rfc3987#section-2.2, URI
paths should contain only letters, numbers, "-" / "." / "_" / "~" and some UCS.
I'll therefore change the summary to "Extend support in XSSAPI#getValidHref for
Internationalized Resource Identifiers".
> XSSAPI#getValidHref is empty for valid Bengali or Hindi characters
> ------------------------------------------------------------------
>
> Key: SLING-4560
> URL: https://issues.apache.org/jira/browse/SLING-4560
> Project: Sling
> Issue Type: Bug
> Components: XSS Protection API
> Affects Versions: XSS Protection API 1.0.0
> Reporter: Jean-Christophe Kautzmann
> Assignee: Radu Cotescu
> Fix For: XSS Protection API 1.0.14
>
> Attachments: xssapi.patch
>
>
> I added (locally) 2 test cases to
> org.apache.sling.xss.impl.XSSAPIImplTest#testGetValidHref:
> {code}
> {"/etc/commerce/collections/中文", "/etc/commerce/collections/中文"},
> {"/etc/commerce/collections/⺁〡〢☉⊕〒", "/etc/commerce/collections/⺁〡〢☉⊕〒"},
> {code}
> the first test passes (chinese characters), the 2nd fails (bengali/hindi
> characters) although it should pass as they are valid characters.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
