Sergey, Thanks for the quick response, you led me down the right path, not a CXF issue or a Tomcat issue , but a JBoss issue.
I have been able to determine that this is an intentional security feature of jboss. http://securitytracker.com/id/1018110 "Note: In response to CVE-2007-0450, JBoss AS considers encoded slashes and backslashes in URLs invalid and its usage will result in HTTP 400 error. It is possible to allow encoded slashes and backslashes by following the steps outlined below, however doing so will expose you to CVE-2007-0450 related attacks:" and a link to CVE-2007-0450 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-0450 On Thu, Jul 11, 2013 at 10:22 AM, Sergey Beryozkin <[email protected]>wrote: > Hi, Looks like it is a Tomcat configuration issue, see > > http://cxf.apache.org/docs/**jaxrs-services-configuration.**html#** > JAXRSServicesConfiguration-**Tomcat<http://cxf.apache.org/docs/jaxrs-services-configuration.html#JAXRSServicesConfiguration-Tomcat> > > If Tomcat is not affecting it, can you check where exactly 400 is coming > from ? > > Cheers, Sergey > > > On 11/07/13 15:04, JE wrote: > >> I need to send a value that includes a / as a path parameter. e.g >> "foo/bar" I have tried URL encoding it but I get a 400 bad request. >> >> Any ideas. I see that this was an old issue that was fixed a while back, I >> am using CXF 2.7.0 >> >> Any ideas? >> >> https://issues.apache.org/**jira/browse/CXF-1820<https://issues.apache.org/jira/browse/CXF-1820> >> >> url -v >> http://localhost:8085/**security/services/rest/groups/**foo%2Fbar<http://localhost:8085/security/services/rest/groups/foo%2Fbar> >> * About to connect() to localhost port 8085 (#0) >> * Trying 127.0.0.1... >> * connected >> * Connected to localhost (127.0.0.1) port 8085 (#0) >> >>> GET /security/services/rest/**groups/foo%2Fbar HTTP/1.1 >>> User-Agent: curl/7.24.0 (x86_64-apple-darwin12.0) libcurl/7.24.0 >>> >> OpenSSL/0.9.8x zlib/1.2.5 >> >>> Host: localhost:8085 >>> Accept: */* >>> >>> < HTTP/1.1 400 Bad Request >> < Server: Apache-Coyote/1.1 >> < Content-Length: 0 >> < Date: Thu, 11 Jul 2013 14:02:39 GMT >> < Connection: close >> < >> * Closing connection #0 >> >> >
