Uploaded image for project: 'JBoss Web Server'
  1. JBoss Web Server
  2. JWS-717

RFC 7230/3986 url requirement that prevents unencoded curly braces should be optional, since it breaks existing sites

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Done
    • Icon: Critical Critical
    • JWS 3.1.0 SP1 DR1
    • JWS 3.1.0 CR4
    • tomcat7, tomcat8
    • None
    • Release Notes
    • As a result of CVE-2016-6816 unencoded characters are rejected as invalid. Unfortunately some clients are still behaving that way and were being rejected by tomcat. An option has been added that will allow you to accept unencoded {, }, and | characters.

            rhn-support-csutherl Coty Sutherland
            rhn-support-aogburn Aaron Ogburn
            Bogdan Sikora Bogdan Sikora (Inactive)
            Votes:
            0 Vote for this issue
            Watchers:
            6 Start watching this issue

              Created:
              Updated:
              Resolved: