Anonymous | Login

Project:

News | My View | View Issues | Roadmap | Summary

View Issue Details[ Jump to Notes ]

[ Issue History ] [ Print ]

ID

0045199

Type

Category

Severity

Reproducibility

Date Submitted

Last Update

defect

[Openbravo ERP] A. Platform

minor

have not tried

2020-10-07 07:15

2020-10-08 08:42

Reporter

alostale

View Status

public

Assigned To

alostale

Priority

normal

Resolution

fixed

Fixed in Version

PR21Q1

Status

closed

Fix in branch

Fixed in SCM revision

Projection

none

ETA

none

Target Version

OS

Any

Database

Any

Java version

OS Version

Database version

Ant version

Product Version

SCM revision

Review Assigned To

Web browser

Modules

Core

Regression level

Regression date

Regression introduced in release

Regression introduced by commit

Triggers an Emergency Pack

No

Summary

0045199: LoginHandler accepts GET requests

Description

LoginHandler accepts GET requests.

Steps To Reproduce

Perform a GET to LoginHandler -> request is handled

Proposed Solution

It should only accept POST.

Tags

No tags attached.

Relationships [ Relation Graph ] [ Dependency Graph ]

Notes
(0123579) hgbot (developer) 2020-10-07 07:20	Merge Request created: https://gitlab.com/openbravo/product/openbravo/-/merge_requests/194 [^]

(0123612) hgbot (developer) 2020-10-08 08:42	Merge request merged: https://gitlab.com/openbravo/product/openbravo/-/merge_requests/194 [^]

(0123613) hgbot (developer) 2020-10-08 08:42	Directly closing issue as related merge request is already approved. Repository: https://gitlab.com/openbravo/product/openbravo [^] Changeset: 97da353eec7de2fd3c264a50d2166d4d14cb3dab Author: Asier Lostalé <asier.lostale@openbravo.com> Date: 2020-10-08T06:41:37+00:00 URL: https://gitlab.com/openbravo/product/openbravo/-/commit/97da353eec7de2fd3c264a50d2166d4d14cb3dab [^] fixed BUG-45199: LoginHandler accepts GET requests Now it fails (405-Method not allowed) for GET requests. --- M src/org/openbravo/base/secureApp/LoginHandler.java ---

Issue History
Date Modified	Username	Field	Change
2020-10-07 07:15	alostale	New Issue
2020-10-07 07:15	alostale	Assigned To	=> platform
2020-10-07 07:15	alostale	Modules	=> Core
2020-10-07 07:15	alostale	Triggers an Emergency Pack	=> No
2020-10-07 07:15	alostale	Assigned To	platform => alostale
2020-10-07 07:20	hgbot	Note Added: 0123579
2020-10-08 08:42	hgbot	Resolution	open => fixed
2020-10-08 08:42	hgbot	Status	new => closed
2020-10-08 08:42	hgbot	Note Added: 0123612
2020-10-08 08:42	hgbot	Fixed in Version	=> PR21Q1
2020-10-08 08:42	hgbot	Note Added: 0123613

Copyright © 2000 - 2009 MantisBT Group