[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [libmicrohttpd] Possible bug in digest auth with parameters without
|
From: |
Christian Grothoff |
|
Subject: |
Re: [libmicrohttpd] Possible bug in digest auth with parameters without value |
|
Date: |
Fri, 25 Sep 2015 09:51:08 +0200 |
|
User-agent: |
Mozilla/5.0 (X11; Linux x86_64; rv:31.0) Gecko/20100101 Icedove/31.7.0 |
Hi Manuel,
No, this was indeed still a bug, fixed in SVN 36370. Thanks for reporting!
Happy hacking!
-Christian
On 09/25/2015 05:36 AM, Manuel Argüelles wrote:
> Hello,
>
> I'm having problems with digest auth when the URL has parameters
> without values, as long as it is not the last one. Attached a simple
> example that shows the issue.
>
> Requests that auth ok:
>
> curl --digest 'http://demo:address@hidden:8080/?cmd'
> curl --digest 'http://demo:address@hidden:8080/?cmd=yes&name=value'
> curl --digest 'http://demo:address@hidden:8080/?cmd=yes&name'
>
> Requests that fails to auth:
>
> curl --digest 'http://demo:address@hidden:8080/?cmd&name=value'
> curl --digest 'http://demo:address@hidden:8080/?cmd=yes&name&valid'
> curl --digest 'http://demo:address@hidden:8080/?cmd=yes&name&valid=y'
>
> Tested with libmicrohttpd 0.9.42 (please forgive me if it was fixed
> already)
>
>
>
>
0xE29FC3CC.asc
Description: application/pgp-keys
signature.asc
Description: OpenPGP digital signature