NormalizingFilter performs incorrect validation of PATH_INFO variable
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
OpenStack Identity (keystone) |
Invalid
|
Undecided
|
Unassigned |
Bug Description
class NormalizingFilt
"""Middleware filter to handle URL normalization."""
def process_
# Removes a trailing slash from the given path, if any.
if (len(request.
# Rewrites path to root if no path is given.
elif not request.
The if condition performs a length check without checking if PATH_INFO is None. Instead, the check is done in the elif clause.
Shouldn't this validation instead be like below ?
def process_
# Rewrites path to root if no path is given.
if not request.
# Removes a trailing slash from the given path, if any.
elif (len(request.
Changed in keystone: | |
assignee: | Venkat Sundaram (tsv) → nobody |
Changed in keystone: | |
status: | Incomplete → New |
status: | New → Incomplete |
Fix proposed to branch: master /review. openstack. org/67634
Review: https:/