[
https://issues.apache.org/jira/browse/KNOX-820?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15759297#comment-15759297
]
Larry McCay commented on KNOX-820:
----------------------------------
>From my research and debugging, I have determined that we have a couple
>choices:
1. require participating applications to url encode the & as %26 and have logic
that needs to reconstruct the original url from the query parameters acquired
through the request.getParameters call. Unfortunately, this logic is more
complex than I would like and may break edge cases. It does however allow
existing integrations that apparently haven't run into the & issue to continue
to work.
2. base64 encode the entire originalUrl which would keep the query params of
the originalUrl and those of the API call itself separate and the logic more
straight forward. This however would break existing integrations.
I am leaning toward not breaking existing integrations and introducing a new
API variant for #2 if we run into the need for it.
> Knox query processing: If the originalUrl value has "ampersand"(&) in it, the
> value after ampersand is ignored.
> ---------------------------------------------------------------------------------------------------------------
>
> Key: KNOX-820
> URL: https://issues.apache.org/jira/browse/KNOX-820
> Project: Apache Knox
> Issue Type: Bug
> Components: Server
> Reporter: Larry McCay
> Assignee: Larry McCay
> Fix For: 0.11.0
>
>
> From Sharmadha Sainath offline:
> Example URL is:
> https://ctr-e64-1480733150053-8567-01-000002.hwx.site:8443/gateway/knoxsso/knoxauth/login.html?originalUrl=http://ctr-e64-1480733150053-8567-01-000002.hwx.site:21000/api/atlas/discovery/search/dsl?limit=25&query=hive_table
> After providing the username and password, the above page gets redirected to
> "ctr-e64-1480733150053-8567-01-000002.hwx.site:21000/api/atlas/discovery/search/dsl?limit=25",
> leaving "query=hive_table". This seems to be an issue with knox query
> processing.
> Original query:
> http://ctr-e64-1480733150053-8567-01-000002.hwx.site:21000/api/atlas/discovery/search/dsl?limit=25&query=hive_table
> Redirects to
> https://ctr-e64-1480733150053-8567-01-000002.hwx.site:8443/gateway/knoxsso/knoxauth/login.html?originalUrl=http://ctr-e64-1480733150053-8567-01-000002.hwx.site:21000/api/atlas/discovery/search/dsl?limit=25&query=hive_table
> Enclosed the URL
> http://ctr-e64-1480733150053-8567-01-000002.hwx.site:21000/api/atlas/discovery/search/dsl?limit=25&query=hive_table
> with double quotes and encoded it and gave it as original URL . Still it
> doesn't work.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
