Carsten Ziegeler created SLING-6064:
---------------------------------------
Summary: Redirect servlet should encode url for redirecting
Key: SLING-6064
URL: https://issues.apache.org/jira/browse/SLING-6064
Project: Sling
Issue Type: Bug
Components: Servlets
Affects Versions: Servlets Get 2.1.18
Reporter: Carsten Ziegeler
Fix For: Servlets Get 2.1.20
The RedirectServlet is directly setting the location header (wondering why
sendRedirect is not used instead?) however it is not encoding the URL (calling
encodeRedirectURL). Therefore if query parameters are appended these are not
encoded. According to the servlet spec, the url should be encoded before being
passed to sendRedirect. I would assume the same applies to setting the header
as it goes in there unmodified
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
