[
https://issues.apache.org/jira/browse/STORM-608?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14295361#comment-14295361
]
ASF GitHub Bot commented on STORM-608:
--------------------------------------
Github user harshach commented on the pull request:
https://github.com/apache/storm/pull/371#issuecomment-71866973
@revans2 @ptgoetz can you please review this.
> Storm UI CSRF escape characters not work correctly
> --------------------------------------------------
>
> Key: STORM-608
> URL: https://issues.apache.org/jira/browse/STORM-608
> Project: Apache Storm
> Issue Type: Bug
> Affects Versions: 0.9.3
> Reporter: Xiaoyong Zhu
> Assignee: Sriharsha Chintalapani
> Priority: Minor
>
> When trying to use the REST API to active or detactive storm topology using
> C# Httpclient, there are random failures.
> I do some more investigate about the random error
> We find some x-csrf-token getting from the first http get request contains
> “\/”, for example
> “\/dE\/k8N5H0Ora1IY9UAfx3fc7M4b0EZOMbWUXdUNn9IitAjOhmup+OiHx\/v5W+kUuWu4TkBsFsfvd7Km”
> which will fail.
> If I replace \/ with / and this should be
> /dE/k8N5H0Ora1IY9UAfx3fc7M4b0EZOMbWUXdUNn9IitAjOhmup+OiHx/v5W+kUuWu4TkBsFsfvd7Km,
> and the second token could work successfully while the first does not.
> we assume this is caused by some escape letters.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
