Hello,
I am using a 3rd party valve for OpenId Connect authentication that stop
working upgrading from tomcat 8.5.24 to 8.5.46
I managed to isolate the issue behing this and it is caused by a change
in org.apache.tomcat.util.codec.binary.Base64
It can be reproduce with a simple test case
@Test
public void decodeBase64Test() {
String str =
"YZJXP8zFDY6WPk1NZx4RtkH95lA4H_GM_XmFjouJImtqy-PD27-GUYVrCq1QM3M09TzRFZTL4aMMTweZFj3h1M-4Pqb4xrRq9URICQ9ffpnB9OGKjEwEpzhICwbE8C8-zEbhFOEgdXcyeP0pJc9uHEUH9Z4rTEg0jxmOmffIAbX9zfjhIla0XUsFd2C2QQGXu1nTFrb2EqfhLDls4ZLCcnLZE6Be3SpHCtvZiFN4w3xlI0TZitX4S3SjTocK4Xobb3Ey0RnewDP6jw78JniFTbuuGB962GlHDJvaQoda2dON9j7Yhv_pTvxBlHDmIKYINYsBfTwEQ_qtLJtmcvv41Q";
assertArrayEquals(org.apache.tomcat.util.codec.binary.Base64.decodeBase64(str),
java.util.Base64.getUrlDecoder().decode(str));
}
This test is ok with 8.5.24 but fails with 8.5.46. Are there any known
issues with Base64 utility ?
Arnaud
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org