Bug #1793

WebDAV MOVE doesn’t work when Destination contains login information

Added by Anonymous 44 days ago.

Status:New Start:
Priority:Normal Due date:
Assigned to:jan % Done:

0%
Category:mod_webdav
Target version:1.4.21
Pending:

No

 Resolution:

Description

The Destination field of a WebDAV MOVE request isn’t limited to the format suggested in mod_webdav.c. It can also contain login information, for example,

https://user:password@domain.tld/path?query

Mod_webdav.c doesn’t care to look for any login information, however, and thus the “same domain” test can fail, even though the actual domain is the same. The patch is simple: Simply look for an ‘@’ in the part that we’re considering to be the the domain. If we find it, start the domain right after it.

-- now

mod_webdav.c.login.patch - Patch to skip login information for domain part of Destination field -- now (598 Bytes) Anonymous, 10/08/2008 12:24 PM

Also available in: Atom PDF