forgejo/modules/context
zeripath 6e7d28cf3a
Prevent double decoding of % in url params (#17997)
There was an unfortunate regression in #14293 which has led to the double decoding
of url parameter elements if they contain a '%'. This is due to an issue
with the way chi decodes its RoutePath. In detail the problem lies in
mux.go where the routeHTTP path uses the URL.RawPath or even the
URL.Path instead of the escaped path to do routing.

This PR simply forcibly sets the routePath to that of the EscapedPath.

Fix #17938

Signed-off-by: Andrew Thornton <art27@cantab.net>
2021-12-16 17:40:18 +00:00
..
access_log.go Pass down SignedUserName down to AccessLogger context (#16605) 2021-08-04 13:26:30 -04:00
api.go Refactor HTTP request context (#17979) 2021-12-15 14:59:57 +08:00
api_org.go Use a standalone struct name for Organization (#17632) 2021-11-19 19:41:40 +08:00
api_test.go fix API link header (#7298) 2019-06-26 16:51:32 +08:00
auth.go Move twofactor to models/login (#17143) 2021-09-25 15:00:12 +02:00
captcha.go Fix captcha (#14488) 2021-01-27 22:56:54 +08:00
context.go Prevent double decoding of % in url params (#17997) 2021-12-16 17:40:18 +00:00
csrf.go Redirect on bad CSRF instead of presenting bad page (#14937) 2021-07-08 15:57:24 +02:00
form.go Rename ctx.Form() to ctx.FormString() and move code into own file (#16571) 2021-08-11 02:31:13 +02:00
org.go Move accessmode into models/perm (#17828) 2021-11-28 12:58:28 +01:00
pagination.go [Feature] add precise search type for Elastic Search (#12869) 2021-01-27 12:00:35 +02:00
permission.go Move unit into models/unit/ (#17576) 2021-11-09 20:57:58 +01:00
private.go Update docs and comments to remove macaron (#14491) 2021-01-29 16:35:30 +01:00
repo.go Refactor HTTP request context (#17979) 2021-12-15 14:59:57 +08:00
response.go Stop calling WriteHeader in Write (#15862) 2021-05-14 11:05:50 +03:00
xsrf.go Move macaron to chi (#14293) 2021-01-26 16:36:53 +01:00
xsrf_test.go Move macaron to chi (#14293) 2021-01-26 16:36:53 +01:00