Actions
Bug #19800
closed
cannot manage resource in technique editor in 7.0 when technique name is not set yet
Pull Request:
Severity:
UX impact:
User visibility:
Effort required:
Priority:
0
Name check:
To do
Fix check:
To do
Regression:
Description
when trying to manage resource, with a technique without name I get the following message
logs say
2021-08-16 17:33:34.076:WARN:oejs.HttpChannel:qtp1782580546-19: /rudder/secure/api/internal/techniques/dra
ft//1.0/resources
org.springframework.security.web.firewall.RequestRejectedException: The request was rejected because the U
RL contained a potentially malicious String "//"
at org.springframework.security.web.firewall.StrictHttpFirewall.rejectedBlocklistedUrls(StrictHttpFirewall.java:456)
at org.springframework.security.web.firewall.StrictHttpFirewall.getFirewalledRequest(StrictHttpFirewall.java:429)
at org.springframework.security.web.FilterChainProxy.doFilterInternal(FilterChainProxy.java:196)
at org.springframework.security.web.FilterChainProxy.doFilter(FilterChainProxy.java:183)
Files
Updated by Nicolas CHARLES over 2 years ago
- Subject changed from cannot manage resource in tehcnique editor in 7.0 to cannot manage resource in technique editor in 7.0 when tehcnique name is not yet set
Updated by Vincent MEMBRÉ over 2 years ago
I cannot reproduce for now, i can manage resources for a new technique directly, (no name set)
Updated by François ARMAND over 2 years ago
- Subject changed from cannot manage resource in technique editor in 7.0 when tehcnique name is not yet set to cannot manage resource in technique editor in 7.0 when technique name is not set yet
Updated by Vincent MEMBRÉ over 2 years ago
- Target version changed from 7.0.0~beta1 to 7.0.0~beta2
Updated by Nicolas CHARLES over 2 years ago
- Status changed from New to Rejected
it doesn't happen anymore
Actions