[FIX SECURITY-233] Remove multipart form exception from crumb filter

ef2c0dc1 · Daniel Beck · a78b13e7 · ef2c0dc1 · ef2c0dc1
Showing with 7 addition and 2 deletion

core/src/main/java/hudson/security/csrf/CrumbFilter.java core/src/main/java/hudson/security/csrf/CrumbFilter.java +2 -2

war/src/main/webapp/scripts/hudson-behavior.js war/src/main/webapp/scripts/hudson-behavior.js +5 -0

未找到文件。
--- a/core/src/main/java/hudson/security/csrf/CrumbFilter.java
+++ b/core/src/main/java/hudson/security/csrf/CrumbFilter.java
@@ -80,8 +80,8 @@ public class CrumbFilter implements Filter {
                    LOGGER.log(Level.WARNING, "Found invalid crumb {0}.  Will check remaining parameters for a valid one...", crumb);
                }
            }
-            // Multipart requests need to be handled by each handler.
-            if (valid || isMultipart(httpRequest)) {
+
+            if (valid) {
                chain.doFilter(request, response);
            } else {
                LOGGER.log(Level.WARNING, "No valid crumb was included in request for {0}. Returning {1}.", new Object[] {httpRequest.getRequestURI(), HttpServletResponse.SC_FORBIDDEN});

--- a/war/src/main/webapp/scripts/hudson-behavior.js
+++ b/war/src/main/webapp/scripts/hudson-behavior.js
@@ -117,6 +117,11 @@ var crumb = {
        var div = document.createElement("div");
        div.innerHTML = "<input type=hidden name='"+this.fieldName+"' value='"+this.value+"'>";
        form.appendChild(div);
+        if (form.action.indexOf("?") != -1) {
+            form.action = form.action+"&"+this.fieldName+"="+this.value;
+        } else {
+            form.action = form.action+"?"+this.fieldName+"="+this.value;
+        }
    }
 }