Skip to content
体验新版
项目
组织
正在加载...
登录
切换导航
打开侧边栏
爱吃血肠
spring-framework
提交
a546cf0a
S
spring-framework
项目概览
爱吃血肠
/
spring-framework
通知
1
Star
0
Fork
0
代码
文件
提交
分支
Tags
贡献者
分支图
Diff
Issue
0
列表
看板
标记
里程碑
合并请求
0
Wiki
0
Wiki
分析
仓库
DevOps
项目成员
Pages
S
spring-framework
项目概览
项目概览
详情
发布
仓库
仓库
文件
提交
分支
标签
贡献者
分支图
比较
Issue
0
Issue
0
列表
看板
标记
里程碑
合并请求
0
合并请求
0
Pages
分析
分析
仓库分析
DevOps
Wiki
0
Wiki
成员
成员
收起侧边栏
关闭侧边栏
动态
分支图
创建新Issue
提交
Issue看板
体验新版 GitCode,发现更多精彩内容 >>
提交
a546cf0a
编写于
3月 29, 2018
作者:
R
Rossen Stoyanchev
浏览文件
操作
浏览文件
下载
电子邮件补丁
差异文件
Reject invalid forwarded headers
Issue: SPR-16660
上级
5fb4c825
变更
1
显示空白变更内容
内联
并排
Showing
1 changed file
with
32 addition
and
25 deletion
+32
-25
spring-web/src/main/java/org/springframework/web/util/UriComponentsBuilder.java
...va/org/springframework/web/util/UriComponentsBuilder.java
+32
-25
未找到文件。
spring-web/src/main/java/org/springframework/web/util/UriComponentsBuilder.java
浏览文件 @
a546cf0a
...
@@ -729,6 +729,7 @@ public class UriComponentsBuilder implements UriBuilder, Cloneable {
...
@@ -729,6 +729,7 @@ public class UriComponentsBuilder implements UriBuilder, Cloneable {
* @since 4.2.7
* @since 4.2.7
*/
*/
UriComponentsBuilder
adaptFromForwardedHeaders
(
HttpHeaders
headers
)
{
UriComponentsBuilder
adaptFromForwardedHeaders
(
HttpHeaders
headers
)
{
try
{
String
forwardedHeader
=
headers
.
getFirst
(
"Forwarded"
);
String
forwardedHeader
=
headers
.
getFirst
(
"Forwarded"
);
if
(
StringUtils
.
hasText
(
forwardedHeader
))
{
if
(
StringUtils
.
hasText
(
forwardedHeader
))
{
String
forwardedToUse
=
StringUtils
.
tokenizeToStringArray
(
forwardedHeader
,
","
)[
0
];
String
forwardedToUse
=
StringUtils
.
tokenizeToStringArray
(
forwardedHeader
,
","
)[
0
];
...
@@ -759,6 +760,12 @@ public class UriComponentsBuilder implements UriBuilder, Cloneable {
...
@@ -759,6 +760,12 @@ public class UriComponentsBuilder implements UriBuilder, Cloneable {
port
(
Integer
.
parseInt
(
StringUtils
.
tokenizeToStringArray
(
portHeader
,
","
)[
0
]));
port
(
Integer
.
parseInt
(
StringUtils
.
tokenizeToStringArray
(
portHeader
,
","
)[
0
]));
}
}
}
}
}
catch
(
NumberFormatException
ex
)
{
throw
new
IllegalArgumentException
(
"Failed to parse a port from \"forwarded\"-type headers. "
+
"If not behind a trusted proxy, consider using ForwardedHeaderFilter "
+
"with the removeOnly=true. Request headers: "
+
headers
);
}
if
(
this
.
scheme
!=
null
&&
((
this
.
scheme
.
equals
(
"http"
)
&&
"80"
.
equals
(
this
.
port
))
||
if
(
this
.
scheme
!=
null
&&
((
this
.
scheme
.
equals
(
"http"
)
&&
"80"
.
equals
(
this
.
port
))
||
(
this
.
scheme
.
equals
(
"https"
)
&&
"443"
.
equals
(
this
.
port
))))
{
(
this
.
scheme
.
equals
(
"https"
)
&&
"443"
.
equals
(
this
.
port
))))
{
...
...
编辑
预览
Markdown
is supported
0%
请重试
或
添加新附件
.
添加附件
取消
You are about to add
0
people
to the discussion. Proceed with caution.
先完成此消息的编辑!
取消
想要评论请
注册
或
登录