Bug 7931 - A url that contains %2F in the path, tomcat returns 400 bad request.
Summary: A url that contains %2F in the path, tomcat returns 400 bad request.
Status: RESOLVED WONTFIX
Alias: None
Product: Tomcat 4
Classification: Unclassified
Component: Connector:HTTP/1.1 (deprecated) (show other bugs)
Version: 4.0.4 Beta 2
Hardware: All All
: P3 major (vote)
Target Milestone: ---
Assignee: Tomcat Developers Mailing List
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2002-04-10 19:57 UTC by Paul Dumais
Modified: 2004-11-16 19:05 UTC (History)
0 users



Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Paul Dumais 2002-04-10 19:57:11 UTC
If I do a request to a url such as:
http://localhost:8080/test/foo%2Fbar
tomcat returns 400 Bad Request and the request is not logged in the access 
log.  It should not return this, apache processes the request correctly.
Comment 1 Remy Maucherat 2002-04-11 07:52:35 UTC
It is nice that Apache handles it fine. Tomcat can't process such a request 
without opening some URL based security exploits.
4.0-HEAD with Coyote doesn't have the need for the normalization.

TO have it work fine, either use a nightly build, or configure Apache to work 
with Tomcat through JK.