(ofbiz-framework) branch release24.09 updated: Improved: Refactor ControlFilter class without functional changes (OFBIZ-13213)

Fri, 28 Feb 2025 10:03:38 -0800 

This is an automated email from the ASF dual-hosted git repository.

jleroux pushed a commit to branch release24.09
in repository https://gitbox.apache.org/repos/asf/ofbiz-framework.git


The following commit(s) were added to refs/heads/release24.09 by this push:
     new 8e79be8e1f Improved: Refactor ControlFilter class without functional 
changes (OFBIZ-13213)
8e79be8e1f is described below

commit 8e79be8e1f9eada4688d08a49b2536b48b054426
Author: Jacques Le Roux <jacques.le.r...@les7arts.com>
AuthorDate: Fri Feb 28 18:58:08 2025 +0100

    Improved: Refactor ControlFilter class without functional changes 
(OFBIZ-13213)
    
    Fix a backport bug: isUrlInString in trunk, isUrl in 24.09
---
 .../src/main/java/org/apache/ofbiz/webapp/control/ControlFilter.java    | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git 
a/framework/webapp/src/main/java/org/apache/ofbiz/webapp/control/ControlFilter.java
 
b/framework/webapp/src/main/java/org/apache/ofbiz/webapp/control/ControlFilter.java
index 71dacac212..d39c45c16e 100644
--- 
a/framework/webapp/src/main/java/org/apache/ofbiz/webapp/control/ControlFilter.java
+++ 
b/framework/webapp/src/main/java/org/apache/ofbiz/webapp/control/ControlFilter.java
@@ -204,7 +204,7 @@ public class ControlFilter extends HttpFilter {
             }
             if (queryString != null) {
                 queryString = URLDecoder.decode(queryString, "UTF-8");
-                if (UtilValidate.isUrlInString(queryString)
+                if (UtilValidate.isUrl(queryString)
                         || 
!SecuredUpload.isValidText(queryString.toLowerCase(), ALLOWEDTOKENS, true)) {
                     Debug.logError("For security reason this URL is not 
accepted", MODULE);
                     throw new RuntimeException("For security reason this URL 
is not accepted");

Reply via email to