-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Mark,
On 10/18/18 09:09, Mark H. Wood wrote: > On Thu, Oct 18, 2018 at 11:55:24AM +0100, M. Manna wrote: >> Thanks a bunch Mark. >> >> "The correct fix is to ensure that the user agents are sending >> specification compliant requests." - Do you mean at browser level >> ? If so, is there any specific browser/update we can use? We've >> checked a few browsers so far (Firefox, Edge, Chrome) and none of >> them seem to have this option (or we might've missed it). > > [snip] > >>>> The URI we have for this problem has the following param (did >>>> work with 8.5.28) >>>> >>>> defaultMessageType=true&locale=en_US&action=[key:label.edit] > > The browser did not actually *compose* that parameter, did it? > > If I had this problem, given only what I know from this thread, I > would suppose that the page which contained an href having such a > parameter is the source of the problem. Some link is improperly > encoded. Nope. Because if the application %-encodes those bracket characters, the browser will double-%-encode them. There is literally no way to get a browser to send the proper RFC-compliant character string, which is why these hacks are necessary. > I would say it is debatable whether browsers should be > "correcting" hrefs which are handed to them by some site. They are required to do so by the HTML specification. Well... the HTML/HTTP spec also require them to do other things which they aren't doing, so I suppose it's all the wild west out there. Did I mention that ignoring standards hurts everybody? IMO, HTTP/2 should have done-away with all of this and 100% required clients and servers to implement the spec TO THE LETTER. Basically a lot of "servers RFC-MUST cause the client to catch fire if the encoding is incorrect" or something similar. But we all missed an opportunity, there. - -chris -----BEGIN PGP SIGNATURE----- Comment: Using GnuPG with Thunderbird - https://www.enigmail.net/ iQIzBAEBCAAdFiEEMmKgYcQvxMe7tcJcHPApP6U8pFgFAlvIqsYACgkQHPApP6U8 pFi8zA/+KtWKJrOPn85xsW59lGBvZrxRP49DoLT7Smjkolpni99zCnHbR/QYfEqP 4iAo/GS1v11OtgJythTc26Ywy70Tm4KRWyrLwb+b4NfiChBaqzcg2k1mPL3N+spp XDC7lfjzEHRtECuO9C/P1BJZ1+yQPaqBtZlczwanCLps7rveOc2z2Tysfo8AaFAy 2aURDpn/BsUrcS08FJMHaqBBsrBbQnvQ2fOjgV1v7umE21C/oZSEZ2/DMKfw+Tx4 92TwszW+cJloWRpSYVI0GA7ydSpw8GAfBbhci9VTc4PqHTxgUVkTQcem+8D90RtR sa8aHy1CC6VILdtunApjcJCztnKn+6+XKqNEb5gHnI7uaEcU/I/hiGxqvfGv3fDh o+gXD3YDwyJiG3v5ldJtP5GyIlmST0ihhDS8B1PyTHaYhEabU9flZ5Ul+pibU35X aTPfBuN3+zHqAuNCZDSekHWTOHhwCHxeMhEBSYKe/8BxSXkfDpf+n1xGQWPtI/u2 gRQeI1BsqN+PAZDPXbeSMc2ArZoqHVxQ5WCUAQfdD37PC2L4s/t72jonRXNplRLt X7EmwuaowURf7tJMetsWLmkWxbxaHQG0Cb4BwEOl3pST2vbNg9eZ4L6yW8+VCojx WsvwSBrbZl6k55A19ZnRnoEdCTyWZh+8cObB8HZPrCGHgTsws4E= =2/qX -----END PGP SIGNATURE----- --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
