Shawn, et al -
In the thread about the missing Apache features, Doug Kelly pointed out they
were using this:
> AllowEncodedSlashes On
> <Location /code-review>
> ProxyPass
http://127.0.0.1:8081/code-review nocanon
> ...
> </Location>
The mod_proxy module has a "canon" option, which the mod_proxy docs describe
thus:
"""
Normally, mod_proxy will canonicalise ProxyPassed URLs. But this may be
incompatible with some backends, particularly those that make use of
PATH_INFO. The optional nocanon keyword suppresses this, and passes the URL
path "raw" to the backend. Note that may affect the security of your backend,
as it removes the normal limited protection against URL-based attacks provided
by the proxy.
"""
That sounds exactly like what NoDecode does for the AllowEncodedSlashes rule.
That may just work.
Is it possible to get this tested and officially vetted by the Gerrit team? If
this works, it would be fantastic, and would allow us to upgrade beyond 2.5.
Thanks!
j
--
Joshua J. Kugler - Fairbanks, Alaska
Azariah Enterprises - Programming and Website Design
jos...@azariah.com - Jabber:
peda...@gmail.com
PGP Key:
http://pgp.mit.edu/ ID 0x73B13B6A