Do not send void HTTP headers to apps (#573)
This commit is contained in:
parent
a8382125c7
commit
ed08dc0cb0
|
@ -144,16 +144,16 @@ sub run ($$) {
|
||||||
$class->updateStatus( $datas->{$whatToTrace}, $apacheRequest->uri, 'OK' );
|
$class->updateStatus( $datas->{$whatToTrace}, $apacheRequest->uri, 'OK' );
|
||||||
$class->logGranted( $uri, $datas );
|
$class->logGranted( $uri, $datas );
|
||||||
|
|
||||||
# ACCOUNTING
|
|
||||||
# 2 - Inform remote application
|
|
||||||
$class->sendHeaders;
|
|
||||||
|
|
||||||
# SECURITY
|
# SECURITY
|
||||||
# Hide Lemonldap::NG cookie
|
# Hide Lemonldap::NG cookie
|
||||||
$class->hideCookie;
|
$class->hideCookie;
|
||||||
|
|
||||||
# Hide user password
|
# Hide user password
|
||||||
$class->lmSetHeaderIn( $apacheRequest, Authorization => '' );
|
$class->lmUnsetHeaderIn( $apacheRequest, "Authorization");
|
||||||
|
|
||||||
|
# ACCOUNTING
|
||||||
|
# 2 - Inform remote application
|
||||||
|
$class->sendHeaders;
|
||||||
OK;
|
OK;
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|
|
@ -32,7 +32,7 @@ use constant MAINTENANCE_CODE => 503;
|
||||||
#inherits Apache::Session
|
#inherits Apache::Session
|
||||||
#link Lemonldap::NG::Common::Apache::Session::SOAP protected globalStorage
|
#link Lemonldap::NG::Common::Apache::Session::SOAP protected globalStorage
|
||||||
|
|
||||||
our $VERSION = '1.2.2';
|
our $VERSION = '1.2.3';
|
||||||
|
|
||||||
our %EXPORT_TAGS;
|
our %EXPORT_TAGS;
|
||||||
|
|
||||||
|
@ -826,8 +826,12 @@ sub hideCookie {
|
||||||
my $class = shift;
|
my $class = shift;
|
||||||
$class->lmLog( "removing cookie", 'debug' );
|
$class->lmLog( "removing cookie", 'debug' );
|
||||||
my $tmp = lmHeaderIn( $apacheRequest, 'Cookie' );
|
my $tmp = lmHeaderIn( $apacheRequest, 'Cookie' );
|
||||||
$tmp =~ s/$cookieName(?:http)?[^,;]*[,;]?//og;
|
$tmp =~ s/$cookieName(http)?=[^,;]*[,;\s]*//og;
|
||||||
$class->lmSetHeaderIn( $apacheRequest, 'Cookie' => $tmp );
|
if ($tmp) {
|
||||||
|
$class->lmSetHeaderIn( $apacheRequest, 'Cookie' => $tmp );
|
||||||
|
} else {
|
||||||
|
$class->lmUnsetHeaderIn( $apacheRequest, 'Cookie' );
|
||||||
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
## @rmethod protected string encodeUrl(string url)
|
## @rmethod protected string encodeUrl(string url)
|
||||||
|
|
Loading…
Reference in New Issue
Block a user