You are viewing a plain text version of this content. The canonical link for it is here.

Posted to apache-bugdb@apache.org by Charles-Edouard Ruault <ce...@ezlogin.com> on 1999/06/02 03:58:19 UTC

mod_jserv/4509: posting with no content-type headers causes loss of posted data

>Number:         4509
>Category:       mod_jserv
>Synopsis:       posting with no content-type headers causes loss of posted data
>Confidential:   no
>Severity:       serious
>Priority:       medium
>Responsible:    jserv
>State:          open
>Class:          sw-bug
>Submitter-Id:   apache
>Arrival-Date:   Tue Jun  1 20:10:01 PDT 1999
>Last-Modified:
>Originator:     ce@ezlogin.com
>Organization:
apache
>Release:        apache 1.3.6 jserv 1.0b5
>Environment:
Apache/1.3.6 (Unix) mod_ssl/2.3.0 OpenSSL/0.9.3 ApacheJServ/1.0b5
on both linux 2.2.9 and 2.0.36
>Description:
When posting data to a servlet and omitting the content-type header in the http request, 
the parameters are not transmitted to the servlet
( HttpServlet.request.getParameters() returns an empty Enumeration ).

It used to work with jserv 0.9.12 but does not work with either jserv1.0bx, x>=3
 
>How-To-Repeat:
simply send the following request to the server, and a dummy servlet won't
get any paramter through the service method :

POST /bin/Dummy HTTP/1.1
User-Agent: my agent
Host: 192.168.0.3
Content-Length: 26

param1=allo&param2=coucou


but just add the following header to the request
Content-Type: application/x-www-form-urlencoded

and it will work.

the test servlet : http://www.ruault.com/bug/Dummy.java
the client used to send the request : http://www.ruault.com/bug/bug.java
>Fix:

>Audit-Trail:
>Unformatted:
[In order for any reply to be added to the PR database, you need]
[to include <ap...@Apache.Org> in the Cc line and make sure the]
[subject line starts with the report component and number, with ]
[or without any 'Re:' prefixes (such as "general/1098:" or      ]
["Re: general/1098:").  If the subject doesn't match this       ]
[pattern, your message will be misfiled and ignored.  The       ]
["apbugs" address is not added to the Cc line of messages from  ]
[the database automatically because of the potential for mail   ]
[loops.  If you do not include this Cc, your reply may be ig-   ]
[nored unless you are responding to an explicit request from a  ]
[developer.  Reply only with text; DO NOT SEND ATTACHMENTS!     ]