You are viewing a plain text version of this content. The canonical link for it is here.

Posted to sysadmins@spamassassin.apache.org by Dave Jones <da...@apache.org> on 2019/03/02 18:49:42 UTC

Re: ruleqa redirection from http to https is mangling the url

On 3/2/19 10:54 AM, darxus@chaosreigns.com wrote:
> I have a script which links to:
> 
> http://ruleqa.spamassassin.org/?daterev=20180922&rule=%2FDNSWL
> 
> This is a search of the latest network mass-check for rules matching
> /DNSWL.
> 
> Between 2018-09-22 and 2018-09-29, that started getting redirected to
> 
> https://ruleqa.spamassassin.org/?daterev=20180922&rule=%252FDNSWL
> 
> The problem is, the redirect from http to https is inserting an additional
> "25", escaping the "%" when it shouldn't be, resulting in a search for
> "%2FDNSWL", which doesn't work.
> 
> The workaround is easy enough, I can just hit the https url to begin with:
> 
> https://ruleqa.spamassassin.org/?daterev=20180922&rule=%2FDNSWL
> 
> But the redirection is broken, and somebody might want to fix it.
> 

I tried everything I could to get the Apache 2.4 HTTPD to stop encoding 
the percent sign in the port 80 VirtualHost.  The config file already 
had "AllowEncodedSlashes On" from years ago.  I tried 
"AllowEncodedSlashes NoDecode" in both the 80 and 443 VirtualHosts but 
no difference.

It's fixed with haproxy on port 80 to handle the redirect to https.  If 
anyone has any ideas on how to do it with apach2, let me know.  I spent 
too much time on apache2 and had to move on.

Dave