lub
/
mailu
1
0
Fork 0
Code Issues Pull Requests Packages Releases Wiki Activity

fix #1861: Handle colons in passwords

Browse Source
master
Florent Daigniere 3 years ago
parent 66ea28b50a
commit a0dcd46483
2 changed files with 2 additions and 1 deletions
Show Stats Download Patch File Download Diff File

2
core/admin/mailu/internal/views/auth.py
Unescape Escape View File

@ -63,7 +63,7 @@ def basic_authentication():
authorization = flask.request.headers.get("Authorization") authorization = flask.request.headers.get("Authorization")
if authorization and authorization.startswith("Basic "): if authorization and authorization.startswith("Basic "):
encoded = authorization.replace("Basic ", "") encoded = authorization.replace("Basic ", "")
user_email, password = base64.b64decode(encoded).split(b":") user_email, password = base64.b64decode(encoded).split(b":", 1)
user = models.User.query.get(user_email.decode("utf8")) user = models.User.query.get(user_email.decode("utf8"))
if nginx.check_credentials(user, password.decode('utf-8'), flask.request.remote_addr, "web"): if nginx.check_credentials(user, password.decode('utf-8'), flask.request.remote_addr, "web"):
response = flask.Response() response = flask.Response()

1
towncrier/newsfragments/1861.bugfix
Unescape Escape View File

@ -0,0 +1 @@
Fix a bug preventing colons from being used in passwords when using radicale/webdav.
Write Preview
Loading…
Cancel
Save