Project

Profile

Help

Issue #8318

closed

Sanitize input values in the methods implementing the pagination

Added by lmjachky almost 4 years ago. Updated almost 4 years ago.

Status:
CLOSED - CURRENTRELEASE
Priority:
Normal
Assignee:
Sprint/Milestone:
Start date:
Due date:
Estimated time:
Severity:
2. Medium
Platform Release:
OS:
Triaged:
Yes
Groomed:
No
Sprint Candidate:
No
Tags:
Easy Fix
Sprint:
Sprint 92
Quarter:

Description

A negative value defined for the query parameter n causes a runtime error:

(pulp) [vagrant@pulp3-source-fedora32 backup]$ http http://localhost:24817/v2/_catalog?n=-1
HTTP/1.1 500 Internal Server Error
Access-Control-Expose-Headers: Correlation-ID
Connection: close
Content-Length: 27
Content-Type: text/html
Correlation-ID: 6d0f66a77d96458bb10aacda31d673da
Date: Tue, 02 Mar 2021 14:37:36 GMT
Server: gunicorn/20.0.4
X-Frame-Options: SAMEORIGIN

<h1>Server Error (500)</h1>
Actions #1

Updated by lmjachky almost 4 years ago

  • Tracker changed from Task to Issue
  • Severity set to 2. Medium
  • Triaged set to No
Actions #2

Updated by mdellweg almost 4 years ago

  • Status changed from NEW to ASSIGNED
  • Assignee set to mdellweg
Actions #3

Updated by pulpbot almost 4 years ago

  • Status changed from ASSIGNED to POST
Actions #4

Updated by rchan almost 4 years ago

  • Sprint changed from Sprint 91 to Sprint 92
Actions #5

Updated by ipanova@redhat.com almost 4 years ago

  • Triaged changed from No to Yes

Added by mdellweg almost 4 years ago

Revision b276dbb4 | View on GitHub

Sanitize page size in pagination classes

This will prevent the request to result in a 500 response when a negative page size is requested.

fixes #8318 https://pulp.plan.io/issues/8318

Added by mdellweg almost 4 years ago

Revision b276dbb4 | View on GitHub

Sanitize page size in pagination classes

This will prevent the request to result in a 500 response when a negative page size is requested.

fixes #8318 https://pulp.plan.io/issues/8318

Actions #6

Updated by mdellweg almost 4 years ago

  • Status changed from POST to MODIFIED
Actions #7

Updated by pulpbot almost 4 years ago

  • Status changed from MODIFIED to CLOSED - CURRENTRELEASE

Also available in: Atom PDF