Update REQUEST-920-PROTOCOL-ENFORCEMENT.conf #1688
Conversation
|
Hey Azurit, Travis is green now, but only because of our workaround. In fact it complains a lot and the reason is you added the hashtag character at the end of the character class. If you want to add the hash character, it's got to be before the dash. Could you explain what you did there - and why you reconfigure the number of occurrences at the end of the regex? |
|
As i stated in the comment, the original regexp was invalid because character '?' means '0 or 1 occurances', so there could be only one of the parts at the end of the regexp at a time. According to RFCs, all of these 'Content-Type' headers are valid: Your original regexp was able to match only these: |
|
Maybe the combination: isn't valid (or has no sense). In that case, the number of occurrences can be changed to |
|
Got it. Thank you. Much clearer now (and I'm running after half a dozen PRs in parallel after Travis got the hickups, my iq is thus spread over too many items ATM). Can you fix the hash problem? |
|
You mean like? or? |
|
Yes, the former. The escaping does not cut it. It's about the order. |
According to SOAP 1.2 specification, the optional 'action' parameter is allowed for 'Content-Type' header, see RFC3902:
https://www.ietf.org/rfc/rfc3902.txt
Also, the original regexp was invalid as it was allowing only one parameter to 'Content-Type' header (there were two possible parameters which can be set at once: charset and boundary [now they are three]).
Finally, i added a hashtag character into allowed ones, real-world example:
Content-Type: application/soap+xml; charset=utf-8; action="urn:localhost-hwh#getQuestions"