jro_apps/redmine Commit - r14684:aaeb0807bfd7

Accept dots in JSONP callback (#13718)....

Jean-Philippe Lang -

r14684:aaeb0807bfd7

parent child

Context file:

r14684:aaeb0807bfd7

lib/redmine/views/builders/json.rb +1 -1

                       super
                       callback = request.params[:callback] || request.params[:jsonp]
                       if callback && Setting.jsonp_enabled?
-                        self.jsonp = callback.to_s.gsub(/[^a-zA-Z0-9_]/, '')
+                        self.jsonp = callback.to_s.gsub(/[^a-zA-Z0-9_.]/, '')
                       end
                     end

test/integration/api_test/jsonp_test.rb +2 -2

               def test_jsonp_should_strip_invalid_characters_from_callback
                 with_settings :jsonp_enabled => '1' do
-                  get '/trackers.json?callback=+-aA$1_'
+                  get '/trackers.json?callback=+-aA$1_.'
                 end
                 assert_response :success
-                assert_match %r{^aA1_\(\{"trackers":.+\}\)$}, response.body
+                assert_match %r{^aA1_.\(\{"trackers":.+\}\)$}, response.body
                 assert_equal 'application/javascript; charset=utf-8', response.headers['Content-Type']
               end

General Comments 0

You need to be logged in to leave comments. Login now

No TODOs yet

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages