]> git.ipfire.org Git - thirdparty/Python/cpython.git/commit
projects / thirdparty / Python / cpython.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 53ecf9e) | patch
bpo-46756: Fix authorization check in urllib.request (GH-31353)
authorSerhiy Storchaka <storchaka@gmail.com>
Fri, 25 Feb 2022 11:31:03 +0000 (13:31 +0200)
committerGitHub <noreply@github.com>
Fri, 25 Feb 2022 11:31:03 +0000 (13:31 +0200)
commite2e72567a1c94c548868f6ee5329363e6036057a
tree4fda0ff786291269065939cc0693ae670276dd30tree | snapshot
parent53ecf9e08d35801807daf74492c090a325f995b7commit | diff
bpo-46756: Fix authorization check in urllib.request (GH-31353)

Fix a bug in urllib.request.HTTPPasswordMgr.find_user_password() and
urllib.request.HTTPPasswordMgrWithPriorAuth.is_authenticated() which
allowed to bypass authorization. For example, access to URI "example.org/foobar"
was allowed if the user was authorized for URI "example.org/foo".
Lib/test/test_urllib2.py diff | blob | blame | history
Lib/urllib/request.py diff | blob | blame | history
Misc/NEWS.d/next/Library/2022-02-15-11-57-53.bpo-46756.AigSPi.rst [new file with mode: 0644] blob
Mirror of https://github.com/python/cpython.git