This is an archived snapshot of W3C's public bugzilla bug tracker, decommissioned in April 2019. Please see the home page for more details.

Bug 88 - URI not escaped properly when POST -> GET redirecting
Summary: URI not escaped properly when POST -> GET redirecting
Alias: None
Product: Validator
Classification: Unclassified
Component: check (show other bugs)
Version: 0.6.0
Hardware: Other other
: P1 major
Target Milestone: ---
Assignee: Terje Bless
QA Contact:
Depends on:
Reported: 2002-11-26 17:13 UTC by Ville Skyttä
Modified: 2002-11-26 22:22 UTC (History)
0 users

See Also:


Description Ville Skyttä 2002-11-26 17:13:58 UTC
Brian J. Saville <> in

If you submit a URL in the Address input box that has multiple query
string parameters, the address is not properly parsed.

Consider the following URL:

You would expect that the validator would request the URL as it appears
above from the specified web server. Instead it requests this:

The problem lies in that the ampersand is not be properly encoded. This
can be seen by looking at the GET request that is created after
submitting the form with the above address to the validator service. The
GET looks like:

In this case, the validator ignores parameter2 thinking that its uri
parameter ends at A=1, when really parameter2 should be included as part
of the uri parameter and passed on to the host web server.

The correct GET should look like this:

Currently this can be corrected by hand by changing any ampersand to %26
either in the Address input box on the form or in the GET request for
the validator in the address bar.
Comment 1 Ville Skyttä 2002-11-26 17:22:25 UTC
Fixed in CVS (HEAD and 0_6_0-branch).  Ouch.