Uploaded image for project: 'Dev - Nexus Repo'
  1. Dev - Nexus Repo
  2. NEXUS-11888

http request header values should be checked for validity before allowing a request to proceed

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 2.14.2
    • Fix Version/s: 2.14.4
    • Component/s: Security
    • Labels:
    • Story Points:
      3
    • Sprint:
      Sprint 89

      Description

      Certain HTTP request headers have well established value formats. Nexus should check the format of these header values and reject the request with a 400 response in such a case. Log a message in nexus.log in such a case at INFO level.

        Attachments

          Activity

            People

            • Assignee:
              jtom Joe Tom
              Reporter:
              mprescott Michael Prescott
              Last Updated By:
              Peter Lynch
            • Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved:
                Date of First Response: