OAuth access to design documents is broken
Bug #427860 reported by
Eric Casteleijn
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
couchdb (Ubuntu) |
Fix Released
|
Undecided
|
Chad Miller |
Bug Description
Binary package hint: couchdb
When making OAuth authenticated requests to design documents, CouchDB returns 401s. The problem turns out to be that the slash in _design/viewname is/can be encoded to %2F but CouchDB checks the credentials against the unencoded url always.
The problem was found and fixed by Jason Davies and the bugfix has been committed to trunk and the 0.10 branch:
r813803 /trunk/
r813806 /branches/0.10.x/ (. etc/default/couchdb src/couchdb/
Related branches
Changed in couchdb (Ubuntu): | |
assignee: | nobody → Elliot Murphy (statik) |
status: | New → In Progress |
status: | In Progress → Confirmed |
To post a comment you must log in.
0.10 couchdb will fix this. The current SVN already does.