Make WordPress Core

Opened 13 years ago

Closed 9 years ago

#16909 closed defect (bug) (wontfix)

some Location headers are using relative url's (2)

Reported by: hakre's profile hakre Owned by:
Milestone: Priority: normal
Severity: normal Version: 3.1
Component: HTTP API Keywords:
Focuses: Cc:

Description

I started this in #14062 and already did some fixes for 3.1.

Just collecting some more and providing patches.

Attachments (5)

16909.patch (9.9 KB) - added by hakre 13 years ago.
Some leftover
16909.2.patch (841 bytes) - added by hakre 13 years ago.
those two
16909.3.patch (635 bytes) - added by hakre 13 years ago.
referer field
16909.4.patch (1012 bytes) - added by hakre 13 years ago.
Triggered by logout of the admin bar on frontend
16909.5.patch (545 bytes) - added by hakre 13 years ago.
Triggered by dashboard.php

Download all attachments as: .zip

Change History (16)

@hakre
13 years ago

Some leftover

#1 @hakre
13 years ago

Fix strategy: admin_url -> self_admin_url as we did in first round as well.

#2 @voyagerfan5761
13 years ago

  • Cc WordPress@… added

#3 @dd32
13 years ago

  • Keywords has-patch removed

admin_url will return a absolute URL. self_admin_url() is only needed for pages accessible from both the Network admin (or users admin) as well as the normal admin.

#4 @hakre
13 years ago

Replying to dd32:

admin_url will return a absolute URL. self_admin_url() is only needed for pages
accessible from both the Network admin (or users admin) as well as the normal
admin.

Ah, okay. Had not thought about that, the first patch was mainly a regex search, so I assume most of it does not apply any longer.

what about /wp-admin/network/edit.php and /wp-amin/user/admin.php? Is it the same?

@hakre
13 years ago

those two

@hakre
13 years ago

referer field

#5 @hakre
13 years ago

Found it via the options page. A _wp_http_referer is placed in there and later used in options.php to redirect to (/wp-admin/options.php:161). It was no full absolute location.

@hakre
13 years ago

Triggered by logout of the admin bar on frontend

#6 @hakre
13 years ago

Better HTTP Redirects now supports WB_DEBUG and displays extensive information about the redirect.

#7 @hakre
13 years ago

Related: #16907

#8 @hakre
13 years ago

/wp-admin/includes/dashboard.php:127 creates a redirect w/o an absolute URI.

@hakre
13 years ago

Triggered by dashboard.php

#9 @hakre
13 years ago

\wp-admin\user-new.php:100 , Related: #17018

Version 0, edited 13 years ago by hakre (next)

#10 @nacin
10 years ago

  • Component changed from General to HTTP

#11 @dd32
9 years ago

  • Milestone Awaiting Review deleted
  • Resolution set to wontfix
  • Status changed from new to closed

Location headers may contain relative paths. All browsers support this.

Early revisions of the HTTP/1.1 specification specified absolute URI's only (ie. RFC2616) however later revisions allow for a relative URI as all browsers handle it and it matches the usage in the wild RFC7231.

Note: See TracTickets for help on using tickets.