Closed
Description
Eric Sirianni opened SPR-16983 and commented
ForwardedHeaderFilter
captures the requestUri
on initial request (e.g. /foo
). That request URI can be altered due to a server-side forward - for example:
request.getRequestDispatcher("/bar").forward(request, response)
When the request is re-dispatched, code calling HttpServletRequest.getRequestURI()
receives the old value (e.g. /foo
) instead of the new value (e.g. /bar
). Even if the filter is registered with DispatcherType.FORWARD
, the issue remains that the filter implements OncePerRequestFilter
.
Affects: 5.0.7
Issue Links:
- ResourceUrlEncodingFilter does not work with HttpServletRequestWrapper [SPR-17421] #21954 ResourceUrlEncodingFilter does not work with HttpServletRequestWrapper
Referenced from: commits feeec34
2 votes, 4 watchers