Properly encode OAuth2 credentials

Change-Id: Ic3edeae035262309e91fb01e3aca5c2f905bc3e5 Reviewed-on: https://gerrit.libreoffice.org/59986 Tested-by: Jenkins Reviewed-by: Stephan Bergmann <sbergman@redhat.com>

Properly encode OAuth2 credentials
Change-Id: Ic3edeae035262309e91fb01e3aca5c2f905bc3e5 Reviewed-on: https://gerrit.libreoffice.org/59986 Tested-by: Jenkins Reviewed-by: Stephan Bergmann <sbergman@redhat.com>
33f7485d · Stephan Bergmann · 7e7a1ff3 · 33f7485d · 33f7485d
Kaydet (Commit) 33f7485d authored Eyl 04, 2018 tarafından Stephan Bergmann
Hide whitespace changes
Inline Side-by-side

Showing with 60 additions and 0 deletions

UnpackedTarball_libcmis.mk external/libcmis/UnpackedTarball_libcmis.mk +1 -0

xwwwformurlencoded.patch.0 external/libcmis/xwwwformurlencoded.patch.0 +59 -0

No files found.
--- a/external/libcmis/UnpackedTarball_libcmis.mk
+++ b/external/libcmis/UnpackedTarball_libcmis.mk
@@ -22,6 +22,7 @@ $(eval $(call gb_UnpackedTarball_add_patches,libcmis, \
 						external/libcmis/libcmis-fix-error-handling.patch \
 						external/libcmis/c++17.patch.0 \
 						external/libcmis/boost-1.68.patch.0 \
+						external/libcmis/xwwwformurlencoded.patch.0 \
 ))
 ifeq ($(OS),WNT)

--- a/external/libcmis/xwwwformurlencoded.patch.0
+++ b/external/libcmis/xwwwformurlencoded.patch.0
+--- src/libcmis/oauth2-providers.cxx
+++ src/libcmis/oauth2-providers.cxx
+@@ -26,6 +26,8 @@
+  * instead of those above.
+  */
+#include <cassert>
+
+ #include <libxml/HTMLparser.h>
+ #include <libxml/xmlreader.h>
+@@ -45,6 +47,29 @@
+ #define HTML_PARSE_RECOVER 0
+ #endif
+namespace {
+
+// See <https://url.spec.whatwg.org/#concept-urlencoded-byte-serializer>:
+void addXWwwFormUrlencoded(std::string * buffer, std::string const & data) {
+    assert(buffer);
+    for (string::const_iterator i = data.begin(); i != data.end(); ++i) {
+        unsigned char c = static_cast<unsigned char>(*i);
+        if (c == ' ' || c == '*' || c == '-' || c == '.' || (c >= '0' && c <= '9')
+            || (c >= 'A' && c <= 'Z') || c == '_' || (c >= 'a' && c <= 'z'))
+        {
+            *buffer += static_cast<char>(c);
+        } else {
+            static const char hex[16] = {
+                '0', '1', '2', '3', '4', '5', '6', '7', '8', '9', 'A', 'B', 'C', 'D', 'E', 'F'};
+            *buffer += '%';
+            *buffer += hex[c >> 4];
+            *buffer += hex[c & 0xF];
+        }
+    }
+}
+
+}
+
+ string OAuth2Providers::OAuth2Gdrive( HttpSession* session, const string& authUrl,
+                                       const string& username, const string& password )
+ {
+@@ -97,7 +120,7 @@
+         return string( );
+     loginEmailPost += "Email=";
+-    loginEmailPost += string( username );
+    addXWwwFormUrlencoded(&loginEmailPost, username);
+     istringstream loginEmailIs( loginEmailPost );
+     string loginEmailRes;
+@@ -119,7 +142,7 @@
+         return string( );
+     loginPasswdPost += "Passwd=";
+-    loginPasswdPost += string( password );
+    addXWwwFormUrlencoded(&loginPasswdPost, password);
+     istringstream loginPasswdIs( loginPasswdPost );
+     string loginPasswdRes;