hazza/jupyterhub
1
0
Fork 0
mirror of https://github.com/jupyterhub/jupyterhub.git synced 2025-10-13 04:53:01 +00:00
Code Issues Packages Projects Releases Wiki Activity

Do not consider `@' character url-safe

Browse Source 
Usernames that have an `@'-separated domain component
break JupyterHub when the server expects to see query
strings that contain an `@', when browsers and other
clients send `%40'.
This commit is contained in:
Jonathon Anderson
2016-02-24 16:48:23 -07:00
parent 097d883905
commit fc49aac02b
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
jupyterhub/user.py
View File

@@ -146,7 +146,7 @@ class User(HasTraits):
@property @property
def escaped_name(self): def escaped_name(self):
"""My name, escaped for use in URLs, cookies, etc.""" """My name, escaped for use in URLs, cookies, etc."""
return quote(self.name, safe='@') return quote(self.name, safe='')
@gen.coroutine @gen.coroutine
def spawn(self, options=None): def spawn(self, options=None):