forked/reqwest-impersonate
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix panic in removing Authorization header during redirect

Browse Source 
Closes #171
This commit is contained in:
Sean McArthur
2017-07-24 18:16:44 -07:00
parent 2d11a4bd71
commit cf246d072b
1 changed files with 4 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
src/redirect.rs
View File

@@ -1,6 +1,6 @@
use std::fmt;
use hyper::header::{Headers, Authorization, Cookie};
use hyper::header::{Headers};
use Url;
@@ -198,8 +198,8 @@ pub fn remove_sensitive_headers(headers: &mut Headers, next: &Url, previous: &[U
let cross_host = next.host_str() != previous.host_str() ||
next.port_or_known_default() != previous.port_or_known_default();
if cross_host {
headers.remove::<Authorization<String>>();
headers.remove::<Cookie>();
headers.remove_raw("authorization");
headers.remove_raw("cookie");
headers.remove_raw("cookie2");
headers.remove_raw("www-authenticate");
}
@@ -260,7 +260,7 @@ fn test_redirect_policy_custom() {
#[test]
fn test_remove_sensitive_headers() {
use hyper::header::Accept;
use hyper::header::{Accept, Authorization, Cookie};
let mut headers = Headers::new();
headers.set(Accept::star());