diff options
| author | travis%sedsystems.ca <> | 2005-01-13 02:06:10 +0100 |
|---|---|---|
| committer | travis%sedsystems.ca <> | 2005-01-13 02:06:10 +0100 |
| commit | 889d3425c6b9f7fa1434c19257455ae0f131c76e (patch) | |
| tree | 5730e8978eb6ae5752155465befac00b1fde3d9c /buglist.cgi | |
| parent | a037f115710a713258ed3cc0fe0c233076963315 (diff) | |
| download | bugzilla-889d3425c6b9f7fa1434c19257455ae0f131c76e.tar.gz bugzilla-889d3425c6b9f7fa1434c19257455ae0f131c76e.tar.xz | |
Bug 275108 : Content-disposition header is incorrect, violates RFC
Patch by byron jones (glob) <bugzilla@glob.com.au> r=mkanat a=justdave
Diffstat (limited to 'buglist.cgi')
| -rwxr-xr-x | buglist.cgi | 8 |
1 files changed, 6 insertions, 2 deletions
diff --git a/buglist.cgi b/buglist.cgi index 79504d635..569cfdc9f 100755 --- a/buglist.cgi +++ b/buglist.cgi @@ -740,9 +740,13 @@ if ($::FORM{'debug'}) { # Time to use server push to display an interim message to the user until # the query completes and we can display the bug list. +my $disposition = ''; if ($serverpush) { - print $cgi->multipart_init(-content_disposition => "inline; filename=$filename"); + $filename =~ s/\\/\\\\/g; # escape backslashes + $filename =~ s/"/\\"/g; # escape quotes + $disposition = qq#inline; filename="$filename"#; + print $cgi->multipart_init(-content_disposition => $disposition); print $cgi->multipart_start(); # Generate and return the UI (HTML page) from the appropriate template. @@ -992,7 +996,7 @@ if ($format->{'extension'} eq "csv") { if ($serverpush) { # close the "please wait" page, then open the buglist page print $cgi->multipart_end(); - print $cgi->multipart_start(-type=>$contenttype); + print $cgi->multipart_start(-type => $contenttype, -content_disposition => $disposition); } else { # Suggest a name for the bug list if the user wants to save it as a file. # If we are doing server push, then we did this already in the HTTP headers |