Implement workaround for django bug #15152 for badly encoded URLs

Hopefully this will stop the system spamming us..
2025-08-13 13:12:42 +00:00 · 2014-06-03 09:24:43 +02:00
parent 8c4898e988
commit 596520ba13
2 changed files with 16 additions and 1 deletions
--- a/pgweb/util/middleware.py
+++ b/pgweb/util/middleware.py
@ -1,4 +1,4 @@
-from django.http import HttpResponseRedirect
+from django.http import HttpResponseRedirect, HttpResponse
 from django.conf import settings

 # Use thread local storage to pass the username down. 
@ -78,3 +78,17 @@ class PgMiddleware(object):
 					return HttpResponseRedirect(redirect_to)
 				else:
 					return None
+
+
+
+# Protection middleware against badly encoded query strings.
+# We could probably block this in the webserver further out, but this
+# is a quick-fix. From django ticket #15152.
+class RequestCheckMiddleware(object):
+	def process_request(self, request):
+		try:
+			u'%s' % request.META.get('QUERY_STRING','')
+		except UnicodeDecodeError:
+			response = HttpResponse()
+			response.status_code = 400  #Bad Request
+			return response