Cherry pick branch 'genexuslabs:440UnknownReason' into beta

iroqueta · iroqueta · commit 7f381fa347c4 · 2023-06-14T10:17:38.000-03:00
diff --git a/java/src/main/java/com/genexus/webpanels/HttpContextWeb.java b/java/src/main/java/com/genexus/webpanels/HttpContextWeb.java
@@ -1442,7 +1442,7 @@ private void addSameSiteCookieAttribute(IHttpServletResponse response) {
 		boolean firstHeader = true;
 		for (String header : headers) {
 			if (firstHeader) {
-				response.setHeader(SET_COOKIE, String.format("%s; %s", header, "SameSite="+sameSiteMode));
+				response.setHeader(SET_COOKIE, String.format("%s; %s", header, "SameSite="+sameSiteMode), false);
 				firstHeader = false;
 				continue;
 			}
diff --git a/wrappercommon/src/main/java/com/genexus/servlet/http/IHttpServletResponse.java b/wrappercommon/src/main/java/com/genexus/servlet/http/IHttpServletResponse.java
@@ -9,6 +9,7 @@
 
 public interface IHttpServletResponse {
 	void setHeader(String name, String value);
+	void setHeader(String name, String value, boolean sanitize);
 	void addDateHeader(String name, long date);
 	void setDateHeader(String name, long date);
 	void addHeader(String name, String value);
diff --git a/wrapperjakarta/src/main/java/com/genexus/servlet/http/HttpServletResponse.java b/wrapperjakarta/src/main/java/com/genexus/servlet/http/HttpServletResponse.java
@@ -24,7 +24,14 @@ public jakarta.servlet.http.HttpServletResponse getWrappedClass() {
 	}
 
 	public void setHeader(String name, String value) {
-		resp.setHeader(name, CommonUtil.Sanitize(value, CommonUtil.HTTP_HEADER_WHITELIST));
+		setHeader(name, value, true);
+	}
+
+	public void setHeader(String name, String value, boolean sanitize) {
+		if (sanitize)
+			resp.setHeader(name, CommonUtil.Sanitize(value, CommonUtil.HTTP_HEADER_WHITELIST));
+		else
+			resp.setHeader(name, value);
 	}
 
 	public void addDateHeader(String name, long date) {
diff --git a/wrapperjavax/src/main/java/com/genexus/servlet/http/HttpServletResponse.java b/wrapperjavax/src/main/java/com/genexus/servlet/http/HttpServletResponse.java
@@ -24,7 +24,14 @@ public javax.servlet.http.HttpServletResponse getWrappedClass() {
 	}
 
 	public void setHeader(String name, String value) {
-		resp.setHeader(name, CommonUtil.Sanitize(value, CommonUtil.HTTP_HEADER_WHITELIST));
+		setHeader(name, value, true);
+	}
+
+	public void setHeader(String name, String value, boolean sanitize) {
+		if (sanitize)
+			resp.setHeader(name, CommonUtil.Sanitize(value, CommonUtil.HTTP_HEADER_WHITELIST));
+		else
+			resp.setHeader(name, value);
 	}
 
 	public void addDateHeader(String name, long date) {

Original file line number	Diff line number	Diff line change
`@@ -1442,7 +1442,7 @@ private void addSameSiteCookieAttribute(IHttpServletResponse response) {`
`1442`	`1442`	`boolean firstHeader = true;`
`1443`	`1443`	`for (String header : headers) {`
`1444`	`1444`	`if (firstHeader) {`
`1445`		`- response.setHeader(SET_COOKIE, String.format("%s; %s", header, "SameSite="+sameSiteMode));`
	`1445`	`+ response.setHeader(SET_COOKIE, String.format("%s; %s", header, "SameSite="+sameSiteMode), false);`
`1446`	`1446`	`firstHeader = false;`
`1447`	`1447`	`continue;`
`1448`	`1448`	`}`
Original file line number	Diff line number	Diff line change
`@@ -24,7 +24,14 @@ public jakarta.servlet.http.HttpServletResponse getWrappedClass() {`
`24`	`24`	`}`
`25`	`25`
`26`	`26`	`public void setHeader(String name, String value) {`
`27`		`- resp.setHeader(name, CommonUtil.Sanitize(value, CommonUtil.HTTP_HEADER_WHITELIST));`
	`27`	`+ setHeader(name, value, true);`
	`28`	`+ }`
	`29`	`+`
	`30`	`+ public void setHeader(String name, String value, boolean sanitize) {`
	`31`	`+ if (sanitize)`
	`32`	`+ resp.setHeader(name, CommonUtil.Sanitize(value, CommonUtil.HTTP_HEADER_WHITELIST));`
	`33`	`+ else`
	`34`	`+ resp.setHeader(name, value);`
`28`	`35`	`}`
`29`	`36`
`30`	`37`	`public void addDateHeader(String name, long date) {`
Original file line number	Diff line number	Diff line change
`@@ -24,7 +24,14 @@ public javax.servlet.http.HttpServletResponse getWrappedClass() {`
`24`	`24`	`}`
`25`	`25`
`26`	`26`	`public void setHeader(String name, String value) {`
`27`		`- resp.setHeader(name, CommonUtil.Sanitize(value, CommonUtil.HTTP_HEADER_WHITELIST));`
	`27`	`+ setHeader(name, value, true);`
	`28`	`+ }`
	`29`	`+`
	`30`	`+ public void setHeader(String name, String value, boolean sanitize) {`
	`31`	`+ if (sanitize)`
	`32`	`+ resp.setHeader(name, CommonUtil.Sanitize(value, CommonUtil.HTTP_HEADER_WHITELIST));`
	`33`	`+ else`
	`34`	`+ resp.setHeader(name, value);`
`28`	`35`	`}`
`29`	`36`
`30`	`37`	`public void addDateHeader(String name, long date) {`