Uploaded image for project: 'Tika'
  1. Tika
  2. TIKA-2081

Add back 'fileUrl' functionality to TikaJAXRS Server subject to security controls

    XMLWordPrintableJSON

Details

    • Task
    • Status: Resolved
    • Minor
    • Resolution: Fixed
    • 1.13
    • 1.14, 2.0.0
    • server

    • All versions

    Description

      Add back 'fileUrl' functionality from version 1.9 to TikaJAXRS Server subject to additional security controls:

      disable by default
      only enable if appropriate configuration flags are specified
      when enabled print warning displaying at least CVE ID: CVE-2015-3271.

      as discussed on dev@tika.apache.org mailing list under title "Query on correct use of 'fileUrl' in TikaJAXRS Server to extract document at remote url - my request is not working".

      Attachments

        Issue Links

          is related to

          Improvement - An improvement or enhancement to an existing feature or task. TIKA-1627 Authentication for fileUrl

          • Major - Major loss of function.
          • Resolved

          Activity

            People

              tallison Tim Allison
              JDL John Dougrez-Lewis
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: