homelab/traefik
1
0
Fork 0
Code Activity

Clarify doc about encodedCharacters rejection

Browse source
This commit is contained in:
Romain 2025-12-09 15:28:04 +01:00 committed by GitHub
parent 351dcbd186
commit e0e49533ab
No known key found for this signature in database
GPG key ID: B5690EEEBB952194
2 changed files with 9 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

7
docs/content/routing/entrypoints.md
View file

@ -1021,7 +1021,12 @@ entryPoints:
### Encoded Characters
You can configure Traefik to control the handling of encoded characters in request paths for security purposes.
By default, Traefik rejects requests containing certain encoded characters that could be used in path traversal or other security attacks.
By default, Traefik rejects requests with path containing certain encoded characters that could be used in path traversal or other security attacks.
!!! info
This check is not done against the request query parameters,
but only against the request path as defined in [RFC3986 section-3](https://datatracker.ietf.org/doc/html/rfc3986#section-3).
!!! warning "Security Considerations"