http: prevent custom Authorization headers in redirects

... unless CURLOPT_UNRESTRICTED_AUTH is set to allow them. This matches how curl already handles Authorization headers created internally. Note: this changes behavior slightly, for the sake of reducing mistakes. Added test 317 and 318 to verify. Reported-by: Craig de Stigter Bug: https://curl.haxx.se/docs/adv_2018-b3bf.html
author: Daniel Stenberg <daniel@haxx.se> 2018-01-19 13:19:25 +0100
committer: Daniel Stenberg <daniel@haxx.se> 2018-01-22 10:00:00 +0100
commit: af32cd3859336ab963591ca0df9b1e33a7ee066b (patch)
tree: ae91ca52a3cbbfabe89c74dda181abbbc40c1150 /tests/data/Makefile.inc
parent: 993dd5651a6c853bfe3870f6a69c7b329fa4e8ce (diff)
1 files changed, 1 insertions, 1 deletions
diff --git a/tests/data/Makefile.inc b/tests/data/Makefile.inc
index 7e3ca25d5..a2cf70bcd 100644
--- a/tests/data/Makefile.inc
+++ b/tests/data/Makefile.inc
@@ -55,7 +55,7 @@ test280 test281 test282 test283 test284 test285 test286 test287 test288 \
 test289 test290 test291 test292 test293 test294 test295 test296 test297 \
 test298 test299 test300 test301 test302 test303 test304 test305 test306 \
 test307 test308 test309 test310 test311 test312 test313 test314 test315 \
-test316                         test320 test321 test322 test323 test324 \
+test316 test317 test318         test320 test321 test322 test323 test324 \
 test325 \
 test350 test351 test352 test353 test354 \
 test393 test394 test395 \
author	Daniel Stenberg <daniel@haxx.se>	2018-01-19 13:19:25 +0100
committer	Daniel Stenberg <daniel@haxx.se>	2018-01-22 10:00:00 +0100
commit	af32cd3859336ab963591ca0df9b1e33a7ee066b (patch)
tree	ae91ca52a3cbbfabe89c74dda181abbbc40c1150 /tests/data/Makefile.inc
parent	993dd5651a6c853bfe3870f6a69c7b329fa4e8ce (diff)