feat: add capability to handle http requests with repeated slashes #258
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -3,7 +3,9 @@ | |
|
|
||
| use super::{repos, tags, trees, users}; | ||
|
|
||
| use drawbridge_type::{RepositoryName, TagName, TreeName, TreePath, UserName}; | ||
|
|
||
| use std::str::FromStr; | ||
|
|
||
| use axum::body::Body; | ||
| use axum::handler::Handler; | ||
|
|
@@ -28,7 +30,7 @@ pub async fn handle(mut req: Request<Body>) -> impl IntoResponse { | |
| } | ||
|
|
||
| trace!(target: "app::handle", "begin HTTP request handling {:?}", req); | ||
| let path = req.uri().path().trim_matches('/'); | ||
| let (ver, path) = path | ||
| .strip_prefix("api") | ||
| .ok_or_else(|| not_found(path))? | ||
|
|
@@ -52,23 +54,29 @@ pub async fn handle(mut req: Request<Body>) -> impl IntoResponse { | |
| let (head, tail) = path | ||
| .trim_start_matches('/') | ||
| .split_once("/_") | ||
| .map(|(left, right)| (left.trim_end_matches('/').to_string(), format!("_{right}"))) | ||
| .unwrap_or((path.to_string(), "".to_string())); | ||
| if head.is_empty() { | ||
| return Err(not_found(path)); | ||
| } | ||
|
|
||
| let extensions = req.extensions_mut(); | ||
|
|
||
| let (user, head) = head | ||
| .split_once('/') | ||
| .unwrap_or((head.trim_start_matches('/'), "")); | ||
| let user = user | ||
| .trim_end_matches('/') | ||
| .parse::<UserName>() | ||
| .map_err(|e| { | ||
| ( | ||
| StatusCode::BAD_REQUEST, | ||
| format!("Failed to parse user name: {e}"), | ||
| ) | ||
| })?; | ||
| trace!(target: "app::handle", "parsed user name: `{user}`"); | ||
| assert_eq!(extensions.insert(user), None, "duplicate user name"); | ||
| let head = head.trim_start_matches('/'); | ||
| if head.is_empty() { | ||
| return match *req.method() { | ||
| Method::HEAD => Ok(users::head.into_service().call(req).await.into_response()), | ||
|
|
@@ -81,16 +89,20 @@ pub async fn handle(mut req: Request<Body>) -> impl IntoResponse { | |
| }; | ||
| } | ||
|
|
||
| let repo = head | ||
| .trim_end_matches('/') | ||
| .parse::<RepositoryName>() | ||
| .map_err(|e| { | ||
| ( | ||
| StatusCode::BAD_REQUEST, | ||
| format!("Failed to parse repository name: {e}"), | ||
| ) | ||
| })?; | ||
| trace!(target: "app::handle", "parsed repository name: `{repo}`"); | ||
| assert_eq!(extensions.insert(repo), None, "duplicate repository name"); | ||
|
|
||
| let mut tail = tail.split('/').filter(|x| !x.is_empty()); | ||
|
|
||
| match (tail.next(), tail.next(), tail.next()) { | ||
| (None | Some(""), None, None) => match *req.method() { | ||
| Method::HEAD => Ok(repos::head.into_service().call(req).await.into_response()), | ||
|
|
@@ -109,12 +121,16 @@ pub async fn handle(mut req: Request<Body>) -> impl IntoResponse { | |
| )), | ||
| }, | ||
| (Some("_tag"), Some(tag), prop @ (None | Some("tree"))) => { | ||
| let tag = tag | ||
| .trim_start_matches('/') | ||
| .trim_end_matches('/') | ||
| .parse::<TagName>() | ||
| .map_err(|e| { | ||
| ( | ||
| StatusCode::BAD_REQUEST, | ||
| format!("Failed to parse tag name: {e}"), | ||
| ) | ||
| })?; | ||
| trace!(target: "app::handle", "parsed tag name: `{tag}`"); | ||
| assert_eq!(extensions.insert(tag), None, "duplicate tag name"); | ||
|
|
||
|
|
@@ -130,12 +146,15 @@ pub async fn handle(mut req: Request<Body>) -> impl IntoResponse { | |
| }; | ||
| } | ||
|
|
||
| let path = tail | ||
| .map(TreeName::from_str) | ||
| .collect::<Result<TreePath, _>>() | ||
| .map_err(|e| { | ||
| ( | ||
| StatusCode::BAD_REQUEST, | ||
| format!("Failed to parse tree path: {e}"), | ||
| ) | ||
| })?; | ||
| trace!(target: "app::handle", "parsed tree path: `{path}`"); | ||
| assert_eq!(extensions.insert(path), None, "duplicate tree path"); | ||
| match *req.method() { | ||
|
|
@@ -154,3 +173,58 @@ pub async fn handle(mut req: Request<Body>) -> impl IntoResponse { | |
| )), | ||
| } | ||
| } | ||
|
|
||
| #[async_std::test] | ||
| async fn multiple_slashes_missing() { | ||
| let request = Request::builder() | ||
| .uri("https://www.rust-lang.org/") | ||
| .header("User-Agent", "my-awesome-agent/1.0") | ||
| .body(hyper::Body::empty()); | ||
| println!("{:?}", request); | ||
|
|
||
|
|
||
| let res = handle(request.unwrap()).await; | ||
|
|
||
| // Temporary print to ensure test is working as intended. | ||
| // println!("{}", res.into_response().status()); | ||
|
|
||
| assert_eq!(res.into_response().status(), 404); | ||
|
|
||
| let request = Request::builder() | ||
| .uri("https://www.rust-lang.org///") | ||
| .header("User-Agent", "my-awesome-agent///1.0") | ||
|
|
||
| .body(hyper::Body::empty()); | ||
| println!("{:?}", request); | ||
|
|
||
| let res = handle(request.unwrap()).await; | ||
|
|
||
| // Temporary print to ensure test is working as intended. | ||
| // println!("{}", res.into_response().status()); | ||
| assert_eq!(res.into_response().status(), 404); | ||
| return (); | ||
| } | ||
|
|
||
| /// Unit test to handle multiple slash path parsing | ||
| #[async_std::test] | ||
| async fn multiple_slashes_found() { | ||
| let request = Request::builder() | ||
| .uri("http://httpbin.org/ip") | ||
| .body(hyper::Body::empty()); | ||
| println!("{:?}", request); | ||
|
|
||
| let res = handle(request.unwrap()).await; | ||
|
|
||
| // Temporary print to ensure test is working as intended. | ||
| // println!("{}", res.into_response().status()); | ||
| assert_eq!(res.into_response().status(), 404); | ||
|
|
||
| let request = Request::builder() | ||
| .uri("http://httpbin.org///ip") | ||
| .body(hyper::Body::empty()); | ||
| println!("{:?}", request); | ||
|
|
||
| let res = handle(request.unwrap()).await; | ||
|
|
||
| // Temporary print to ensure test is working as intended. | ||
| // println!("{}", res.into_response().status()); | ||
| assert_eq!(res.into_response().status(), 404); | ||
| return (); | ||
| } | ||
|
Comment on lines
+176
to
+230
There was a problem hiding this comment. If we want to have unit tests in this file, they have to reside in It could also be a better idea to write a test for this in https://github.com/profianinc/drawbridge/blob/f03fb5815f28f5196ff4c93c4137791dc6aab67b/tests/mod.rs instead. Basically we need to just test at least one URL, something like: https://store.profian.com//api////v0.2.0////examples//////fibonacci-rust////_tag///0.2.0//tree//PATH/////IN/TREE if that works, we can assume that everything works. |
||
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
This is redundant due to the
splitand thefilter. You'll never get slashes here.BTW, just FYI,
trim_matchestrims from both sides