Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Fix Pages duplicating hash in redirects #6680

Merged
merged 2 commits into from
Sep 11, 2024
Merged

Fix Pages duplicating hash in redirects #6680

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
2 commits
Select commit Hold shift + click to select a range
8acab3b
Fix Pages duplicating hash in redirects
WalshyDev Sep 11, 2024
a287f4b
Fix issue where an incoming query string got lost in a hash redirect
WalshyDev Sep 11, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
5 changes: 5 additions & 0 deletions .changeset/eighty-birds-kiss.md
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,5 @@
---
"@cloudflare/pages-shared": patch
---

fix: fix Pages redirects going to a hash location to be duped. This means if you have a rule like `/foo/bar /foo#bar` it will no longer result in `/foo#bar#bar` but the correct `/foo#bar`.
162 changes: 128 additions & 34 deletions packages/pages-shared/__tests__/asset-server/handler.test.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -390,40 +390,6 @@ describe("asset-server handler", () => {
});
}

// test("Returns a redirect without duplicating the hash component", async () => {
// const { response, spies } = await getTestResponse({
// request: "https://foo.com/bar",
// metadata: createMetadataObjectWithRedirects([
// { from: "/bar", to: "https://foobar.com/##heading-7", status: 301 },
// ]),
// });

// expect(spies.fetchAsset).toBe(0);
// expect(spies.findAssetEntryForPath).toBe(0);
// expect(spies.getAssetKey).toBe(0);
// expect(spies.negotiateContent).toBe(0);
// expect(response.status).toBe(301);
// expect(response.headers.get("Location")).toBe(
// "https://foobar.com/##heading-7"
// );
// });

test("it should redirect uri-encoded paths", async () => {
const { response, spies } = await getTestResponse({
request: "https://foo.com/some%20page",
metadata: createMetadataObjectWithRedirects([
{ from: "/some%20page", to: "/home", status: 301 },
]),
});

expect(spies.fetchAsset).toBe(0);
expect(spies.findAssetEntryForPath).toBe(0);
expect(spies.getAssetKey).toBe(0);
expect(spies.negotiateContent).toBe(0);
expect(response.status).toBe(301);
expect(response.headers.get("Location")).toBe("/home");
});

// test("getResponseFromMatch - same origin paths specified as root-relative", () => {
// const res = getResponseFromMatch(
// {
Expand Down Expand Up @@ -920,6 +886,134 @@ describe("asset-server handler", () => {
);
});
});

describe("redirects", () => {
test("it should redirect uri-encoded paths", async () => {
const { response, spies } = await getTestResponse({
request: "https://foo.com/some%20page",
metadata: createMetadataObjectWithRedirects([
{ from: "/some%20page", to: "/home", status: 301 },
]),
});

expect(spies.fetchAsset).toBe(0);
expect(spies.findAssetEntryForPath).toBe(0);
expect(spies.getAssetKey).toBe(0);
expect(spies.negotiateContent).toBe(0);
expect(response.status).toBe(301);
expect(response.headers.get("Location")).toBe("/home");
});

test("redirects to a query string same-origin", async () => {
const { response } = await getTestResponse({
request: "https://foo.com/bar",
metadata: createMetadataObjectWithRedirects([
{ from: "/bar", to: "/?test=abc", status: 301 },
]),
});

expect(response.status).toBe(301);
expect(response.headers.get("Location")).toBe("/?test=abc");
});

test("redirects to a query string cross-origin", async () => {
const { response } = await getTestResponse({
request: "https://foo.com/bar",
metadata: createMetadataObjectWithRedirects([
{ from: "/bar", to: "https://foobar.com/?test=abc", status: 301 },
]),
});

expect(response.status).toBe(301);
expect(response.headers.get("Location")).toBe(
"https://foobar.com/?test=abc"
);
});

test("redirects to hash component same-origin", async () => {
const { response } = await getTestResponse({
request: "https://foo.com/bar",
metadata: createMetadataObjectWithRedirects([
{ from: "/bar", to: "https://foo.com/##heading-7", status: 301 },
]),
});

expect(response.status).toBe(301);
expect(response.headers.get("Location")).toBe("/##heading-7");
});

test("redirects to hash component cross-origin", async () => {
const { response } = await getTestResponse({
request: "https://foo.com/bar",
metadata: createMetadataObjectWithRedirects([
{ from: "/bar", to: "https://foobar.com/##heading-7", status: 301 },
]),
});

expect(response.status).toBe(301);
expect(response.headers.get("Location")).toBe(
"https://foobar.com/##heading-7"
);
});

test("redirects to a query string and hash same-origin", async () => {
const { response } = await getTestResponse({
request: "https://foo.com/bar",
metadata: createMetadataObjectWithRedirects([
{ from: "/bar", to: "/?test=abc#def", status: 301 },
]),
});

expect(response.status).toBe(301);
expect(response.headers.get("Location")).toBe("/?test=abc#def");
});
WalshyDev marked this conversation as resolved.
Show resolved Hide resolved

test("redirects to a query string and hash cross-origin", async () => {
const { response } = await getTestResponse({
request: "https://foo.com/bar",
metadata: createMetadataObjectWithRedirects([
{ from: "/bar", to: "https://foobar.com/?test=abc#def", status: 301 },
]),
});

expect(response.status).toBe(301);
expect(response.headers.get("Location")).toBe(
"https://foobar.com/?test=abc#def"
);
});

// Query strings must be before the hash to be considered query strings
// https://www.rfc-editor.org/rfc/rfc3986#section-4.1
// Behaviour in Chrome is that the .hash is "#def?test=abc" and .search is ""
test("redirects to a query string and hash against rfc", async () => {
const { response } = await getTestResponse({
request: "https://foo.com/bar",
metadata: createMetadataObjectWithRedirects([
{ from: "/bar", to: "https://foobar.com/#def?test=abc", status: 301 },
]),
});

expect(response.status).toBe(301);
expect(response.headers.get("Location")).toBe(
"https://foobar.com/#def?test=abc"
);
});

// Query string needs to be _before_ the hash
test("redirects to a hash with an incoming query cross-origin", async () => {
const { response } = await getTestResponse({
request: "https://foo.com/bar?test=abc",
metadata: createMetadataObjectWithRedirects([
{ from: "/bar", to: "https://foobar.com/#heading", status: 301 },
]),
});

expect(response.status).toBe(301);
expect(response.headers.get("Location")).toBe(
"https://foobar.com/?test=abc#heading"
);
});
});
});

interface HandlerSpies {
Expand Down
7 changes: 4 additions & 3 deletions packages/pages-shared/asset-server/handler.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -227,9 +227,10 @@ export async function generateHandler<
? `${destination.pathname}${destination.search || search}${
destination.hash
}`
: `${destination.href}${destination.search ? "" : search}${
destination.hash
}`;
: `${destination.href.slice(0, destination.href.length - (destination.search.length + destination.hash.length))}${
destination.search ? destination.search : search
}${destination.hash}`;

switch (status) {
case 301:
return new MovedPermanentlyResponse(location, undefined, {
Expand Down
Loading