Regex bug fix #169
Regex bug fix #169
Conversation
…egex when type="Reg Exp" is selected for a pattern.
|
Hi, Thanks for the PR. The full URL is not available to add-ons from the Firefox WebExtensions API: https://developer.mozilla.org/en-US/docs/Mozilla/Add-ons/WebExtensions/API/proxy/onRequest Only the host, protocol, port, etc are available -- no path info, no query params, etc. This is why the FoxyProxy patttern matcher works the way it does. Also, when you define a pattern in FoxyProxy, you explicitly choose a protocol separately from the domain -- the protocol is not used as part of the regexp pattern matching, as i recall, for that reason. If Firefox has changed the behavior of this API, then I'd be glad to review your PR further. Please let me know. Thanks again for your work! |
|
Hi Eric, The proxy.RequestDetails object has implemented access to the full url (proxy.RequestDetails.url) since Firefox 60. Reference: https://developer.mozilla.org/en-US/docs/Mozilla/Add-ons/WebExtensions/API/proxy/RequestDetails |
proxy.RequestDetails.url has been there since the beginning of the proxy WebExtensions API. Have you actually inspected the value at runtime by logging it to the console, using a breakpoint, or a similar method? Unless something has changed, many of the properties of the URL object are not populated. This was done on purpose so that add-ons could not exfiltrate private info. |
|
Yes, see the step debug below; the functionality is there, and the regex is now applied to the entire uri, and works as expected.
|
I am not sure if I understand the purpose of the request. |
This introduces an additional feature which allows you to regex the authority, or the path, or the query, or the entire url VS just the authority with the current release. In fact, when I installed the addon, I assumed regex meant against the entire URI, and spent over an hour trying to understand why the regular expressions were not working. There are many instances whereby a resource is accessible via a particular path, and you only wish to enable the proxy for that path and not the entire domain. For example, take bbc.co.uk/iplayer - I could set a wildcard for bbc.co.uk but now all traffic for that domain anywhere on the net is routed through the proxy whereas I only want bbc\.co\.uk\/iplayer([\/]?.*) to be routed via proxy. It could be due to a bandwidth cap, or maybe it's a shared proxy and you want to limit the traffic due to security/reliability reasons, or maybe you need a different geolocation to access that particular resource. Now what if I go to foo.com, and it is also getting data from bbc.co.uk, that will also be routed via the proxy, but there is no need for that in this particular scenario. If I want to route an entire domain, then the wildcard type makes sense. Regex is for more granular control, and should not be limited to just the authority. |
|
The concept of proxy is a node between the connection from client (Firefox user) to the target server (target domain). Once that connection is established, the internal pages are irreverent. 📌 In other words, the connection is always to the domain server and it is that server that gets the internal pages and sends them to the client. Furthermore, most pages have elements from other paths within the domain e.g. images, scripts, etc. It would be meaningless to proxy a path that gets its elements from other paths. Additionally, proxy related API such as webRequest.onAuthRequired etc are Firefox also caches the details and sends the subsequent requests to the same host via the same connection and using the same authentication. |
Not really sure what you're alluding to with this truism. From what I understand, Foxyproxy does re-routing per URI, not per instance. If you want instance re-routing, use Firefox's internal proxy feature.
Your points are also applicable to wildcard domains too. This is another feature I am considering BTW, rather than redirecting on a per URI basis, proxy re-routing is done per tab. |
|
FoxyProxy worked in this manner before the Firefox WebExtensions API (versions 4.6.5 and earlier). The behavior only changed because the WebExtensions Proxy API did not expose the complete URL. If it is now exposed, I think this is great news. The current behavior of switching proxy by domain is inherently supported, @erosman, so I don't see the harm in supporting switching other URL components. However, I worry that existing users may be affected in ways they do not anticipate. @Faris-07, are there existing patterns that might yield different results when applied to a complete URL rather than just the domain?
This is indeed concerning since the pattern matching would not be consistent between auth and proxy selection. I am not sure how to resolve this. |
It should work as expected as long as no boundaries are being set. For example,
Can you give me a scenario where this is a problem ? and how it correlates to the fix I have submitted ? I am just wondering whether this is specific to the regex, a design issue, or a limitation of the API. |
|
By the way, here is the bug where this was changed.
It is mentioned in the Pattern Help page within the add-on, but it is buried and not intuitive. Read the pink callout in this screenshot:
That is bad. So this is a breaking change and needs to alert users who upgrade. We need to increase the version to 8.x. There is logic in the addon to display the release notes page after an upgrade. It even distinguishes between upgrades vs new installs. We need to use that same logic to alert users about this breaking change with figurative flashing red lights and dance music. Ideally, it works like this:
No idea but certainly greater than zero! |
|
What is the purpose of Proxy? The primary purpose of proxy is to hide client's real IP/location from target server. A secondary purpose is to bypass local restrictions from local ISP. The remote IP is seen, and recorded if needed, by the server e.g. Servers track users via IP and often record data in form of cookies and stored data. A cookie with IP (and/or login credentials) placed at Once a user connects to Users often attempt to login in with multiple usernames to sites or games. Therefore, servers often keep track of users IP/Location. Furthermore, many servers track IP/Location for security reason. That is when a user from UK gets an email or notice that someone tried to access their server/site from Vietnam. Many servers ban such behaviour. I am aware of a number of such sites/servers that actively ban users who attempts to fool the server with different IP/Location. To cut the long story short, proxies on path defeats the purpose of the proxy use as everything is tied to the main domain. The server at the main domain sees all. That is the reason, many browser APIs are tied to the host as otherwise is meaningless. While the full URL is available in some API, that is for information. |
|
@erosman, no one is denying any of these issues, however, people should be given the freedom to do as they wish with the tool. My proxy service isn't as reliable, and has capped behaviour; I only need geolocation services so path regex works fine. |
Heh. We can dream, right ? Agreed, users should be notified of breaking behaviour. I will whip something up in the coming days. Since you are going for v8.x then maybe there are some other things we can consider. Here are some suggestions, please share your thoughts:
|
|
The matching process has changed in FoxyProxy v8.0 (once released). Patterns can match the entire URL, if needed. Therefore, e.g.: Wildcard Regular expression |
This is a bug fix PR. The regex patterns do not work when resolving browser URI requests, nor does it function when using the pattern tester.
The cause is due to no checking being performed on the type and all requests defaulting to PATTERN_TYPE_WILDCARD, and thus only checking the host of a given URI and not the full URI.
I have added code that will check whether the pattern type is either a wildcard or regex, and return the appropriate URI string.
I am currently using it in production on some nix machines on Firefox 97, and it is functioning as intended.