Skip to content

impl: verify cli signature #562

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
merged 11 commits into from
Jul 25, 2025
+1,140 −195
Merged

impl: verify cli signature #562

Show file tree
Hide file tree
Changes from 1 commit
Commits
Show all changes
11 commits
Select commit Hold shift + click to select a range
4001f7d
impl: support for downloading and verifying cli signatures
fioan89 Jul 22, 2025
94e74f5
fix: class cast exception
fioan89 Jul 22, 2025
345371f
impl: embed the pgp public key as a plugin resource
fioan89 Jul 22, 2025
c7af603
chore: fix UTs related to CLI downloading
fioan89 Jul 22, 2025
8f5e559
fix: download the correct CLI signature for Windows
fioan89 Jul 22, 2025
ea0e4ea
Merge branch 'main' into impl-verify-cli-signature
fioan89 Jul 22, 2025
5945b6c
chore: next version is 2.22.0
fioan89 Jul 22, 2025
06f0feb
impl: strict URL validation for the connection screen
fioan89 Jul 25, 2025
f8414f9
impl: strict URL validation for the URI handling
fioan89 Jul 25, 2025
8623572
fix: transform to url only after we checked the validation result
fioan89 Jul 25, 2025
8838a8e
chore: update UT expected result
fioan89 Jul 25, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
Prev Previous commit
Next Next commit
impl: strict URL validation for the URI handling 
This commit rejects any URL that is opaque, not hierarchical, not using http or https
protocol, or it misses the hostname.
  • Loading branch information
@fioan89
fioan89 committed Jul 25, 2025
commit f8414f99f93a16bd72b003363a5f4dcdc2d73885
4 changes: 4 additions & 0 deletions src/main/kotlin/com/coder/gateway/util/LinkHandler.kt
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -37,6 +37,10 @@ open class LinkHandler(
if (deploymentURL.isNullOrBlank()) {
throw MissingArgumentException("Query parameter \"$URL\" is missing")
}
val result = deploymentURL.validateStrictWebUrl()
if (result is WebUrlValidationResult.Invalid) {
throw IllegalArgumentException(result.reason)
}

val queryTokenRaw = parameters.token()
val queryToken = if (!queryTokenRaw.isNullOrBlank()) {
Expand Down
16 changes: 11 additions & 5 deletions src/main/kotlin/com/coder/gateway/util/URLExtensions.kt
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -15,12 +15,18 @@ fun URL.withPath(path: String): URL = URL(
if (path.startsWith("/")) path else "/$path",
)

fun URI.validateStrictWebUrl(): WebUrlValidationResult = try {

fun String.validateStrictWebUrl(): WebUrlValidationResult = try {
val uri = URI(this)

when {
isOpaque -> Invalid("$this is opaque, instead of hierarchical")
!isAbsolute -> Invalid("$this is relative, it must be absolute")
scheme?.lowercase() !in setOf("http", "https") -> Invalid("Scheme for $this must be either http or https")
authority.isNullOrBlank() -> Invalid("$this does not have a hostname")
uri.isOpaque -> Invalid("$this is opaque, instead of hierarchical")
!uri.isAbsolute -> Invalid("$this is relative, it must be absolute")
uri.scheme?.lowercase() !in setOf("http", "https") ->
Invalid("Scheme for $this must be either http or https")

uri.authority.isNullOrBlank() ->
Invalid("$this does not have a hostname")
else -> WebUrlValidationResult.Valid
}
} catch (e: Exception) {
Expand Down
6 changes: 3 additions & 3 deletions src/main/kotlin/com/coder/gateway/views/steps/CoderWorkspacesStepView.kt
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -565,9 +565,9 @@ class CoderWorkspacesStepView :
private fun maybeAskTokenThenConnect(error: String? = null) {
val oldURL = fields.coderURL
component.apply() // Force bindings to be filled.
val newURL = fields.coderURL.toURL()
if (settings.requireTokenAuth) {
val result = newURL.toURI().validateStrictWebUrl()
val result = fields.coderURL.validateStrictWebUrl()
val newURL = fields.coderURL.toURL()
if (result is WebUrlValidationResult.Invalid) {
tfUrlComment.apply {
this?.foreground = UIUtil.getErrorForeground()
Expand All @@ -590,7 +590,7 @@ class CoderWorkspacesStepView :
maybeAskTokenThenConnect(it)
}
} else {
connect(newURL, null)
connect(fields.coderURL.toURL(), null)
}
}

Expand Down
41 changes: 24 additions & 17 deletions src/test/kotlin/com/coder/gateway/util/URLExtensionsTest.kt
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -60,57 +60,64 @@ internal class URLExtensionsTest {
)
}
}

@Test
fun `valid http URL should return Valid`() {
val uri = URI("http://coder.com")
val result = uri.validateStrictWebUrl()
val result = "http://coder.com".validateStrictWebUrl()
assertEquals(WebUrlValidationResult.Valid, result)
}

@Test
fun `valid https URL with path and query should return Valid`() {
val uri = URI("https://coder.com/bin/coder-linux-amd64?query=1")
val result = uri.validateStrictWebUrl()
val result = "https://coder.com/bin/coder-linux-amd64?query=1".validateStrictWebUrl()
assertEquals(WebUrlValidationResult.Valid, result)
}

@Test
fun `relative URL should return Invalid with appropriate message`() {
val uri = URI("/bin/coder-linux-amd64")
val result = uri.validateStrictWebUrl()
val url = "/bin/coder-linux-amd64"
val result = url.validateStrictWebUrl()
assertEquals(
WebUrlValidationResult.Invalid("$uri is relative, it must be absolute"),
WebUrlValidationResult.Invalid("$url is relative, it must be absolute"),
result
)
}

@Test
fun `opaque URI like mailto should return Invalid`() {
val uri = URI("mailto:user@coder.com")
val result = uri.validateStrictWebUrl()
val url = "mailto:user@coder.com"
val result = url.validateStrictWebUrl()
assertEquals(
WebUrlValidationResult.Invalid("$uri is opaque, instead of hierarchical"),
WebUrlValidationResult.Invalid("$url is opaque, instead of hierarchical"),
result
)
}

@Test
fun `unsupported scheme like ftp should return Invalid`() {
val uri = URI("ftp://coder.com")
val result = uri.validateStrictWebUrl()
val url = "ftp://coder.com"
val result = url.validateStrictWebUrl()
assertEquals(
WebUrlValidationResult.Invalid("Scheme for $uri must be either http or https"),
WebUrlValidationResult.Invalid("Scheme for $url must be either http or https"),
result
)
}

@Test
fun `http URL with missing authority should return Invalid`() {
val uri = URI("http:///bin/coder-linux-amd64")
val result = uri.validateStrictWebUrl()
val url = "http:///bin/coder-linux-amd64"
val result = url.validateStrictWebUrl()
assertEquals(
WebUrlValidationResult.Invalid("$url does not have a hostname"),
result
)
}

@Test
fun `malformed URI should return Invalid with parsing error message`() {
val url = "http://[invalid-uri]"
val result = url.validateStrictWebUrl()
assertEquals(
WebUrlValidationResult.Invalid("$uri does not have a hostname"),
WebUrlValidationResult.Invalid("$url could not be parsed as a URI reference"),
result
)
}
Expand Down
Loading