[Routing] support scheme requirement without redirectable dumped matcher #26304
Conversation
5b3e320 to
2bcc2a9
Compare
|
|
||
| return \$this->redirect(\$rawPathinfo, \$ret['_route'], key(\$requiredSchemes)) + \$ret; | ||
| if (\$requiredMethods && !isset(\$requiredMethods[\$canonicalMethod]) && !isset(\$requiredMethods[\$requestMethod])) { | ||
| \$allow += \$requiredMethods; |
There was a problem hiding this comment.
By checking requirements before methods, we fixed an issue where a 405 is triggered while a scheme requirement is not met. Shouldn't we keep this fixed behavior, ie check methods last?
There was a problem hiding this comment.
I also thought about this alot. There are cases were it's not optimal in both cases.
Request GET http /
Route POST https /
If you check the scheme first instead of the method. It will try to make a redirect from http to https although the route requires POST which is not met.
So I think checking method first is better as getting a 405 instead of a 404 for the case you explained does not really matter. Also this order is what was implemented by UrlMatcher. So it makes it more consistent.
| $pathinfo = '/' !== $pathinfo[-1] ? $pathinfo.'/' : substr($pathinfo, 0, -1); | ||
| if ($ret = $this->doMatch($pathinfo)) { | ||
| return $this->redirect($pathinfo, $ret['_route']) + $ret; | ||
| if (in_array($this->context->getMethod(), array('HEAD', 'GET'), true)) { |
There was a problem hiding this comment.
this file is dumped in the root namespace
We would still need to pass the var to |
|
ready for rebase |
91ecd89 to
cbbc3e2
Compare
|
Rebased |
|
|
||
| if (\$requiredMethods && !isset(\$requiredMethods[\$canonicalMethod]) && !isset(\$requiredMethods[\$requestMethod])) { | ||
| \$allow += \$requiredMethods; | ||
| if (\$requiredSchemes && !\$hasRequiredScheme) { |
There was a problem hiding this comment.
if (!\$hasRequiredScheme) { would be enough here
| @@ -53,7 +53,7 @@ public function testSchemeRedirect() | |||
| 'scheme' => 'https', | |||
| 'httpPort' => $context->getHttpPort(), | |||
| 'httpsPort' => $context->getHttpsPort(), | |||
| '_route' => 'foo', | |||
| '_route' => null, | |||
There was a problem hiding this comment.
this change breaks the 3.4 test suite, can't we do without?
There was a problem hiding this comment.
We don't know the route that would match, unless we do a new match like for trailing slash. Also the way it worked was not reliable anyway. When you have a condition that didn't match because of the scheme but now matches with a different scheme, this route can be before the route that caused the redirect. So the actual route that will match might not be the one that was passed here at all.
There was a problem hiding this comment.
we still need to make the currently failing test green before merging...
735bc1d to
7154ec1
Compare
7154ec1 to
8c36250
Compare
beec4f7 to
ddb5be6
Compare
|
@Tobion scheme redirection now does a match before, similar to trailing slash redirection. I also added another redirection, doing a trailing slash + scheme redirection when possible. |
8b3bc06 to
afc6254
Compare
| $this->allow = array_merge($this->allow, $requiredMethods); | ||
| } | ||
|
|
||
| continue; | ||
| } | ||
| } | ||
|
|
||
| return $this->getAttributes($route, $name, array_replace($matches, $hostMatches, isset($status[1]) ? $status[1] : array())); | ||
| $ret = $this->getAttributes($route, $name, array_replace($matches, $hostMatches, isset($status[1]) ? $status[1] : array())); |
There was a problem hiding this comment.
what's the reason for doing that before the $hasRequiredScheme check?
There was a problem hiding this comment.
reverted, was a leftover from previous iteration
afc6254 to
2e27658
Compare
|
Please add a test for scheme + trailing slash redirect. Then good to merge. |
2e27658 to
f9b54c5
Compare
|
Thank you @Tobion. |
…ble dumped matcher (Tobion)
This PR was merged into the 4.1-dev branch.
Discussion
----------
[Routing] support scheme requirement without redirectable dumped matcher
| Q | A
| ------------- | ---
| Branch? | master
| Bug fix? | yes
| New feature? | yes
| BC breaks? | no
| Deprecations? | no <!-- don't forget to update UPGRADE-*.md files -->
| Tests pass? | yes <!-- please add some, will be required by reviewers -->
| Fixed tickets |
| License | MIT
| Doc PR |
The scheme handling was just redirecting immediately without testing the other routes at all for potential matches. This can cause Problems when you try to have different routes/controllers for the same path but different schemes. See added test.
```
$coll = new RouteCollection();
$coll->add('https_route', new Route('/', array(), array(), array(), '', array('https')));
$coll->add('http_route', new Route('/', array(), array(), array(), '', array('http')));
$matcher = $this->getUrlMatcher($coll);
$this->assertEquals(array('_route' => 'http_route'), $matcher->match('/'));
```
Instead of matching the right route, it would redirect immediatly as soon as it hits the first route.
This does not make sense and is not consistent with the other logic. Redirection should only happen when nothing matches. While fixing this I could also remove the limitation
> throw new \LogicException('The "schemes" requirement is only supported for URL matchers that implement RedirectableUrlMatcherInterface.');
If redirection is not possible, the wrong scheme will just not match the route. This is the same as already implemented by UrlMatcher (not RedirecableUrlMatcher). If redirection is supported, it will redirect to the first supported scheme if no other route matches. This makes the implementation similar to redirection for trailing slash and handling not allowed methods.
Also previously, the scheme redirection was done for non-safe verbs which shouldn't happen as well, ref. #25962
Commits
-------
f9b54c5 [Routing] support scheme requirement without redirectable dumped matcher
The scheme handling was just redirecting immediately without testing the other routes at all for potential matches. This can cause Problems when you try to have different routes/controllers for the same path but different schemes. See added test.
Instead of matching the right route, it would redirect immediatly as soon as it hits the first route.
This does not make sense and is not consistent with the other logic. Redirection should only happen when nothing matches. While fixing this I could also remove the limitation
If redirection is not possible, the wrong scheme will just not match the route. This is the same as already implemented by UrlMatcher (not RedirecableUrlMatcher). If redirection is supported, it will redirect to the first supported scheme if no other route matches. This makes the implementation similar to redirection for trailing slash and handling not allowed methods.
Also previously, the scheme redirection was done for non-safe verbs which shouldn't happen as well, ref. #25962