Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Fix CORS throwing 500 upon encountering a malformed URL #33682 #33688

Closed
wants to merge 6 commits into from
Closed

Fix CORS throwing 500 upon encountering a malformed URL #33682 #33688

wants to merge 6 commits into from

Conversation

IgorOffline
Copy link

Fix for 33682

Also remove BeforeEach in CrossOriginTests because many tests do not need the "setup" step.

@spring-projects-issues spring-projects-issues added the status: waiting-for-triage An issue we've not yet triaged or decided on label Oct 11, 2024
@IgorOffline IgorOffline mentioned this pull request Oct 11, 2024
Closed
sfc-gh-jzana
sfc-gh-jzana reviewed Oct 11, 2024
View reviewed changes
spring-web/src/main/java/org/springframework/web/cors/CorsUtils.java Show resolved Hide resolved
spring-web/src/main/java/org/springframework/web/cors/CorsUtils.java
@@ -38,19 +39,22 @@ public abstract class CorsUtils {
* Returns {@code true} if the request is a valid CORS one by checking {@code Origin}
* header presence and ensuring that origins are different.
*/
public static boolean isCorsRequest(HttpServletRequest request) {
public static IsCorsRequestResult isCorsRequest(HttpServletRequest request) {
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Is it OK to introduce a breaking public API change for this bugfix? If so, it's probably worth documenting in the release notes.

spring-web/src/main/java/org/springframework/web/cors/CorsUtils.java Outdated Show resolved Hide resolved
@simonbasle
Copy link
Contributor

Thanks for the PR @IgorOffline, although I was already working on it (as indicated by the fact that I'm assigned the issue). Your solution is going a bit too far anyway.

Note I have mistakenly referred the PR in my own version of the fix though 😅 See gh-33682

@simonbasle simonbasle added status: declined A suggestion or change that we don't feel we should currently apply and removed status: waiting-for-triage An issue we've not yet triaged or decided on labels Oct 14, 2024
@simonbasle simonbasle self-assigned this Oct 14, 2024
@IgorOffline
Copy link
Author

Thank you!

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@sfc-gh-jzana sfc-gh-jzana sfc-gh-jzana left review comments

Assignees

@simonbasle simonbasle

Labels
status: declined A suggestion or change that we don't feel we should currently apply
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@IgorOffline @simonbasle @sfc-gh-jzana @spring-projects-issues