Skip to content

Fix CORS throwing 500 upon encountering a malformed URL #33682 #33688

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
wants to merge 6 commits into from
Closed

Fix CORS throwing 500 upon encountering a malformed URL #33682 #33688

wants to merge 6 commits into from

Conversation

IgorOffline
Copy link

Fix for 33682

Also remove BeforeEach in CrossOriginTests because many tests do not need the "setup" step.

@spring-projects-issues spring-projects-issues added the status: waiting-for-triage An issue we've not yet triaged or decided on label Oct 11, 2024
@IgorOffline IgorOffline mentioned this pull request Oct 11, 2024
Closed
sfc-gh-jzana
sfc-gh-jzana reviewed Oct 11, 2024
View reviewed changes
spring-web/src/main/java/org/springframework/web/cors/CorsUtils.java
* header presence and ensuring that origins are different.
*/
public static boolean isCorsRequest(HttpServletRequest request) {
public static IsCorsRequestResult isCorsRequest(HttpServletRequest request) {
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Is it OK to introduce a breaking public API change for this bugfix? If so, it's probably worth documenting in the release notes.

@simonbasle
Copy link
Contributor

Thanks for the PR @IgorOffline, although I was already working on it (as indicated by the fact that I'm assigned the issue). Your solution is going a bit too far anyway.

Note I have mistakenly referred the PR in my own version of the fix though 😅 See gh-33682

@simonbasle simonbasle added status: declined A suggestion or change that we don't feel we should currently apply and removed status: waiting-for-triage An issue we've not yet triaged or decided on labels Oct 14, 2024
@simonbasle simonbasle self-assigned this Oct 14, 2024
@IgorOffline
Copy link
Author

Thank you!

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

1 more reviewer

@sfc-gh-jzana sfc-gh-jzana sfc-gh-jzana left review comments

Reviewers whose approvals may not affect merge requirements

Assignees

@simonbasle simonbasle

Labels

status: declined A suggestion or change that we don't feel we should currently apply

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@IgorOffline @simonbasle @sfc-gh-jzana @spring-projects-issues