fix: encode filenames #539
Conversation
zebateira
force-pushed
the
fix/filename-encoding
branch
from
1fd62a0 to
d1815a9
Compare
zebateira
force-pushed
the
fix/filename-encoding
branch
from
d1815a9 to
676876f
Compare
Yes. The client should do the encode. The api should decode it before storing it in the db, and return the decoded version in responses, so the user doesn't see them. We need to add tests and to document that when using the /car and /upload enpoints directly you need to encode the file name, and that the client will do this for you. @zebateira are you up for trying out this fix on the api and client? we could pair on it some if that would help? |
|
@olizilla yeah sounds good 👍 |
zebateira
force-pushed
the
fix/filename-encoding
branch
6 times, most recently
from
7300e67 to
b195e5b
Compare
|
Updated:
In order to have a test on the api, I added the name to the return body: web3.storage/packages/api/src/car.js Line 215 in b195e5b I don't think we can test this in another way because of the DB mock right? My intuition was to (1) upload (2) get files list (3) check filename is correct, but since we are not connected to the DB we can't do this? |
|
Right now this can't be tested fully on the preview link because it points to staging, so only after merging will we see this working fully. |
There was a problem hiding this comment.
Code looks good, but I think we should not return the name in create just for testing purposes. Name is obtained in listUploads, so it seems like we are adding a test just because.
With this in mind, I think it would be more useful to just add to the mock response (here) a validation where if we receive an invalid name we throw an error instead of a "good" answer. This way, the test is just sending a name that needs to be encoded and validate it does not make it way to the DB request
|
@zebateira we should also document this. Not sure where it fits better, but perhaps adding information here and we also need the docs |
|
@vasco-santos yeah, the api test is not the best.
What do you mean add a validation in the mock response? A validation assertion in the mock response code here? web3.storage/packages/api/src/car.js Line 153 in b195e5b |
In the mock server for the graphql post, you can access what data is sent in that post, which means you can inspect there the content of The two options are:
So two tests for the API to exercise both of these paths. In the mock server (condition that the performed operation is the createUpload), you can get the content of the name property from the request and do something like: const encoded = encodeURIComponent(name)
const decoded = decodeURIComponent(encoded)
if (decoded !== name) {
return gqlResponse(500, {
errors: [{ message: `error message` }]
})
}This will fail when you provide to the API a name such as |
zebateira
force-pushed
the
fix/filename-encoding
branch
2 times, most recently
from
c7a02a2 to
412ea40
Compare
|
@vasco-santos thank you for the help! |
zebateira
force-pushed
the
fix/filename-encoding
branch
from
412ea40 to
1b35fc6
Compare
zebateira
force-pushed
the
fix/filename-encoding
branch
from
f7019ac to
75f3f12
Compare
|
Docs added! |
vasco-santos
requested review from
vasco-santos
and removed request for
vasco-santos
This PR fixes upload not working on the website when the filename includes a non ISO-8859-1 character.
We were missing an encode/decodeURIComponent. This only affects the files because the filename is sent via header
X-NAME.I made the fix in the
lib/api.jsfile on the website code. Should this done on the js client instead?Fixes #532