Polishing contribution

rstoyanchev · rstoyanchev · commit cc296c5033b0 · 2023-09-20T18:44:33.000+01:00
Closes gh-30137
diff --git a/spring-web/src/main/java/org/springframework/web/server/adapter/ForwardedHeaderTransformer.java b/spring-web/src/main/java/org/springframework/web/server/adapter/ForwardedHeaderTransformer.java
@@ -18,6 +18,7 @@
 
 import java.net.InetSocketAddress;
 import java.net.URI;
+import java.net.URISyntaxException;
 import java.util.Collections;
 import java.util.Locale;
 import java.util.Set;
@@ -30,6 +31,7 @@
 import org.springframework.util.LinkedCaseInsensitiveMap;
 import org.springframework.util.StringUtils;
 import org.springframework.web.util.ForwardedHeaderUtils;
+import org.springframework.web.util.UriComponents;
 
 /**
  * Extract values from "Forwarded" and "X-Forwarded-*" headers to override
@@ -102,7 +104,7 @@ public ServerHttpRequest apply(ServerHttpRequest request) {
 			if (!this.removeOnly) {
 				URI originalUri = request.getURI();
 				HttpHeaders headers = request.getHeaders();
-				URI uri = ForwardedHeaderUtils.adaptFromForwardedHeaders(originalUri, headers).build(true).toUri();
+				URI uri = adaptFromForwardedHeaders(originalUri, headers);
 				builder.uri(uri);
 				String prefix = getForwardedPrefix(request);
 				if (prefix != null) {
@@ -121,6 +123,17 @@ public ServerHttpRequest apply(ServerHttpRequest request) {
 		return request;
 	}
 
+	private static URI adaptFromForwardedHeaders(URI uri, HttpHeaders headers) {
+		// GH-30137: assume URI is encoded, but avoid build(true) for more lenient handling
+		UriComponents components = ForwardedHeaderUtils.adaptFromForwardedHeaders(uri, headers).build();
+		try {
+			return new URI(components.toUriString());
+		}
+		catch (URISyntaxException ex) {
+			throw new IllegalStateException("Could not create URI object: " + ex.getMessage(), ex);
+		}
+	}
+
 	/**
 	 * Whether the request has any Forwarded headers.
 	 * @param request the request
diff --git a/spring-web/src/test/java/org/springframework/web/server/adapter/ForwardedHeaderTransformerTests.java b/spring-web/src/test/java/org/springframework/web/server/adapter/ForwardedHeaderTransformerTests.java
@@ -1,5 +1,5 @@
 /*
- * Copyright 2002-2022 the original author or authors.
+ * Copyright 2002-202 the original author or authors.
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
  * you may not use this file except in compliance with the License.
@@ -57,7 +57,7 @@ void removeOnly() {
 	}
 
 	@Test
-	void xForwardedHeaders() throws Exception {
+	void xForwardedHeaders() {
 		HttpHeaders headers = new HttpHeaders();
 		headers.add("X-Forwarded-Host", "84.198.58.199");
 		headers.add("X-Forwarded-Port", "443");
@@ -70,7 +70,7 @@ void xForwardedHeaders() throws Exception {
 	}
 
 	@Test
-	void forwardedHeader() throws Exception {
+	void forwardedHeader() {
 		HttpHeaders headers = new HttpHeaders();
 		headers.add("Forwarded", "host=84.198.58.199;proto=https");
 		ServerHttpRequest request = this.requestMutator.apply(getRequest(headers));
@@ -80,7 +80,7 @@ void forwardedHeader() throws Exception {
 	}
 
 	@Test
-	void xForwardedPrefix() throws Exception {
+	void xForwardedPrefix() {
 		HttpHeaders headers = new HttpHeaders();
 		headers.add("X-Forwarded-Prefix", "/prefix");
 		ServerHttpRequest request = this.requestMutator.apply(getRequest(headers));
@@ -91,7 +91,7 @@ void xForwardedPrefix() throws Exception {
 	}
 
 	@Test // gh-23305
-	void xForwardedPrefixShouldNotLeadToDecodedPath() throws Exception {
+	void xForwardedPrefixShouldNotLeadToDecodedPath() {
 		HttpHeaders headers = new HttpHeaders();
 		headers.add("X-Forwarded-Prefix", "/prefix");
 		ServerHttpRequest request = MockServerHttpRequest
@@ -107,7 +107,7 @@ void xForwardedPrefixShouldNotLeadToDecodedPath() throws Exception {
 	}
 
 	@Test
-	void xForwardedPrefixTrailingSlash() throws Exception {
+	void xForwardedPrefixTrailingSlash() {
 		HttpHeaders headers = new HttpHeaders();
 		headers.add("X-Forwarded-Prefix", "/prefix////");
 		ServerHttpRequest request = this.requestMutator.apply(getRequest(headers));
@@ -118,7 +118,7 @@ void xForwardedPrefixTrailingSlash() throws Exception {
 	}
 
 	@Test // SPR-17525
-	void shouldNotDoubleEncode() throws Exception {
+	void shouldNotDoubleEncode() {
 		HttpHeaders headers = new HttpHeaders();
 		headers.add("Forwarded", "host=84.198.58.199;proto=https");
 
@@ -133,8 +133,8 @@ void shouldNotDoubleEncode() throws Exception {
 		assertForwardedHeadersRemoved(request);
 	}
 
-	@Test
-	void shouldHandleUnencodedUri() throws Exception {
+	@Test // gh-30137
+	void shouldHandleUnencodedUri() {
 			HttpHeaders headers = new HttpHeaders();
 			headers.add("Forwarded", "host=84.198.58.199;proto=https");
 			ServerHttpRequest request = MockServerHttpRequest
@@ -149,7 +149,7 @@ void shouldHandleUnencodedUri() throws Exception {
 	}
 
 	@Test
-	void shouldConcatenatePrefixes() throws Exception {
+	void shouldConcatenatePrefixes() {
 		HttpHeaders headers = new HttpHeaders();
 		headers.add("X-Forwarded-Prefix", "/first,/second");
 		ServerHttpRequest request = this.requestMutator.apply(getRequest(headers));
@@ -160,7 +160,7 @@ void shouldConcatenatePrefixes() throws Exception {
 	}
 
 	@Test
-	void shouldConcatenatePrefixesWithTrailingSlashes() throws Exception {
+	void shouldConcatenatePrefixesWithTrailingSlashes() {
 		HttpHeaders headers = new HttpHeaders();
 		headers.add("X-Forwarded-Prefix", "/first/,/second//");
 		ServerHttpRequest request = this.requestMutator.apply(getRequest(headers));
