Issue #4075 Accept pattern such /On* and do exact path match (#4080)

* Issue #4075 accept url-pattern such /On* as exact match Signed-off-by: olivier lamy <oliver.lamy@gmail.com> * changes after review from Greg Signed-off-by: olivier lamy <oliver.lamy@gmail.com>
2019-09-11 17:22:14 +10:00 · 2019-09-11 17:22:14 +10:00 · 37f96bdf2b
parent 03629b4616
commit 37f96bdf2b
2 changed files with 14 additions and 8 deletions
--- a/jetty-http/src/main/java/org/eclipse/jetty/http/pathmap/ServletPathSpec.java
+++ b/jetty-http/src/main/java/org/eclipse/jetty/http/pathmap/ServletPathSpec.java
@ -20,9 +20,14 @@ package org.eclipse.jetty.http.pathmap;

 import org.eclipse.jetty.util.StringUtil;
 import org.eclipse.jetty.util.URIUtil;
+import org.eclipse.jetty.util.log.Log;
+import org.eclipse.jetty.util.log.Logger;

 public class ServletPathSpec extends PathSpec
 {
+
+    private static final Logger LOG = Log.getLogger(ServletPathSpec.class);
+
    /**
     * If a servlet or filter path mapping isn't a suffix mapping, ensure
     * it starts with '/'
@ -69,13 +74,13 @@ public class ServletPathSpec extends PathSpec
        super.pathDepth = 0;
        char lastChar = servletPathSpec.charAt(specLength - 1);
        // prefix based
-        if ((servletPathSpec.charAt(0) == '/') && (specLength > 1) && (lastChar == '*'))
+        if (servletPathSpec.charAt(0) == '/' && servletPathSpec.endsWith("/*"))
        {
            this.group = PathSpecGroup.PREFIX_GLOB;
            this.prefix = servletPathSpec.substring(0, specLength - 2);
        }
        // suffix based
-        else if (servletPathSpec.charAt(0) == '*')
+        else if (servletPathSpec.charAt(0) == '*' && servletPathSpec.length() > 1)
        {
            this.group = PathSpecGroup.SUFFIX_GLOB;
            this.suffix = servletPathSpec.substring(2, specLength);
@ -84,6 +89,11 @@ public class ServletPathSpec extends PathSpec
        {
            this.group = PathSpecGroup.EXACT;
            this.prefix = servletPathSpec;
+            if (servletPathSpec.endsWith("*") )
+            {
+                LOG.warn("Suspicious URL pattern: '{}'; see sections 12.1 and 12.2 of the Servlet specification",
+                        servletPathSpec);
+            }
        }

        for (int i = 0; i < specLength; i++)
@ -130,11 +140,6 @@ public class ServletPathSpec extends PathSpec
            {
                throw new IllegalArgumentException("Servlet Spec 12.2 violation: glob '*' can only exist at end of prefix based matches: bad spec \"" + servletPathSpec + "\"");
            }
-
-            if (idx < 1 || servletPathSpec.charAt(idx - 1) != '/')
-            {
-                throw new IllegalArgumentException("Servlet Spec 12.2 violation: suffix glob '*' can only exist after '/': bad spec \"" + servletPathSpec + "\"");
-            }
        }
        else if (servletPathSpec.startsWith("*."))
        {
--- a/jetty-http/src/test/java/org/eclipse/jetty/http/pathmap/PathMappingsTest.java
+++ b/jetty-http/src/test/java/org/eclipse/jetty/http/pathmap/PathMappingsTest.java
@ -231,6 +231,8 @@ public class PathMappingsTest
        assertTrue(!new ServletPathSpec("/foo/*").matches("/bar/anything"), "!match /foo/*");
        assertTrue(new ServletPathSpec("*.foo").matches("anything.foo"), "match *.foo");
        assertTrue(!new ServletPathSpec("*.foo").matches("anything.bar"), "!match *.foo");
+        assertTrue(new ServletPathSpec("/On*").matches("/On*"), "match /On*");
+        assertTrue(!new ServletPathSpec("/On*").matches("/One"), "!match /One");

        assertEquals("10", p.getMatch("/").getResource(), "match / with ''");

@ -287,7 +289,6 @@ public class PathMappingsTest
    @ValueSource(strings = {
        "*",
        "/foo/*/bar",
-        "/foo*",
        "*/foo",
        "*.foo/*"
    })