URL modification with regular expressions can lead to 403 Forbidden errors
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Evergreen |
Fix Released
|
Medium
|
Unassigned | ||
3.3 |
Won't Fix
|
Undecided
|
Unassigned | ||
3.4 |
Fix Released
|
Medium
|
Unassigned |
Bug Description
All web client versions affected.
As an example, when you search the catalog from the splash page the browser url is eg/staff/
There are 2 issues that work together to cause this. The base issue is that the opac doesn't handle // correctly when building links, so each time you click Next you get twice as much /thats//weird/ as you had before. If it weren't for this doubling I doubt most people would ever notice it.
The issue that causes this initially in the web client is the use of regular expression replacement on a base URL of /opac/advanced (at least in staff/cat/
It's easiest to see this at work in the regular OPAC by inserting an extra / before 'results' in your address bar and then pressing enter to load that URL. Click Next a few times and you too can watch it expand to fill your address bar and beyond.
Branch coming soon to address the AngularJS bits, I'm not sure how best to tackle the actual root cause.
Changed in evergreen: | |
milestone: | none → 3.5-alpha |
Changed in evergreen: | |
milestone: | 3.5-beta → 3.5.0 |
Changed in evergreen: | |
milestone: | 3.5.0 → 3.5.1 |
Changed in evergreen: | |
status: | Fix Committed → Fix Released |
Here's a small branch to prevent the staff client from potentially causing this in a couple of places: https:/ /git.evergreen- ils.org/ ?p=working/ Evergreen. git;a=shortlog; h=refs/ heads/user/ jboyer/ lp1858701_ so_many_ solidus / working/ user/jboyer/ lp1858701_ so_many_ solidus