GenericUrl converts plus sign into space within URI path component #398
Assignees
Labels
priority: p2
Moderately-important priority. Fix may not be included in next release.
🚨
This issue needs some love.
status: blocked
Resolving the issue is dependent on other work.
type: bug
Error or flaw in code with unintended results or allowing sub-optimal usage patterns.
Comments
|
You are exactly right about how and where this is broken. I'm marking that as wont-fix because the main purpose of this library is to connect to the 100+ Google APIs and other GenericURL unit tests seem to suggest that at least some of those APIs have non-conforming paths. @vasiliy-bout are you hitting this bug while connecting to one of the Google APIs? |
mattwhisenhunt
added
status: will not fix
type: bug
|
No, we came across this bug while using the library to deal with other 3rd
party HTTP APIs, so we will just ditch to a different library. I understand
your reasons, but it looks a bit strange that Google HTTP APIs violates
underlying standards... very much probably you also had reasons for this
decision to keep violating them.
I’d then suggest to at least document this non-conforming decision in the
JavaDoc for the method, so that others will know about it before they came
across this defect in production. What do you think?
|
JustinBeckwith
added
priority: p2
ajaaym
added a commit
to ajaaym/google-http-java-client
that referenced
this issue
Dec 4, 2018
…I path component
This was referenced Dec 4, 2018
ajaaym
added
the
status: will not fix
chingor13
added
status: blocked
|
ping on this. Our Google CloudSearch Connectors SDK is having problem with this issue in at least on of our API when customer resource name contains '+', it was incorrectly converted into space. |
codyoss
added a commit
to codyoss/google-http-java-client
that referenced
this issue
Dec 10, 2019
The old implementation was incorrecly treating '+' as a space. Now the only things that get decoded in the path are uri escaped sequences. Fixes googleapis#398
codyoss
added a commit
to codyoss/google-http-java-client
that referenced
this issue
Dec 10, 2019
The old implementation was incorrecly treating '+' as a space. Now the only things that get decoded in the path are uri escaped sequences. Fixes googleapis#398
chingor13
pushed a commit
that referenced
this issue
Dec 17, 2019
* feat: decode uri path components correctly The old implementation was incorrecly treating '+' as a space. Now the only things that get decoded in the path are uri escaped sequences. Fixes #398 * tweak javadoc * remove hardcoded string
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
This is a simple junit test which fails but should work according to https://tools.ietf.org/html/rfc3986#section-3.3 because
+sign is allowed to be used within a path component and has no special meaning when used within a path component:This bug is related to #255 but shows different behaviour. We are using
google-http-clientlibrary version1.23.0:From the first glance on sources, it looks like there is a bug inside
toPathPartsmethods implementation on line 550: https://github.com/google/google-http-java-client/blob/110b3ab6fa7838dbe9926038427c712db9ed8aae/google-http-client/src/main/java/com/google/api/client/http/GenericUrl.java#L545-L553There a call is made to
CharEscapers.decodeUriwhich is invalid, because JavaDoc of this method explicitly states that it must not be used for path segments (see the second paragraph): https://github.com/google/google-http-java-client/blob/110b3ab6fa7838dbe9926038427c712db9ed8aae/google-http-client/src/main/java/com/google/api/client/util/escape/CharEscapers.java#L78-L90The text was updated successfully, but these errors were encountered: