Skip to content

fix content type split/parsing, using racks implementation #455

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
geemus merged 3 commits into from
Oct 30, 2025
Merged

fix content type split/parsing, using racks implementation #455

geemus merged 3 commits into from
Oct 30, 2025

Conversation

@geemus
Copy link
Member

@geemus geemus commented Oct 24, 2025

fixes #454

@geemus geemus mentioned this pull request Oct 24, 2025
Closed
ydah
ydah approved these changes Oct 24, 2025
View reviewed changes
Copy link
Member

@ydah ydah left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Seems good! I thought it would be better to have test code for this change, but is it difficult to write test code for this change? (This is not a blocker of merges)

@geemus
Copy link
Member Author

geemus commented Oct 27, 2025

@ydah Good point. I had at least in part done this so the person reporting the issue could check and see if it fixed their problem (which it did), but tests would be good before proceeding for sure.

@geemus
Copy link
Member Author

geemus commented Oct 27, 2025

Awaiting confirmation from #454 that it works as expected in Rails and doesn't break anything. Would be good to have testing here also (should be easier around schema validator, somewhat harder on the operation wrapper since it's a bit buried in internals). Might need to rework things a bit to better facilitate testing, but I'll wait for confirmation, lest I waste time on testing the wrong things.

@geemus
test(schema-validator): add basic tests for content type parsing
1ee88f2 
- Add test cases for Committee::SchemaValidator#request_media_type
- Verify parsing of simple, comma-separated, and semicolon-separated content types
- Ensure correct media type extraction from request headers
@geemus
Copy link
Member Author

geemus commented Oct 30, 2025

#454 was confirmed and I've added some basic tests around the schema_validator at least (where it's more accessible).

@geemus geemus merged commit 1261271 into master Oct 30, 2025
8 checks passed
@geemus geemus deleted the fix-content-type-parsing branch October 30, 2025 13:36
@geemus
Copy link
Member Author

geemus commented Oct 30, 2025

Released in v5.6.1

@fredplante
Copy link

fredplante commented Oct 30, 2025

Thank you @geemus 🙌

@ydah
Copy link
Member

ydah commented Nov 1, 2025

Thank you!

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@ydah ydah ydah approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Malformed content-type header allows to bypass request validation

4 participants

@geemus @fredplante @ydah