Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

fix: do not forward the referer #2091

Merged
merged 4 commits into from
Nov 10, 2022
Merged

fix: do not forward the referer #2091

merged 4 commits into from
Nov 10, 2022

Conversation

kptdobe
Copy link
Contributor

@kptdobe kptdobe commented Nov 10, 2022
edited
Loading

Fix #2090

The importer proxy forward the referer, which is always a localhost url. Just removing it unblocks the request from #2090. I even wonder why more of customer imported sites did not complain.

PR is also fixing the failing linting introduced by 645fdfa.

@github-actions
Copy link

This PR will trigger a patch release when merged.

@kptdobe kptdobe requested a review from tripodsan November 10, 2022 14:43
@codecov
Copy link

codecov bot commented Nov 10, 2022

Codecov Report

Merging #2091 (2745a1a) into main (d93e69b) will increase coverage by 0.00%.
The diff coverage is 100.00%.

@@           Coverage Diff           @@
##             main    #2091   +/-   ##
=======================================
  Coverage   95.33%   95.34%           
=======================================
  Files          23       23           
  Lines        3324     3327    +3     
  Branches        1        1           
=======================================
+ Hits         3169     3172    +3     
  Misses        155      155
Impacted Files Coverage Δ
src/server/HelixImportServer.js 100.00% <100.00%> (ø)
src/server/HelixServer.js 95.13% <100.00%> (+0.05%) ⬆️

📣 We’re building smart automated test selection to slash your CI/CD build times. Learn more

tripodsan
tripodsan approved these changes Nov 10, 2022
View reviewed changes
Copy link
Contributor

@tripodsan tripodsan left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

maybe it would even be better to rewrite the referrer header to the target host ?

@kptdobe
Copy link
Contributor Author

kptdobe commented Nov 10, 2022

maybe it would even be better to rewrite the referrer header to the target host ?

No clue what's best. Not sure if they typically write some logic on the edge to validate the referrers.

@kptdobe kptdobe merged commit 39eed86 into main Nov 10, 2022
@kptdobe kptdobe deleted the fix-403-if-referer branch November 10, 2022 16:03
adobe-bot pushed a commit that referenced this pull request Nov 10, 2022
@semantic-release-bot
chore(release): 14.17.1 [skip ci]
e310dca 
## [14.17.1](v14.17.0...v14.17.1) (2022-11-10)

### Bug Fixes

* do not forward the referrer ([#2091](#2091)) ([39eed86](39eed86))
@adobe-bot
Copy link
Collaborator

🎉 This PR is included in version 14.17.1 🎉

The release is available on:

Your semantic-release bot 📦🚀

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@tripodsan tripodsan tripodsan approved these changes

Assignees
No one assigned
Labels
released
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Importer fails with 403 on certain URLs
3 participants
@kptdobe @adobe-bot @tripodsan