Uploaded image for project: 'eZ Publish / Platform'
  1. eZ Publish / Platform
  2. EZP-25796

Map\URI matcher containing umlauts generates broken URLs

    Details

    • Type: Bug Bug
    • Status: Closed
    • Priority: Critical Critical
    • Resolution: Fixed
    • Affects Version/s: 5.4.6
    • Fix Version/s: Customer request, 5.4.7
    • Component/s: Legacy stack
    • Labels:
      None

      Description

      When you define a Map\URI matcher that contains umlauts, such as "flüchtlinge", and then try to access content on a frontend siteaccess (non-legacy), it fails, because the matcher's umlauts are replaced by underscores.

      Example:

      example.com/fl_chtlinge/myfolder/myarticle

      Steps to reproduce:

      1. Prepare a test installation of eZ Publish 5.4, updated to 5.4.6;
      2. Create the following content structure:

      Home
          MyFolder
              MyArticle
      

      3. Modify ezpublish.yml:

      ezpublish:
          siteaccess:
              ...
              match:
                  Compound\LogicalAnd:
                      my_compound_rule_1:
                          matchers:
                              Map\URI:
                                  'flüchtlinge': true
                              Map\Host:
                                  example.com: true
                          match: ezdemo_site
      

      4. Accessing the following link will work:

      http://example.com/flüchtlinge/MyFolder

      5. However, when you access the "MyFolder" page and click on the "MyArticle" link, you will be re-directed to "http://example.com/fl_chtlinge/MyFolder/MyArticle", instead of "http://example.com/flüchtlinge/MyFolder/MyArticle", and a "Module not found" error will be displayed.

      All links to contents directly under the root node are OK, but all contents under that level will have broken links if the siteaccess matcher has umlauts in it.

      Note: although I'm accessing a siteaccess that is in non-legacy mode, the problem seems to originate in this legacy template:

      /ezpublish_legacy/extension/ezdemo/design/ezdemo/override/templates/full/folder.tpl

        Issue Links

          Activity

          Hide
          André Rømcke added a comment -

          [~joao.inacio@ez.no] [~ricardo.correia@ez.no] Seems original reporter says the patch does not work, have you or others gotten any info on why it might not be working?

          Show
          André Rømcke added a comment - [~joao.inacio@ez.no] [~ricardo.correia@ez.no] Seems original reporter says the patch does not work, have you or others gotten any info on why it might not be working?
          Hide
          Sören Meyer added a comment -

          Hey guys,
          I think the problem, that the siteaccess URI is washed came up within this commit:
          https://github.com/ezsystems/ezpublish-legacy/commit/a31d403360e58c3c143fac166850fcaaacc0baad
          The uri-part just breaks if it is washed.

          Best regards,
          Sören

          Show
          Sören Meyer added a comment - Hey guys, I think the problem, that the siteaccess URI is washed came up within this commit: https://github.com/ezsystems/ezpublish-legacy/commit/a31d403360e58c3c143fac166850fcaaacc0baad The uri-part just breaks if it is washed. Best regards, Sören
          Hide
          Sören Meyer added a comment -

          Dear team,
          can someone tell us something about this security ticket?

          Fixed EZP-21959: Security: Siteaccess matching is loose, in legacy stack 
          

          Unfortunately we have no permission to access it.
          Thanks in advance and best regards
          Sören

          Show
          Sören Meyer added a comment - Dear team, can someone tell us something about this security ticket? Fixed EZP-21959: Security: Siteaccess matching is loose, in legacy stack Unfortunately we have no permission to access it. Thanks in advance and best regards Sören
          Hide
          Nuno Oliveira (Inactive) added a comment -

          Greetings,

          Issue EZP-21959 is a security issue, and security issues are only visible internally by eZ staff. This is done by design, it's not a bug. In any case, the issue in question affected eZ Publish 5.2 and lower, and the resulting fix has been integrated into eZ Publish 5.3 and later codebase.

          Show
          Nuno Oliveira (Inactive) added a comment - Greetings, Issue EZP-21959 is a security issue, and security issues are only visible internally by eZ staff. This is done by design, it's not a bug. In any case, the issue in question affected eZ Publish 5.2 and lower, and the resulting fix has been integrated into eZ Publish 5.3 and later codebase.
          Hide
          Miguel das Neves Jacinto (Inactive) added a comment -

          QA Approved

          Show
          Miguel das Neves Jacinto (Inactive) added a comment - QA Approved

            People

            • Assignee:
              Unassigned
              Reporter:
              Nuno Oliveira (Inactive)
            • Votes:
              0 Vote for this issue
              Watchers:
              7 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: