sapiraz
commented
6 years ago I stumbled upon the exact same issue.
After looking at the urljoin.js module I've noticed that it's using the Node.js URL module, which I believe handles URLs right, it's just not a great fit as it is for the "RELEASE" filenames.
What seemed to work well for me was to firstly strip down the URL from the query parameters and then pass it on to the urljoin.js module for parsing.
Example "nuts.js":
const url = require('url');
...
Nuts.prototype.onUpdateWin = function(req, res, next) {
...
// Change filename to use download proxy
.map(function(entry) {
entry.filename = urljoin(fullUrl.replace(url.parse(fullUrl).search, ''), '/../../../../', '/download/'+entry.semver+'/'+entry.filename);
return entry;
})
I think I discovered a bug.
If I host the Nuts middleware on a route such as
app.use('/myapp', Nuts.router)in express and GET the/update/:platform/:version/RELEASESroute the generated filenames do not include my custom path/myappif query parameters are present in the requested path. It does not seeem to matter what the query parameters are, only that they are present.Calling
http://myserver.com/myapp/update/:platform/:version/RELEASESgenerates a RELEASES file containing correct filename URLs with my custom path like so:Calling
http://myserver.com/myapp/update/:platform/:version/RELEASES?test=asdgenerates a RELEASES file containing filename URLs without the/myapppath:I've had a quick look through the source code and I think the
urljoin.jsmodule does not handle query parameters correctly when transforming the RELEASES filenames.