Skip to content

fix(OCS): Add IRequest::getFormat to determine the response Content-Type the same way everywhere #54627

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
provokateurin merged 1 commit into from
Aug 28, 2025
Merged

fix(OCS): Add IRequest::getFormat to determine the response Content-Type the same way everywhere #54627

provokateurin merged 1 commit into from
Aug 28, 2025

Conversation

@provokateurin
Copy link
Member

@provokateurin provokateurin commented Aug 25, 2025

The OCSMiddleware handles the ?format=json query parameter and Accept: application/json request header, but ocs/v1.php uses ApiHelper::respond which only handles ?format=json so far.

@provokateurin provokateurin added this to the Nextcloud 32 milestone Aug 25, 2025
@provokateurin provokateurin requested a review from a team as a code owner August 25, 2025 13:32
@provokateurin provokateurin requested review from ArtificialOwl and nfebe and removed request for a team August 25, 2025 13:32
@provokateurin provokateurin added the 3. to review Waiting for reviews label Aug 25, 2025
@provokateurin provokateurin requested a review from sorbaugh August 25, 2025 13:32
@provokateurin provokateurin mentioned this pull request Aug 25, 2025
Open
@provokateurin provokateurin requested a review from come-nc August 25, 2025 13:33
susnux
susnux reviewed Aug 25, 2025
View reviewed changes
@nickvergessen
Copy link
Member

nickvergessen commented Aug 25, 2025

While a good and nice fix, I fear this could break current clients working around the problem since years. So I'd suggest to delay it until after the branch off?

@provokateurin
Copy link
Member Author

provokateurin commented Aug 26, 2025

this could break current clients working around the problem since years

So the issue is known and was manually handled by some clients? 🙈

I'm fine with waiting, I just found this while fuzzing the API and it has been broken this way since forever, so fixing it is not that urgent.

@come-nc
Copy link
Contributor

come-nc commented Aug 26, 2025

It would make sense to add a method to IRequest to get requested format, maybe?

@provokateurin
fix(OCS): Add IRequest::getFormat to determine the response Content-T…
aab11d3 
…ype the same way everywhere

Signed-off-by: provokateurin <[email protected]>
@provokateurin provokateurin force-pushed the fix/ocs/accept-header branch from 714a976 to aab11d3 Compare August 26, 2025 07:53
@provokateurin provokateurin changed the title fix(OCS): Honor Accept header in ApiHelper fix(OCS): Add IRequest::getFormat to determine the response Content-Type the same way everywhere Aug 26, 2025
@provokateurin
Copy link
Member Author

provokateurin commented Aug 26, 2025

I have too many questions about the code I saw 🙈

@provokateurin provokateurin requested a review from susnux August 26, 2025 07:54
@provokateurin provokateurin added the pending documentation This pull request needs an associated documentation update label Aug 26, 2025
nickvergessen
nickvergessen reviewed Aug 27, 2025
View reviewed changes
lib/private/AppFramework/Http/Request.php
return \is_array($trustedProxies) && $this->isTrustedProxy($trustedProxies, $remoteAddress);
}

public function getFormat(): ?string {
Copy link
Member

@nickvergessen nickvergessen Aug 27, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Should have upstreamed https://github.com/nextcloud/spreed/blob/38e56a3fe460f07e128c49be2759362592728a22/lib/Controller/AEnvironmentAwareOCSController.php#L60-L75 before it was cool :D

@provokateurin provokateurin merged commit a1709f5 into master Aug 28, 2025
198 checks passed
@provokateurin provokateurin deleted the fix/ocs/accept-header branch August 28, 2025 12:03
@nextcloud-bot nextcloud-bot mentioned this pull request Aug 28, 2025
Merged
@skjnldsv skjnldsv modified the milestones: Nextcloud 33, Nextcloud 32 Oct 2, 2025
nickvergessen
nickvergessen reviewed Oct 8, 2025
View reviewed changes
lib/private/AppFramework/Http/Request.php
$header = strtolower(trim($header));

if (str_starts_with($header, $prefix)) {
return substr($header, strlen($prefix));
Copy link
Member

@nickvergessen nickvergessen Oct 8, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Opposed to Controller::getResponderByHTTPHeader() which was used before, this here no longer checks if there is a responder registered and does not fall back to the default type correctly.
E.g. When you create a share for a file that can not have a preview (e.g. PDF without PDF being enabled), instead of having a proper 404, the response now is:

Technische Details

    Entfernte Adresse: ::1
    Anfragekennung: 3RuRvo3TEr52XxYi3pq6
    Typ: DomainException
    Code: 0
    Nachricht: No responder registered for format xhtml+xml!
    Datei: /home/nickv/Nextcloud/33/server/lib/public/AppFramework/Controller.php
    Zeile: 139


Trace

#0 /home/nickv/Nextcloud/33/server/lib/private/AppFramework/Http/Dispatcher.php(227): OCP\AppFramework\Controller->buildResponse(Object(OCP\AppFramework\Http\DataResponse), '...')
#1 /home/nickv/Nextcloud/33/server/lib/private/AppFramework/Http/Dispatcher.php(118): OC\AppFramework\Http\Dispatcher->executeController(Object(OCA\Files_Sharing\Controller\PublicPreviewController), '...')
#2 /home/nickv/Nextcloud/33/server/lib/private/AppFramework/App.php(153): OC\AppFramework\Http\Dispatcher->dispatch(Object(OCA\Files_Sharing\Controller\PublicPreviewController), '...')
#3 /home/nickv/Nextcloud/33/server/lib/private/Route/Router.php(321): OC\AppFramework\App::main('...', '...', Object(OC\AppFramework\DependencyInjection\DIContainer), Array)
#4 /home/nickv/Nextcloud/33/server/lib/base.php(1096): OC\Route\Router->match('...')
#5 /home/nickv/Nextcloud/33/server/index.php(25): OC::handleRequest()
#6 {main}

This works properly until Nextcloud 31.

Copy link
Member Author

@provokateurin provokateurin Oct 8, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

#55620

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@nickvergessen nickvergessen nickvergessen approved these changes

@susnux susnux susnux approved these changes

@ArtificialOwl ArtificialOwl Awaiting requested review from ArtificialOwl ArtificialOwl is a code owner automatically assigned from nextcloud/server-backend

@nfebe nfebe Awaiting requested review from nfebe nfebe is a code owner automatically assigned from nextcloud/server-backend

@sorbaugh sorbaugh Awaiting requested review from sorbaugh sorbaugh is a code owner automatically assigned from nextcloud/server-backend

@come-nc come-nc Awaiting requested review from come-nc

Assignees

No one assigned

Labels

3. to review Waiting for reviews bug pending documentation This pull request needs an associated documentation update

Projects

None yet

Milestone

Nextcloud 32

Development

Successfully merging this pull request may close these issues.

6 participants

@provokateurin @nickvergessen @come-nc @susnux @skjnldsv