Safeguarding prefixes with dash patterns.

pmelab · pmelab · commit bc21205bb90f · 2017-11-03T10:34:25.000+01:00
diff --git a/src/ContextualAliasStorage.php b/src/ContextualAliasStorage.php
@@ -92,8 +92,8 @@ public function save($source, $alias, $langcode = LanguageInterface::LANGCODE_NO
 
     $context = $this->getSourceContext($source);
 
-    if ($context && strpos($alias, '/' . $context . '/') === 0) {
-      $alias = substr($alias, strlen($context) + 2);
+    if ($context && strpos($alias, '/--' . $context . '--/') === 0) {
+      $alias = substr($alias, strlen($context) + 6);
     }
 
     $fields = [
@@ -179,7 +179,7 @@ public function load($conditions) {
       $select->orderBy('context', 'ASC');
     }
 
-    $select->addExpression("CASE WHEN context = '' OR context IS NULL THEN alias ELSE CONCAT('/', context, alias) END", 'alias');
+    $select->addExpression("CASE WHEN context = '' OR context IS NULL THEN alias ELSE CONCAT('/--', context, '--', alias) END", 'alias');
     // ENDCHANGE
 
     foreach ($conditions as $field => $value) {
@@ -193,11 +193,14 @@ public function load($conditions) {
           $aliasGroup = $select->orConditionGroup();
           $aliasGroup->condition($field, $this->connection->escapeLike($value), 'LIKE');
           $contextGroup = $aliasGroup->andConditionGroup();
-          $tail = explode('/', $value);
-          $head = array_shift($tail);
-          $contextGroup
-            ->condition('context', $head)
-            ->condition('alias', $this->connection->escapeLike('/' . implode('/', $tail)), 'LIKE');
+          if (substr($value, 0, 3) == '/--') {
+            $tail = explode('/', $value);
+            $head = substr(array_shift($tail), 2, -2);
+            $contextGroup
+              ->condition('context', $head)
+              ->condition('alias', $this->connection->escapeLike('/' . implode('/', $tail)), 'LIKE');
+          }
+          $aliasGroup->condition($contextGroup);
         }
         else {
           $select->condition($field, $this->connection->escapeLike($value), 'LIKE');
@@ -251,7 +254,7 @@ public function preloadPathAlias($preloaded, $langcode) {
       $select->isNull('context');
     }
 
-    $select->addExpression("CASE WHEN context = '' OR context IS NULL THEN alias ELSE CONCAT('/', context, alias) END", 'alias');
+    $select->addExpression("CASE WHEN context = '' OR context IS NULL THEN alias ELSE CONCAT('/--', context, '--', alias) END", 'alias');
     // ENDCHANGE
 
     // Always get the language-specific alias before the language-neutral one.
@@ -317,7 +320,7 @@ public function lookupPathAlias($path, $langcode) {
     }
 
     if ($context != $currentContext) {
-      $select->addExpression("CASE WHEN context = '' OR context IS NULL THEN alias ELSE CONCAT('/', context, alias) END", 'alias');
+      $select->addExpression("CASE WHEN context = '' OR context IS NULL THEN alias ELSE CONCAT('/--', context, '--', alias) END", 'alias');
     }
     else {
       $select->addField(static::TABLE, 'alias', 'alias');
@@ -353,24 +356,34 @@ public function lookupPathSource($path, $langcode) {
       $nonContextGroup->isNull('context');
       $aliasGroup->condition($nonContextGroup);
       $contextGroup = $aliasGroup->andConditionGroup();
-      $tail = explode('/', ltrim($alias, '/'));
-      $head = array_shift($tail);
-      $contextGroup
-        ->condition('context', $head)
-        ->condition('alias', $this->connection->escapeLike('/' . implode('/', $tail)), 'LIKE');
-      $aliasGroup->condition($contextGroup);
+      $value = ltrim($alias, '/');
+
+      if (substr($value, 0, 2) == '--') {
+        $tail = explode('/', $value);
+        $head = substr(array_shift($tail), 2, -2);
+        $contextGroup
+          ->condition('context', $head)
+          ->condition('alias', $this->connection->escapeLike('/' . implode('/', $tail)), 'LIKE');
+        $aliasGroup->condition($contextGroup);
+      }
+
       $select->condition($aliasGroup);
     }
     else {
-      $tail = explode('/', ltrim($alias, '/'));
-      $head = array_shift($tail);
+      $value = ltrim($alias, '/');
 
       $aliasGroup = $select->orConditionGroup();
-      $contextGroup = $aliasGroup->andConditionGroup();
+      if (substr($value, 0, 2) == '--') {
+        $tail = explode('/', $value);
+        $head = substr(array_shift($tail), 2, -2);
+        $contextGroup = $aliasGroup->andConditionGroup();
+
+        $contextGroup
+          ->condition('context', $head)
+          ->condition('alias', $this->connection->escapeLike('/' . implode('/', $tail)), 'LIKE');
+        $aliasGroup->condition($contextGroup);
+      }
 
-      $contextGroup
-        ->condition('context', $head)
-        ->condition('alias', $this->connection->escapeLike('/' . implode('/', $tail)), 'LIKE');
 
       $nonContextGroup = $aliasGroup->andConditionGroup();
       $nonContextGroup->condition('alias', $this->connection->escapeLike($alias), 'LIKE');
@@ -380,7 +393,6 @@ public function lookupPathSource($path, $langcode) {
       $nullContextGroup->condition('alias', $this->connection->escapeLike($alias), 'LIKE');
       $nullContextGroup->isNull('context');
 
-      $aliasGroup->condition($contextGroup);
       $aliasGroup->condition($nonContextGroup);
       $aliasGroup->condition($nullContextGroup);
       $select->condition($aliasGroup);
diff --git a/src/Entity/ContextualRedirect.php b/src/Entity/ContextualRedirect.php
@@ -16,7 +16,7 @@ public function preSave(EntityStorageInterface $storage_controller) {
     $context = isset($parsed['path']) ? $aliasStorage->getSourceContext($parsed['path']) : NULL;
     $this->set('context', $context);
     $this->set('hash', Redirect::generateHash(
-      ($context ? '/' . $context : '') . $this->redirect_source->path,
+      ($context ? '/--' . $context : '--') . $this->redirect_source->path,
       (array) $this->redirect_source->query,
       $this->language()->getId()
     ));
diff --git a/tests/src/Kernel/ContextualAliasesTest.php b/tests/src/Kernel/ContextualAliasesTest.php
@@ -126,8 +126,8 @@ public function testNoContextSimpleAlias() {
   public function testNoContextContextualAlias() {
     $this->resolver->getCurrentContext()->willReturn(NULL);
     $this->assertEquals('/A', $this->manager->getPathByAlias('/A'));
-    $this->assertEquals('/a', $this->manager->getPathByAlias('/one/A'));
-    $this->assertEquals('/one/A', $this->manager->getAliasByPath('/a'));
+    $this->assertEquals('/a', $this->manager->getPathByAlias('/--one--/A'));
+    $this->assertEquals('/--one--/A', $this->manager->getAliasByPath('/a'));
   }
 
   /**
@@ -136,7 +136,7 @@ public function testNoContextContextualAlias() {
   public function testContextMatchingAlias() {
     $this->resolver->getCurrentContext()->willReturn('one');
     $this->assertEquals('/a', $this->manager->getPathByAlias('/A'));
-    $this->assertEquals('/a', $this->manager->getPathByAlias('/one/A'));
+    $this->assertEquals('/a', $this->manager->getPathByAlias('/--one--/A'));
     $this->assertEquals('/A', $this->manager->getAliasByPath('/a'));
   }
 
@@ -146,8 +146,8 @@ public function testContextMatchingAlias() {
   public function testContextNotMatchingAlias() {
     $this->resolver->getCurrentContext()->willReturn('two');
     $this->assertEquals('/A', $this->manager->getPathByAlias('/A'));
-    $this->assertEquals('/a', $this->manager->getPathByAlias('/one/A'));
-    $this->assertEquals('/one/A', $this->manager->getAliasByPath('/a'));
+    $this->assertEquals('/a', $this->manager->getPathByAlias('/--one--/A'));
+    $this->assertEquals('/--one--/A', $this->manager->getAliasByPath('/a'));
   }
 
   /**
@@ -177,13 +177,13 @@ public function testNonContextualConflictingAlias() {
    */
   public function testContextualConflictingAlias() {
     $this->resolver->getCurrentContext()->willReturn(NULL);
-    $this->assertEquals('/e', $this->manager->getPathByAlias('/two/one/E'));
-    $this->assertEquals('/two/one/E', $this->manager->getAliasByPath('/e'));
+    $this->assertEquals('/e', $this->manager->getPathByAlias('/--two--/one/E'));
+    $this->assertEquals('/--two--/one/E', $this->manager->getAliasByPath('/e'));
 
     $this->resolver->getCurrentContext()->willReturn('one');
     $this->assertEquals('/two/E', $this->manager->getPathByAlias('/two/E'));
-    $this->assertEquals('/e', $this->manager->getPathByAlias('/two/one/E'));
-    $this->assertEquals('/two/one/E', $this->manager->getAliasByPath('/e'));
+    $this->assertEquals('/e', $this->manager->getPathByAlias('/--two--/one/E'));
+    $this->assertEquals('/--two--/one/E', $this->manager->getAliasByPath('/e'));
 
     $this->resolver->getCurrentContext()->willReturn('two');
     $this->assertEquals('/e', $this->manager->getPathByAlias('/one/E'));
