Merge pull request #1368 from yunstanford/fix-redirect

Add '%' to quote_plus's `safe` parameter in response.redirect
2018-10-23 15:12:02 -07:00
parent 5f486cc25f 20d1ab60c7
commit bd87098b7e
2 changed files with 24 additions and 1 deletions
--- a/tests/test_redirect.py
+++ b/tests/test_redirect.py
@@ -1,4 +1,5 @@
 import pytest
+from urllib.parse import quote

 from sanic.response import text, redirect

@@ -107,3 +108,25 @@ def test_redirect_with_header_injection(redirect_app):
    assert response.status == 302
    assert "test-header" not in response.headers
    assert not response.text.startswith('test-body')
+
+
+@pytest.mark.parametrize("test_str", ["sanic-test", "sanictest", "sanic test"])
+async def test_redirect_with_params(app, test_client, test_str):
+
+    @app.route("/api/v1/test/<test>/")
+    async def init_handler(request, test):
+        assert test == test_str
+        return redirect("/api/v2/test/{}/".format(quote(test)))
+
+    @app.route("/api/v2/test/<test>/")
+    async def target_handler(request, test):
+        assert test == test_str
+        return text("OK")
+
+    test_cli = await test_client(app)
+
+    response = await test_cli.get("/api/v1/test/{}/".format(quote(test_str)))
+    assert response.status == 200
+
+    txt = await response.text()
+    assert txt == "OK"