Weiterleitung nach der Anmeldung verliert Query-Parameter

emanuele · 24. Juni 2019 um 15:57

This is my route code:

import { defaultHomepage } from "discourse/lib/utilities";

export default Discourse.Route.extend({
  beforeModel(transition) {
    if (!Discourse.User.current()) {
      $.cookie("destination_url", window.location.href);
      return this.replaceWith("login");
    }
    this.replaceWith(`/${defaultHomepage()}`).then(e => {
      Ember.run.next(() => {
        this.controllerFor("new-proof").send("openModal", transition.to.queryParams);
      });
    });
  },
});

The redirection to the login page works well, but after login, I get redirected to the correct controller but without the query parameters I had in the original request.

Is there a way around this that doesn’t involve using custom local storage entries/cookies? Am I doing something wrong?

emanuele · 25. Juni 2019 um 10:47

I still don’t know how to preserve query params, but I have solved my own issue by using url params instead of query params (so the route is now /keybase-proofs/new-proof/:username/:kb_username/:sig_hash).

codinghorror · 26. Juni 2019 um 10:28

Do we want URL params? That seems highly unorthodox.

emanuele · 26. Juni 2019 um 10:33

I assumed it was the right way to do it since the query params get lost in the transition. Perhaps I am doing something wrong with destination_url or the redirection to login?

techAPJ · 27. Juni 2019 um 07:24

I think it’s a bug in the core. I see a similar fix for SSO by @sam – FIX: stop removing query params from destination url in sso · discourse/discourse@0b334cd · GitHub

I will investigate and push a fix.

techAPJ · 27. Juni 2019 um 08:09

Note that redirect with query params survives login flow for http://localhost:9292/new-topic?title=beta. Relevant code can be found here:

github.com/discourse/discourse

app/assets/javascripts/discourse/routes/new-topic.js.es6

102be5a9e


      
          // User is not logged in
          $.cookie("destination_url", window.location.href);
          this.replaceWith("login");

@emanuele I will need more details.

What login method are you using (email/password, social, sso, etc)?
Can you provide a sample URL with query param?
Is your plugin live? Can I test it on my local instance?

Feel free to PM me above details.

emanuele · 27. Juni 2019 um 09:28

Hi

I am using email/password
http://localhost:9292/keybase-proofs/new-proof?kb_username=etamponi&username=emanuele.tamponi&sig_hash=puppa&kb_ua=foo
The plugin code is at: GitHub - etamponi/discourse-keybase-proofs-plugin: Discourse Plugin for Keybase Proofs · GitHub

To test it, replace the value of the username query param with your username. The route code is in routes/new-proof.js.es6 and it looks basically the same as the code you posted.

techAPJ · 27. Juni 2019 um 14:23

Wenn man sich das hier anschaut:

github.com/discourse/discourse

app/controllers/static_controller.rb

863d8014d


      
            elsif redirect_location.present? && !redirect_location.match(login_path)
              begin
                forum_uri = URI(Discourse.base_url)
                uri = URI(redirect_location)
          
                if uri.path.present? &&
                   (uri.host.blank? || uri.host == forum_uri.host) &&
                   uri.path !~ /\./
          
                  destination = uri.path
                  destination = "#{uri.path}?#{uri.query}" if uri.path =~ /new-topic/ || uri.path =~ /new-message/ || uri.path =~ /user-api-key/
                end
              rescue URI::Error
                # Do nothing if the URI is invalid
              end
            end
          
            redirect_to destination
          end
          
          FAVICON ||= -"favicon"

scheint es, als würden wir Abfrageparameter für einige vordefinierte Pfade beibehalten. Dieses Muster begann mit diesem Commit (ich bin mir nicht sicher, warum ich das gemacht habe… ).

@Sam, sollen wir anfangen, Abfrageparameter für alle Pfade zu unterstützen? Ich sehe keine Sicherheitsauswirkung darin, Abfrageparameter auf beliebigen Pfaden zuzulassen.

sam · 1. Juli 2019 um 00:44

Solange dies sorgfältig geprüft wird, halte ich es für in Ordnung, die Unterstützung hier zu erweitern.

techAPJ · 8. Juli 2019 um 04:05

Dieses Problem wurde nun über folgenden Link behoben:

Thema		Antworten	Aufrufe
GTM parameters are not preserved, or passed to GTM Support	3	301	9. Mai 2024
Users not redirected to original page upon successful login Support	2	123	14. August 2025
Url to pass back after SSO to redirect back to previous url/topic SSO	0	1567	31. Januar 2017
Redirect after login one like logout redirect Feature	6	6297	10. Januar 2015
Any way to force login popup to open by url query string? Feature	4	4330	8. Oktober 2018

Weiterleitung nach der Anmeldung verliert Query-Parameter

Verwandte Themen