Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

getFrontendResult() fails with custom site base and TYPO3-CORE-SA-2023-003 #480

Open
mbrodala opened this issue Jul 27, 2023 · 0 comments
Open

getFrontendResult() fails with custom site base and TYPO3-CORE-SA-2023-003 #480

mbrodala opened this issue Jul 27, 2023 · 0 comments

Comments

@mbrodala
Copy link
Member

mbrodala commented Jul 27, 2023
edited

What are you trying to achieve?

Invoking getFrontendResponse() in a functional test to verify some frontend output which contains a link

What do you get instead?

Tests now fail with an The page did not exist or was inaccessible. Reason: No site configuration found. error page.

How to reproduce the issue?

  1. Have a functional test with a custom site with a custom base not being just /:

        protected array $pathsToLinkInTestInstance = [
        'typo3conf/ext/my_extension/Tests/Functional/Fixtures/Sites' => 'typo3conf/sites',
    ];

    Example site:

    rootPageId: 8
base: /foo/
languages:
    -   title: English
        enabled: true
        languageId: '0'
        base: /
        typo3Language: default
        locale: en_US.UTF-8
        iso-639-1: en
        navigationTitle: English
        hreflang: en-US
        direction: ltr
        flag: en-us-gb

  2. Use setUpFrontendRootPage() and have at least a page with the rootPageId

  3. Get the frontend response using $this->getFrontendResponse().

Additional information you would like to provide?

The TYPO3-CORE-SA-2023-003 denies requests to site URLs without matching site base. The getFrontendResponse() TF method invokes getFrontendResult() which sets up a very basic InternalRequest with the given page UID and an optional language uid:

testing-framework/Classes/Core/Functional/FunctionalTestCase.php

Lines 1496 to 1498 in c32fe20

(new InternalRequest())
->withPageId($pageId)
->withLanguageId($languageId),

With this the request URI will always be /?id=X&L=Y and thus not match the site base. In the mentioned example the InternalRequest URI is /?id=8&L=0 and does not match the /foo/ site base, /foo/?id=8&L=0 would be required.

This leads to the mentioned error. As a workaround the feature flag mentioned in the SA can be added to the functional test:

    protected array $configurationToUseInTestInstance = [
        'SYS' => [
            'features' => [
                'security.frontend.allowInsecureSiteResolutionByQueryParameters' => true,
            ],
        ],
    ];

Specify some data of the environment

  • TYPO3 testing framework version: 7.0.2
  • TYPO3 version: 11.5.30 (v12 should be affected, too)
  • TYPO3 installation type: Composer
  • PHP version: 8.1
  • Web server used + version: Apache 2.4.41
  • Operating system: Ubuntu
  • Selenium server version:
  • Browser driver (chromedriver/geckodriver...) version:
  • Browser used + version:
@mbrodala mbrodala changed the title getFrontendResult() fails with TYPO3-CORE-SA-2023-003 getFrontendResult() fails with custom site base and TYPO3-CORE-SA-2023-003 Jul 27, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@mbrodala