linxianzhuang/saasshop
0
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

BackUrl::sanitizeForLinks 增加长度安全阀(>2000 拒绝)并补单测

Browse Source
This commit is contained in:
萝卜
2026-03-15 04:45:04 +00:00
parent c4c91ebf14
commit d34578452c
2 changed files with 12 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
app/Support/BackUrl.php
View File

@@ -18,6 +18,12 @@ class BackUrl
return ''; return '';
} }
// 长度安全阀:避免超长 back 造成 header/url 过大、日志污染或潜在 DoS
// 与表单侧 max:2000 的校验口径对齐。
if (strlen($incomingBack) > 2000) {
return '';
}
if (!str_starts_with($incomingBack, '/')) { if (!str_starts_with($incomingBack, '/')) {
return ''; return '';
} }

6
tests/Unit/BackUrlSanitizeForLinksTest.php
View File

@@ -12,6 +12,12 @@ class BackUrlSanitizeForLinksTest extends TestCase
$this->assertSame('/admin/platform-orders', BackUrl::sanitizeForLinks('/admin/platform-orders')); $this->assertSame('/admin/platform-orders', BackUrl::sanitizeForLinks('/admin/platform-orders'));
} }
public function test_sanitize_for_links_should_reject_too_long_back(): void
{
$long = '/admin/x?' . str_repeat('a', 5000);
$this->assertSame('', BackUrl::sanitizeForLinks($long));
}
public function test_sanitize_for_links_should_reject_absolute_urls(): void public function test_sanitize_for_links_should_reject_absolute_urls(): void
{ {
$this->assertSame('', BackUrl::sanitizeForLinks('https://evil.com/a')); $this->assertSame('', BackUrl::sanitizeForLinks('https://evil.com/a'));