Merge branch 'main' into theme-cursor-pointer

likeandscribe · Nov 8, 2024 · 407a1b5 · 407a1b5
2 parents c38def6 + ce36d50
commit 407a1b5
Show file tree

Hide file tree

Showing 11 changed files with 250 additions and 25 deletions.
diff --git a/packages/atproto-browser/app/at/[identifier]/[collection]/[rkey]/page.tsx b/packages/atproto-browser/app/at/[identifier]/[collection]/[rkey]/page.tsx
@@ -54,7 +54,7 @@ export default async function RkeyPage({
     <>
       <link
         rel="alternate"
-        href={`at://${params.identifier}/${params.collection}/${params.rkey}`}
+        href={`at://${identityResult.didDocument.id}/${params.collection}/${params.rkey}`}
       />
       <h2>
         Record

diff --git a/packages/atproto-browser/app/at/[identifier]/[collection]/page.tsx b/packages/atproto-browser/app/at/[identifier]/[collection]/page.tsx
@@ -27,7 +27,7 @@ export default async function CollectionPage({
     <div>
       <link
         rel="alternate"
-        href={`at://${params.identifier}/${params.collection}`}
+        href={`at://${identityResult.didDocument.id}/${params.collection}`}
       />
       <h1>
         {params.collection} records{" "}

diff --git a/packages/atproto-browser/app/at/[identifier]/page.tsx b/packages/atproto-browser/app/at/[identifier]/page.tsx
@@ -28,7 +28,7 @@ export default async function IdentifierPage({
 
   return (
     <>
-      <link rel="alternate" href={`at://${params.identifier}`} />
+      <link rel="alternate" href={`at://${identityResult.didDocument.id}`} />
       <h1>
         <DidHandle did={identityResult.didDocument.id} />
       </h1>

diff --git a/packages/atproto-browser/app/at/_lib/did-components.tsx b/packages/atproto-browser/app/at/_lib/did-components.tsx
@@ -4,6 +4,7 @@ import { resolveIdentity } from "@/lib/atproto-server";
 import { DidCollections } from "./collection-server";
 import { Suspense } from "react";
 import Link from "@/lib/link";
+import { domainToUnicode } from "url";
 
 export function CollapsedDidSummary({ did }: { did: string }) {
   return (
@@ -47,7 +48,10 @@ export async function DidHandle({ did }: { did: string }) {
   return (
     <>
       {handle ? (
-        <Link href={`/at/${handle}`}>{handle}</Link>
+        // WARN: There is potential for homograph attacks here, in the future we should consider punycode encoding ambiguous characters as per (for example) https://chromium.googlesource.com/chromium/src/+/main/docs/idn.md.
+        <Link href={`/at/${domainToUnicode(handle)}`}>
+          {domainToUnicode(handle)}
+        </Link>
       ) : (
         "⚠️ Invalid Handle"
       )}{" "}

diff --git a/packages/atproto-browser/lib/atproto-server.ts b/packages/atproto-browser/lib/atproto-server.ts
@@ -9,6 +9,7 @@ import { cache } from "react";
 import { unstable_cache as nextCache } from "next/cache";
 import { isValidHandle } from "@atproto/syntax";
 import { isDid } from "@atproto/did";
+import { domainToASCII } from "url";
 
 function timeoutWith<T>(
   timeout: number,
@@ -57,8 +58,10 @@ export async function resolveIdentity(
   const decoded = decodeURIComponent(didOrHandle);
   let didStr;
   let didFromHandle = null;
-  if (isValidHandle(decoded)) {
-    didFromHandle = await resolveHandle(decoded).catch(() => undefined);
+  if (isValidHandle(domainToASCII(decoded))) {
+    didFromHandle = await resolveHandle(domainToASCII(decoded)).catch(
+      () => undefined,
+    );
     didStr = didFromHandle;
     if (!didStr) {
       return {

diff --git a/packages/atproto-browser/lib/navigation.test.ts b/packages/atproto-browser/lib/navigation.test.ts
@@ -0,0 +1,123 @@
+import { test, vi, expect, describe, afterAll } from "vitest";
+import { navigateAtUri } from "./navigation";
+
+vi.mock("server-only", () => {
+  return {
+    // mock server-only module
+  };
+});
+
+class RedirectError extends Error {
+  constructor(public readonly location: string) {
+    super(`Redirecting to ${location}`);
+  }
+}
+
+vi.mock("next/navigation", () => ({
+  redirect: vi.fn((path) => {
+    throw new RedirectError(path);
+  }),
+}));
+
+const PATH_SUFFIXES = [
+  "",
+  "/collection",
+  "/collection/rkey",
+  "/collection/rkey",
+];
+
+const makeValidCases = (authority: string) =>
+  PATH_SUFFIXES.flatMap((suffix) => {
+    const result = `/at/${authority}${suffix}`;
+    return [
+      [`${authority}${suffix}`, result],
+      [`at://${authority}${suffix}`, result],
+    ];
+  });
+
+const VALID_CASES = [
+  ...makeValidCases("example.com"),
+  ...makeValidCases("did:plc:hello"),
+  ...makeValidCases("did:web:hello"),
+  // Unicode should be preserved, we handle punycode transformation within the fetch of the page not on navigation
+  ...makeValidCases("mañana.com"),
+
+  ["@example.com", "/at/example.com"],
+  ["@mañana.com", "/at/mañana.com"],
+
+  // Not sure about this case. Are bare hosts supported in the spec? For now we allow it to error out at a later stage
+  ["host", "/at/host"],
+];
+
+describe("navigates valid input", () => {
+  test.each(VALID_CASES)("%s -> %s", async (input, expectedRedirect) => {
+    await expect(navigateAtUri(input)).rejects.toThrowError(
+      new RedirectError(expectedRedirect),
+    );
+  });
+});
+
+describe("strips whitespace and zero-width characters from valid input", () => {
+  test.each(VALID_CASES.map((c) => [...c]))(
+    "%s -> %s",
+    async (input, expectedRedirect) => {
+      await expect(
+        navigateAtUri(`       ${input}\u200B\u200D\uFEFF  \u202C`),
+      ).rejects.toThrowError(new RedirectError(expectedRedirect));
+    },
+  );
+});
+
+describe("shows error on invalid input", () => {
+  test.each([
+    ["@", "Invalid handle: @"],
+    ["@invalid", "Invalid handle: @invalid"],
+  ])('"%s" -> "%s"', async (input, expectedError) => {
+    expect((await navigateAtUri(input)).error).toMatch(expectedError);
+  });
+});
+
+const originalFetch = global.fetch;
+const mockFetch = vi.fn();
+global.fetch = mockFetch;
+afterAll(() => {
+  global.fetch = originalFetch;
+});
+
+describe("valid http input with link", () => {
+  // Include only cases with the protocol prefix
+  test.each(VALID_CASES.filter((c) => c[0]!.startsWith("at://")))(
+    'valid http input with "%s" -> "%s"',
+    async (link, expectedUri) => {
+      mockFetch.mockResolvedValueOnce(
+        new Response(/*html*/ `
+        <html>
+          <head>
+            <link rel="alternate" href="${link}" />
+          </head>
+          <body></body>
+        </html>
+      `),
+      );
+
+      await expect(navigateAtUri("http://example.com")).rejects.toThrowError(
+        new RedirectError(expectedUri),
+      );
+    },
+  );
+});
+
+test("valid http input without included at uri", async () => {
+  mockFetch.mockResolvedValueOnce(
+    new Response(/*html*/ `
+    <html>
+      <head></head>
+      <body></body>
+    </html>
+  `),
+  );
+
+  expect(await navigateAtUri("http://example.com")).toEqual({
+    error: "No AT URI found in http://example.com",
+  });
+});
diff --git a/packages/atproto-browser/lib/navigation.ts b/packages/atproto-browser/lib/navigation.ts
@@ -1,28 +1,43 @@
 import "server-only";
 
 import { getAtUriPath } from "./util";
-import { AtUri, isValidHandle } from "@atproto/syntax";
+import { isValidHandle } from "@atproto/syntax";
 import { redirect } from "next/navigation";
 import { parse as parseHtml } from "node-html-parser";
 import { parse as parseLinkHeader } from "http-link-header";
 import { domainToASCII } from "url";
+import { isDid } from "@atproto/did";
 
 export async function navigateAtUri(input: string) {
   // Remove all zero-width characters and weird control codes from the input
-  const sanitizedInput = input.replace(/[\u200B-\u200D\uFEFF\u202C]/g, "");
+  const sanitizedInput = input
+    .replace(/[\u200B-\u200D\uFEFF\u202C]/g, "")
+    .trim();
 
-  // Try punycode encoding the input as a domain name and parse it as a handle
-  const handle = parseHandle(domainToASCII(sanitizedInput) || sanitizedInput);
+  const handle = parseHandle(sanitizedInput);
 
   if (handle) {
-    redirect(getAtUriPath(new AtUri(`at://${handle}`)));
+    redirect(
+      getAtUriPath({
+        host: handle,
+      }),
+    );
+  } else if (sanitizedInput.startsWith("@")) {
+    return {
+      error: `Invalid handle: ${sanitizedInput}`,
+    };
   }
 
   const result =
     sanitizedInput.startsWith("http://") ||
     sanitizedInput.startsWith("https://")
       ? await getAtUriFromHttp(sanitizedInput)
-      : parseUri(sanitizedInput);
+      : parseUri(
+          // Add at:// to start if it's missing
+          sanitizedInput.startsWith("at://")
+            ? sanitizedInput
+            : `at://${sanitizedInput}`,
+        );
 
   if ("error" in result) {
     return result;
@@ -31,11 +46,20 @@ export async function navigateAtUri(input: string) {
   redirect(getAtUriPath(result.uri));
 }
 
+/**
+ * Using our own type to allow for unicode handles/hosts which is not currently supported by the ATProto library
+ */
+type MinimalAtUri = {
+  host: string;
+  collection?: string;
+  rkey?: string;
+};
+
 type UriParseResult =
   | {
       error: string;
     }
-  | { uri: AtUri };
+  | { uri: MinimalAtUri };
 
 async function getAtUriFromHttp(url: string): Promise<UriParseResult> {
   const controller = new AbortController();
@@ -58,7 +82,7 @@ async function getAtUriFromHttp(url: string): Promise<UriParseResult> {
     const result = ref ? parseUri(ref.uri) : null;
     if (result && "uri" in result) {
       controller.abort();
-      redirect(getAtUriPath(result.uri));
+      return result;
     }
   }
 
@@ -78,7 +102,6 @@ async function getAtUriFromHttp(url: string): Promise<UriParseResult> {
     link.getAttribute("href")?.startsWith("at://"),
   );
   if (atUriAlternate) {
-    console.log(atUriAlternate.getAttribute("href"));
     const result = parseUri(
       decodeURIComponent(atUriAlternate.getAttribute("href")!),
     );
@@ -92,19 +115,56 @@ async function getAtUriFromHttp(url: string): Promise<UriParseResult> {
   };
 }
 
+export const ATP_URI_REGEX =
+  // proto-    --did--------------   name   --path----   --query--   --hash--
+  /^(at:\/\/)?((?:did:[a-z0-9:%-]+)|(?:.*))(\/[^?#\s]*)?(\?[^#\s]+)?(#[^\s]+)?$/i;
+
+/**
+ * Parses an AT URI but allows the host to be a unicode handle.
+ *
+ * Unicode handles are preserved and not punycode encoded so that they can be displayed as-is in eg. the URL bar and URI form.
+ *
+ * There is potential for homograph attacks here, in the future we should consider punycode encoding ambiguous characters as per (for example) https://chromium.googlesource.com/chromium/src/+/main/docs/idn.md. This also applies to <DidHandle>
+ */
 function parseUri(input: string): UriParseResult {
-  try {
-    return { uri: new AtUri(input) };
-  } catch (_) {
+  const match = ATP_URI_REGEX.exec(input);
+  if (match) {
+    if (!match[2]) {
+      return {
+        error: `Invalid URI: ${input}`,
+      };
+    }
+
+    const host = match[2];
+
+    if (host.startsWith("did:") && !isDid(host)) {
+      return {
+        error: `Invalid DID in URI: ${input}`,
+      };
+    }
+
+    const pathname = match[3];
     return {
-      error: `Invalid URI: ${input}`,
+      uri: {
+        host,
+        collection: pathname?.split("/").filter(Boolean)[0],
+        rkey: pathname?.split("/").filter(Boolean)[1],
+      },
     };
   }
+
+  return {
+    error: `Invalid URI: ${input}`,
+  };
 }
 
 function parseHandle(input: string): string | null {
   // Remove the leading @
   const handle = input.replace(/^@/, "");
-  if (!isValidHandle(handle)) return null;
+
+  if (!isValidHandle(handle) && !isValidHandle(domainToASCII(handle))) {
+    return null;
+  }
+  // We check for the punycode encoded version of the handle but always return the preserved input so that we can display the original handle
   return handle;
 }
diff --git a/packages/atproto-browser/lib/util.ts b/packages/atproto-browser/lib/util.ts
@@ -1,5 +1,3 @@
-import { AtUri } from "@atproto/syntax";
-
 export const utcDateFormatter = new Intl.DateTimeFormat("en-US", {
   dateStyle: "medium",
   timeStyle: "short",
@@ -10,7 +8,11 @@ export function isNotNull<T>(x: T | null): x is T {
   return x !== null;
 }
 
-export function getAtUriPath(uri: AtUri): string {
+export function getAtUriPath(uri: {
+  host: string;
+  collection?: string;
+  rkey?: string;
+}): string {
   return `/at/${[uri.host, uri.collection, uri.rkey]
     .filter(Boolean)
     .map((c) => c && decodeURIComponent(c))

diff --git a/packages/atproto-browser/package.json b/packages/atproto-browser/package.json
@@ -7,7 +7,8 @@
     "build": "next build",
     "start": "next start",
     "lint": "next lint",
-    "type-check": "tsc --noEmit"
+    "type-check": "tsc --noEmit",
+    "test": "vitest"
   },
   "dependencies": {
     "@atproto/did": "^0.1.1",
@@ -36,6 +37,8 @@
     "eslint": "^8",
     "eslint-config-next": "15.0.0-rc.0",
     "tsx": "^4.16.5",
-    "typescript": "^5"
+    "typescript": "^5",
+    "vite-tsconfig-paths": "^4.3.2",
+    "vitest": "^2.0.4"
   }
 }
diff --git a/packages/atproto-browser/vite.config.ts b/packages/atproto-browser/vite.config.ts
@@ -0,0 +1,9 @@
+import { defineConfig } from "vitest/config";
+import tsconfigPaths from "vite-tsconfig-paths";
+
+export default defineConfig({
+  plugins: [tsconfigPaths()],
+  test: {
+    environment: "node",
+  },
+});
-Original file line number
+Diff line change
@@ Expand Up / @@ -54,7 +54,7 @@ export default async function RkeyPage({ @@
         <>
           <link
             rel="alternate"
-            href={`at://${params.identifier}/${params.collection}/${params.rkey}`}
+            href={`at://${identityResult.didDocument.id}/${params.collection}/${params.rkey}`}
           />
           <h2>
             Record
@@ Expand Down @@