Merge branch 'MAGETWO-83094-PR' into 2.1.13-PR-0.5

dhorytskyi · dhorytskyi · commit affd485eb718 · 2018-02-16T18:38:14.000+02:00
diff --git a/app/code/Magento/Backend/Model/Url.php b/app/code/Magento/Backend/Model/Url.php
@@ -189,33 +189,30 @@ public function getUrl($routePath = null, $routeParams = null)
         }
 
         $cacheSecretKey = false;
-        if (is_array($routeParams) && isset($routeParams['_cache_secret_key'])) {
+        if (isset($routeParams['_cache_secret_key'])) {
             unset($routeParams['_cache_secret_key']);
             $cacheSecretKey = true;
         }
         $result = parent::getUrl($routePath, $routeParams);
         if (!$this->useSecretKey()) {
             return $result;
         }
+
         $this->_setRoutePath($routePath);
         $routeName = $this->_getRouteName('*');
         $controllerName = $this->_getControllerName(self::DEFAULT_CONTROLLER_NAME);
         $actionName = $this->_getActionName(self::DEFAULT_ACTION_NAME);
-        if ($cacheSecretKey) {
-            $secret = [self::SECRET_KEY_PARAM_NAME => "\${$routeName}/{$controllerName}/{$actionName}\$"];
-        } else {
-            $secret = [
-                self::SECRET_KEY_PARAM_NAME => $this->getSecretKey($routeName, $controllerName, $actionName),
-            ];
-        }
-        if (is_array($routeParams)) {
-            $routeParams = array_merge($secret, $routeParams);
-        } else {
-            $routeParams = $secret;
-        }
-        if (is_array($this->_getRouteParams())) {
-            $routeParams = array_merge($this->_getRouteParams(), $routeParams);
+        if (!isset($routeParams[self::SECRET_KEY_PARAM_NAME])) {
+            if (!is_array($routeParams)) {
+                $routeParams = [];
+            }
+
+            $secretKey = $cacheSecretKey
+                ? "\${$routeName}/{$controllerName}/{$actionName}\$"
+                : $this->getSecretKey($routeName, $controllerName, $actionName);
+            $routeParams[self::SECRET_KEY_PARAM_NAME] = $secretKey;
         }
+
         return parent::getUrl("{$routeName}/{$controllerName}/{$actionName}", $routeParams);
     }
 
diff --git a/dev/tests/integration/testsuite/Magento/Backend/Model/UrlTest.php b/dev/tests/integration/testsuite/Magento/Backend/Model/UrlTest.php
@@ -5,6 +5,12 @@
  */
 namespace Magento\Backend\Model;
 
+use Magento\TestFramework\Helper\Bootstrap;
+use Magento\Framework\App\RequestInterface;
+use Magento\Framework\Url\ParamEncoder;
+use Magento\Framework\Session\SessionManagerInterface;
+use Magento\Framework\Encryption\EncryptorInterface;
+
 /**
  * Test class for \Magento\Backend\Model\UrlInterface.
  *
@@ -13,16 +19,19 @@
 class UrlTest extends \PHPUnit_Framework_TestCase
 {
     /**
-     * @var \Magento\Backend\Model\UrlInterface
+     * @var RequestInterface
+     */
+    private $request;
+
+    /**
+     * @var UrlInterface
      */
     protected $_model;
 
     protected function setUp()
     {
-        parent::setUp();
-        $this->_model = \Magento\TestFramework\Helper\Bootstrap::getObjectManager()->create(
-            'Magento\Backend\Model\UrlInterface'
-        );
+        $this->request = Bootstrap::getObjectManager()->get(RequestInterface::class);
+        $this->_model = Bootstrap::getObjectManager()->create(UrlInterface::class);
     }
 
     /**
@@ -34,6 +43,38 @@ public function testGetUrl()
     {
         $url = $this->_model->getUrl('adminhtml/auth/login');
         $this->assertContains('admin/auth/login/key/', $url);
+
+        $routeParams = [
+            '_escape_params' => false,
+            'param1' => 'a1=='
+        ];
+        $url = $this->_model->getUrl('path', $routeParams);
+        $this->assertContains('/param1/a1==/', $url);
+
+        $this->request->setParams(['param2' => 'a2==']);
+        $routeParams = [
+            '_current' => true,
+            '_escape_params' => false,
+        ];
+        $url = $this->_model->getUrl('path', $routeParams);
+        $this->assertContains('/param2/a2==/', $url);
+
+        /** @var ParamEncoder $paramEncoder */
+        $paramEncoder = Bootstrap::getObjectManager()->get(ParamEncoder::class);
+        $routeParams = [
+            '_escape_params' => true,
+            'param3' => 'a3=='
+        ];
+        $url = $this->_model->getUrl('path', $routeParams);
+        $this->assertContains('/param3/' . $paramEncoder->encode('a3==') . '/', $url);
+
+        $this->request->setParams(['param4' => 'a4==']);
+        $routeParams = [
+            '_current' => true,
+            '_escape_params' => true,
+        ];
+        $url = $this->_model->getUrl('path', $routeParams);
+        $this->assertContains('/param4/' . $paramEncoder->encode('a4==') . '/', $url);
     }
 
     /**
@@ -46,20 +87,17 @@ public function testGetUrl()
      */
     public function testGetSecretKey($routeName, $controller, $action, $expectedHash)
     {
-        /** @var $request \Magento\Framework\App\RequestInterface */
-        $request = \Magento\TestFramework\Helper\Bootstrap::getObjectManager()
-            ->create('Magento\Framework\App\RequestInterface');
-        $request->setControllerName(
+        $this->request->setControllerName(
             'default_controller'
         )->setActionName(
             'default_action'
         )->setRouteName(
             'default_router'
         );
 
-        $this->_model->setRequest($request);
-        \Magento\TestFramework\Helper\Bootstrap::getObjectManager()->get(
-            'Magento\Framework\Session\SessionManagerInterface'
+        $this->_model->setRequest($this->request);
+        Bootstrap::getObjectManager()->get(
+            SessionManagerInterface::class
         )->setData(
             '_form_key',
             'salt'
@@ -72,10 +110,8 @@ public function testGetSecretKey($routeName, $controller, $action, $expectedHash
      */
     public function getSecretKeyDataProvider()
     {
-        $objectManager = \Magento\TestFramework\Helper\Bootstrap::getObjectManager();
-
-        /** @var $encryptor \Magento\Framework\Encryption\EncryptorInterface */
-        $encryptor = $objectManager->get('Magento\Framework\Encryption\EncryptorInterface');
+        /** @var $encryptor EncryptorInterface */
+        $encryptor = Bootstrap::getObjectManager()->get(EncryptorInterface::class);
 
         return [
             [
@@ -129,19 +165,14 @@ public function getSecretKeyDataProvider()
      */
     public function testGetSecretKeyForwarded()
     {
-        $objectManager = \Magento\TestFramework\Helper\Bootstrap::getObjectManager();
-
-        /** @var $encryptor \Magento\Framework\Encryption\EncryptorInterface */
-        $encryptor = $objectManager->get('Magento\Framework\Encryption\EncryptorInterface');
-
-        /** @var $request \Magento\Framework\App\Request\Http */
-        $request = \Magento\TestFramework\Helper\Bootstrap::getObjectManager()
-            ->create('Magento\Framework\App\RequestInterface');
-        $request->setControllerName('controller')->setActionName('action');
-        $request->initForward()->setControllerName(uniqid())->setActionName(uniqid());
-        $this->_model->setRequest($request);
-        \Magento\TestFramework\Helper\Bootstrap::getObjectManager()->get(
-            'Magento\Framework\Session\SessionManagerInterface'
+        /** @var $encryptor EncryptorInterface */
+        $encryptor = Bootstrap::getObjectManager()->get(EncryptorInterface::class);
+
+        $this->request->setControllerName('controller')->setActionName('action');
+        $this->request->initForward()->setControllerName(uniqid())->setActionName(uniqid());
+        $this->_model->setRequest($this->request);
+        Bootstrap::getObjectManager()->get(
+            SessionManagerInterface::class
         )->setData(
             '_form_key',
             'salt'
diff --git a/dev/tests/integration/testsuite/Magento/Customer/Controller/Adminhtml/IndexTest.php b/dev/tests/integration/testsuite/Magento/Customer/Controller/Adminhtml/IndexTest.php
@@ -217,8 +217,14 @@ public function testSaveActionWithValidCustomerDataAndValidAddressData()
         $this->assertNotEquals(0, $this->accountManagement->getDefaultBillingAddress($customerId));
         $this->assertNull($this->accountManagement->getDefaultShippingAddress($customerId));
 
+        $urlPatternParts = [
+            $this->_baseControllerUrl . 'edit',
+            'id/' . $customerId,
+            'back/1',
+        ];
+        $urlPattern = '/^' . str_replace('/', '\/', implode('(/.*/)|/', $urlPatternParts)) . '/';
         $this->assertRedirect(
-            $this->stringStartsWith($this->_baseControllerUrl . 'edit/id/' . $customerId . '/back/1')
+            $this->matchesRegularExpression($urlPattern)
         );
 
         /** @var \Magento\Newsletter\Model\Subscriber $subscriber */
