Replace Existing Continue Parameter

jzheaux · jzheaux · commit 40d61743b939 · 2023-07-10T16:12:05.000-06:00
Closes gh-13438
diff --git a/web/src/main/java/org/springframework/security/web/savedrequest/DefaultSavedRequest.java b/web/src/main/java/org/springframework/security/web/savedrequest/DefaultSavedRequest.java
@@ -38,6 +38,7 @@
 import org.springframework.security.web.util.UrlUtils;
 import org.springframework.util.Assert;
 import org.springframework.util.ObjectUtils;
+import org.springframework.web.util.UriComponentsBuilder;
 
 /**
  * Represents central information from a {@code HttpServletRequest}.
@@ -372,10 +373,8 @@ private static String createQueryString(String queryString, String matchingReque
 		if (queryString == null || queryString.length() == 0) {
 			return matchingRequestParameterName;
 		}
-		if (queryString.endsWith("&")) {
-			return queryString + matchingRequestParameterName;
-		}
-		return queryString + "&" + matchingRequestParameterName;
+		return UriComponentsBuilder.newInstance().query(queryString).replaceQueryParam(matchingRequestParameterName)
+				.queryParam(matchingRequestParameterName).build().getQuery();
 	}
 
 	/**
diff --git a/web/src/test/java/org/springframework/security/web/savedrequest/DefaultSavedRequestTests.java b/web/src/test/java/org/springframework/security/web/savedrequest/DefaultSavedRequestTests.java
@@ -122,4 +122,14 @@ public void getRedirectUrlWhenQueryDoesNotEndAmpersandAndMatchingRequestParamete
 		assertThat(new URL(savedRequest.getRedirectUrl())).hasQuery("foo=bar&success");
 	}
 
+	// gh-13438
+	@Test
+	public void getRedirectUrlWhenQueryAlreadyHasSuccessThenDoesNotAdd() throws Exception {
+		MockHttpServletRequest request = new MockHttpServletRequest();
+		request.setQueryString("foo=bar&success");
+		DefaultSavedRequest savedRequest = new DefaultSavedRequest(request, new MockPortResolver(8080, 8443),
+				"success");
+		assertThat(savedRequest.getRedirectUrl()).contains("foo=bar&success");
+	}
+
 }

Original file line number	Diff line number	Diff line change
`@@ -122,4 +122,14 @@ public void getRedirectUrlWhenQueryDoesNotEndAmpersandAndMatchingRequestParamete`
`122`	`122`	`assertThat(new URL(savedRequest.getRedirectUrl())).hasQuery("foo=bar&success");`
`123`	`123`	`}`
`124`	`124`
	`125`	`+ // gh-13438`
	`126`	`+ @Test`
	`127`	`+ public void getRedirectUrlWhenQueryAlreadyHasSuccessThenDoesNotAdd() throws Exception {`
	`128`	`+ MockHttpServletRequest request = new MockHttpServletRequest();`
	`129`	`+ request.setQueryString("foo=bar&success");`
	`130`	`+ DefaultSavedRequest savedRequest = new DefaultSavedRequest(request, new MockPortResolver(8080, 8443),`
	`131`	`+ "success");`
	`132`	`+ assertThat(savedRequest.getRedirectUrl()).contains("foo=bar&success");`
	`133`	`+ }`
	`134`	`+`
`125`	`135`	`}`