Bump webpack to 5.94.0 and regenerate yarn.lock

Bump version to 1.24.3
Automated API Docs update
2026-04-17 21:44:48 -04:00 · 2024-09-22 22:34:45 -05:00 · 2024-09-22 07:48:53 +03:00 · 2024-09-21 22:05:08 +03:00 · 2024-09-21 21:35:23 +03:00 · 2024-09-21 21:30:34 +03:00
11 changed files with 447 additions and 694 deletions
--- a/azure-pipelines.yml
+++ b/azure-pipelines.yml
@@ -9,7 +9,7 @@ variables:
  testsFolder: './_tests'
  yarnCacheFolder: $(Pipeline.Workspace)/.yarn
  nugetCacheFolder: $(Pipeline.Workspace)/.nuget/packages
-  majorVersion: '1.24.1'
+  majorVersion: '1.24.3'
  minorVersion: $[counter('minorVersion', 1)]
  prowlarrVersion: '$(majorVersion).$(minorVersion)'
  buildName: '$(Build.SourceBranchName).$(prowlarrVersion)'
--- a/frontend/src/Store/Actions/systemActions.js
+++ b/frontend/src/Store/Actions/systemActions.js
@@ -110,7 +110,6 @@ export const defaultState = {
      {
        name: 'actions',
        columnLabel: () => translate('Actions'),
-        isSortable: true,
        isVisible: true,
        isModifiable: false
      }
--- a/package.json
+++ b/package.json
@@ -142,7 +142,7 @@
    "ts-loader": "9.4.2",
    "typescript-plugin-css-modules": "5.0.1",
    "url-loader": "4.1.1",
-    "webpack": "5.89.0",
+    "webpack": "5.94.0",
    "webpack-cli": "5.1.4",
    "webpack-livereload-plugin": "3.0.2"
  }
--- a/src/NzbDrone.Core/Prowlarr.Core.csproj
+++ b/src/NzbDrone.Core/Prowlarr.Core.csproj
@@ -5,6 +5,7 @@
  <ItemGroup>
    <PackageReference Include="AngleSharp.Xml" Version="1.0.0" />
    <PackageReference Include="Dapper" Version="2.0.151" />
+    <PackageReference Include="Diacritical.Net" Version="1.0.4" />
    <PackageReference Include="MailKit" Version="3.6.0" />
    <PackageReference Include="Microsoft.AspNetCore.Cryptography.KeyDerivation" Version="6.0.32" />
    <PackageReference Include="Microsoft.AspNetCore.WebUtilities" Version="2.2.0" />
--- a/src/NzbDrone.Host/Startup.cs
+++ b/src/NzbDrone.Host/Startup.cs
@@ -135,7 +135,7 @@ namespace NzbDrone.Host
                    Name = "apikey",
                    Type = SecuritySchemeType.ApiKey,
                    Scheme = "apiKey",
-                    Description = "Apikey passed as header",
+                    Description = "Apikey passed as query parameter",
                    In = ParameterLocation.Query,
                    Reference = new OpenApiReference
                    {
--- a/src/Prowlarr.Api.V1/History/HistoryController.cs
+++ b/src/Prowlarr.Api.V1/History/HistoryController.cs
@@ -25,7 +25,13 @@ namespace Prowlarr.Api.V1.History
        public PagingResource<HistoryResource> GetHistory([FromQuery] PagingRequestResource paging, [FromQuery(Name = "eventType")] int[] eventTypes, bool? successful, string downloadId, [FromQuery] int[] indexerIds = null)
        {
            var pagingResource = new PagingResource<HistoryResource>(paging);
-            var pagingSpec = pagingResource.MapToPagingSpec<HistoryResource, NzbDrone.Core.History.History>("date", SortDirection.Descending);
+            var pagingSpec = pagingResource.MapToPagingSpec<HistoryResource, NzbDrone.Core.History.History>(
+                new HashSet<string>(StringComparer.OrdinalIgnoreCase)
+                {
+                    "date"
+                },
+                "date",
+                SortDirection.Descending);

            if (eventTypes != null && eventTypes.Any())
            {
--- a/src/Prowlarr.Api.V1/Logs/LogController.cs
+++ b/src/Prowlarr.Api.V1/Logs/LogController.cs
@@ -1,3 +1,5 @@
+using System;
+using System.Collections.Generic;
 using Microsoft.AspNetCore.Mvc;
 using NzbDrone.Common.Extensions;
 using NzbDrone.Core.Configuration;
@@ -29,7 +31,11 @@ namespace Prowlarr.Api.V1.Logs
            }

            var pagingResource = new PagingResource<LogResource>(paging);
-            var pageSpec = pagingResource.MapToPagingSpec<LogResource, Log>();
+            var pageSpec = pagingResource.MapToPagingSpec<LogResource, Log>(new HashSet<string>(StringComparer.OrdinalIgnoreCase)
+            {
+                "id",
+                "time"
+            });

            if (pageSpec.SortKey == "time")
            {
--- a/src/Prowlarr.Api.V1/openapi.json
+++ b/src/Prowlarr.Api.V1/openapi.json
@@ -6373,7 +6373,7 @@
      },
      "apikey": {
        "type": "apiKey",
-        "description": "Apikey passed as header",
+        "description": "Apikey passed as query parameter",
        "name": "apikey",
        "in": "query"
      }
--- a/src/Prowlarr.Http/Authentication/AuthenticationBuilderExtensions.cs
+++ b/src/Prowlarr.Http/Authentication/AuthenticationBuilderExtensions.cs
@@ -1,12 +1,18 @@
 using System;
+using System.Text.RegularExpressions;
+using Diacritical;
 using Microsoft.AspNetCore.Authentication;
+using Microsoft.AspNetCore.Authentication.Cookies;
 using Microsoft.Extensions.DependencyInjection;
 using NzbDrone.Core.Authentication;
+using NzbDrone.Core.Configuration;

 namespace Prowlarr.Http.Authentication
 {
    public static class AuthenticationBuilderExtensions
    {
+        private static readonly Regex CookieNameRegex = new Regex(@"[^a-z0-9]+", RegexOptions.Compiled | RegexOptions.IgnoreCase);
+
        public static AuthenticationBuilder AddApiKey(this AuthenticationBuilder authenticationBuilder, string name, Action<ApiKeyAuthenticationOptions> options)
        {
            return authenticationBuilder.AddScheme<ApiKeyAuthenticationOptions, ApiKeyAuthenticationHandler>(name, options);
@@ -29,19 +35,27 @@ namespace Prowlarr.Http.Authentication

        public static AuthenticationBuilder AddAppAuthentication(this IServiceCollection services)
        {
-            return services.AddAuthentication()
-                .AddNone(AuthenticationType.None.ToString())
-                .AddExternal(AuthenticationType.External.ToString())
-                .AddBasic(AuthenticationType.Basic.ToString())
-                .AddCookie(AuthenticationType.Forms.ToString(), options =>
+            services.AddOptions<CookieAuthenticationOptions>(AuthenticationType.Forms.ToString())
+                .Configure<IConfigFileProvider>((options, configFileProvider) =>
                {
-                    options.Cookie.Name = "ProwlarrAuth";
+                    // Replace diacritics and replace non-word characters to ensure cookie name doesn't contain any valid URL characters not allowed in cookie names
+                    var instanceName = configFileProvider.InstanceName;
+                    instanceName = instanceName.RemoveDiacritics();
+                    instanceName = CookieNameRegex.Replace(instanceName, string.Empty);
+
+                    options.Cookie.Name = $"{instanceName}Auth";
                    options.AccessDeniedPath = "/login?loginFailed=true";
                    options.LoginPath = "/login";
                    options.ExpireTimeSpan = TimeSpan.FromDays(7);
                    options.SlidingExpiration = true;
                    options.ReturnUrlParameter = "returnUrl";
-                })
+                });
+
+            return services.AddAuthentication()
+                .AddNone(AuthenticationType.None.ToString())
+                .AddExternal(AuthenticationType.External.ToString())
+                .AddBasic(AuthenticationType.Basic.ToString())
+                .AddCookie(AuthenticationType.Forms.ToString())
                .AddApiKey("API", options =>
                {
                    options.HeaderName = "X-Api-Key";
--- a/src/Prowlarr.Http/PagingResource.cs
+++ b/src/Prowlarr.Http/PagingResource.cs
@@ -38,7 +38,11 @@ namespace Prowlarr.Http

    public static class PagingResourceMapper
    {
-        public static PagingSpec<TModel> MapToPagingSpec<TResource, TModel>(this PagingResource<TResource> pagingResource, string defaultSortKey = "Id", SortDirection defaultSortDirection = SortDirection.Ascending)
+        public static PagingSpec<TModel> MapToPagingSpec<TResource, TModel>(
+            this PagingResource<TResource> pagingResource,
+            HashSet<string> allowedSortKeys,
+            string defaultSortKey = "id",
+            SortDirection defaultSortDirection = SortDirection.Ascending)
        {
            var pagingSpec = new PagingSpec<TModel>
            {
@@ -48,14 +52,15 @@ namespace Prowlarr.Http
                SortDirection = pagingResource.SortDirection,
            };

-            if (pagingResource.SortKey == null)
-            {
-                pagingSpec.SortKey = defaultSortKey;
-                if (pagingResource.SortDirection == SortDirection.Default)
-                {
-                    pagingSpec.SortDirection = defaultSortDirection;
-                }
-            }
+            pagingSpec.SortKey = pagingResource.SortKey != null &&
+                                 allowedSortKeys is { Count: > 0 } &&
+                                 allowedSortKeys.Contains(pagingResource.SortKey)
+                ? pagingResource.SortKey
+                : defaultSortKey;
+
+            pagingSpec.SortDirection = pagingResource.SortDirection == SortDirection.Default
+                ? defaultSortDirection
+                : pagingResource.SortDirection;

            return pagingSpec;
        }
--- a/yarn.lock
+++ b/yarn.lock
Author	SHA1	Message	Date
Qstick	17e1a72baf	Bump webpack to 5.94.0 and regenerate yarn.lock	2024-09-22 22:34:45 -05:00
Bogdan	b454ded00a	Bump version to 1.24.3	2024-09-22 07:48:53 +03:00
Servarr	d4512393e2	Automated API Docs update	2024-09-21 22:05:08 +03:00
Bogdan	97d1384726	Guard against using invalid sort keys	2024-09-21 21:35:23 +03:00
Bogdan	ba002a7a4a	Add packages needed for RemoveDiacritics	2024-09-21 21:30:34 +03:00
momo	349efab7a8	Fix description for API key as query parameter (cherry picked from commit 30c36fdc3baa686102ff124833c7963fc786f251)	2024-09-21 21:21:26 +03:00
Mark McDowall	af9a6f42db	Fixed: Unable to login when instance name contained brackets	2024-09-21 00:27:15 +03:00
Mark McDowall	6b20fa8abd	New: Use instance name in forms authentication cookie name Closes #2224	2024-09-16 16:47:22 +03:00
Bogdan	029ad3903f	Bump version to 1.24.2	2024-09-15 15:56:33 +03:00