Merged in feat/sw-2740-invalidUrl-middleware (pull request #2087)

feat/sw-2740 return 404 if url contains bad chars * feat/sw-2740 return 404 if url contains bad chars Approved-by: Michael Zetterberg Approved-by: Joakim Jäderberg
2025-05-14 08:17:03 +00:00
parent 32618ad318
commit 0845b979cd
2 changed files with 18 additions and 0 deletions
--- a/apps/scandic-web/middleware.ts
+++ b/apps/scandic-web/middleware.ts
@@ -12,6 +12,7 @@ import * as currentWebLogout from "@/middlewares/currentWebLogout"
 import * as dateFormat from "@/middlewares/dateFormat"
 import * as familyAndFriends from "@/middlewares/familyAndFriends"
 import * as handleAuth from "@/middlewares/handleAuth"
+import * as invalidUrl from "@/middlewares/invalidUrl"
 import * as myPages from "@/middlewares/myPages"
 import * as redirect from "@/middlewares/redirect"
 import * as sasXScandic from "@/middlewares/sasXScandic"
@@ -50,6 +51,7 @@ export const middleware: NextMiddleware = async (request, event) => {

  // Note that the order of middlewares is important since that is the order they are matched by.
  const middlewares = [
+    invalidUrl,
    trailingSlash,
    currentWebLogin,
    currentWebLoginEmail,
--- a/apps/scandic-web/middlewares/invalidUrl.ts
+++ b/apps/scandic-web/middlewares/invalidUrl.ts
@@ -0,0 +1,16 @@
+import { type NextMiddleware, NextResponse } from "next/server"
+
+import { getDefaultRequestHeaders } from "./utils"
+
+import type { MiddlewareMatcher } from "@/types/middleware"
+
+export const middleware: NextMiddleware = async (request) => {
+  const headers = getDefaultRequestHeaders(request)
+  return NextResponse.next({
+    headers,
+  })
+}
+
+export const matcher: MiddlewareMatcher = (request) => {
+  return request.nextUrl.pathname.includes("*")
+}