Add test case for BZ 69442. Based on #779 by Chenjp

Also refactor references to application/x-www-form-urlencoded
https://bz.apache.org/bugzilla/show_bug.cgi?id=69442

Author: markt-asf

java/org/apache/catalina/Globals.java

@@ -249,4 +249,9 @@ public final class Globals {
      * Default domain for MBeans if none can be determined
      */
     public static final String DEFAULT_MBEAN_DOMAIN = "Catalina";
+
+
+    // ----------------------------------------- Specification related constants
+
+    public static final String CONTENT_TYPE_FORM_URL_ENCODING = "application/x-www-form-urlencoded";
 }

java/org/apache/catalina/authenticator/FormAuthenticator.java

@@ -29,6 +29,7 @@
 import jakarta.servlet.http.HttpServletResponse;
 import jakarta.servlet.http.HttpSession;
 
+import org.apache.catalina.Globals;
 import org.apache.catalina.Realm;
 import org.apache.catalina.Session;
 import org.apache.catalina.connector.Request;
@@ -626,7 +627,7 @@ protected boolean restoreRequest(Request request, Session session) throws IOExce
             // If no content type specified, use default for POST
             String savedContentType = saved.getContentType();
             if (savedContentType == null && "POST".equalsIgnoreCase(method)) {
-                savedContentType = "application/x-www-form-urlencoded";
+                savedContentType = Globals.CONTENT_TYPE_FORM_URL_ENCODING;
             }
 
             contentType.setString(savedContentType);

java/org/apache/catalina/connector/Request.java

@@ -2910,7 +2910,7 @@ protected void parseParameters() {
                 return;
             }
 
-            if (!("application/x-www-form-urlencoded".equals(mediaType))) {
+            if (!(Globals.CONTENT_TYPE_FORM_URL_ENCODING.equals(mediaType))) {
                 success = true;
                 return;
             }

java/org/apache/catalina/filters/CorsFilter.java

@@ -35,6 +35,7 @@
 import jakarta.servlet.http.HttpServletRequest;
 import jakarta.servlet.http.HttpServletResponse;
 
+import org.apache.catalina.Globals;
 import org.apache.juli.logging.Log;
 import org.apache.juli.logging.LogFactory;
 import org.apache.tomcat.util.http.RequestUtil;
@@ -908,7 +909,7 @@ protected enum CORSRequestType {
      * @see <a href="http://www.w3.org/TR/cors/#terminology" >http://www.w3.org/TR/cors/#terminology</a>
      */
     public static final Collection<String> SIMPLE_HTTP_REQUEST_CONTENT_TYPE_VALUES = Collections.unmodifiableSet(
-            new HashSet<>(Arrays.asList("application/x-www-form-urlencoded", "multipart/form-data", "text/plain")));
+            new HashSet<>(Arrays.asList(Globals.CONTENT_TYPE_FORM_URL_ENCODING, "multipart/form-data", "text/plain")));
 
     // ------------------------------------------------ Configuration Defaults
     /**

test/org/apache/catalina/authenticator/TestFormAuthenticatorA.java

@@ -467,9 +467,7 @@ protected void doResourceRequest(String method, boolean isFullQualUri,
                 if (requestTail == null) {
                     requestTail = "role=bar";
                 }
-                requestHead.append(
-                        "Content-Type: application/x-www-form-urlencoded")
-                        .append(CRLF);
+                requestHead.append(SimpleHttpClient.HTTP_HEADER_CONTENT_TYPE_FORM_URL_ENCODING);
                 // calculate post data length
                 String len = Integer.toString(requestTail.length());
                 requestHead.append("Content-length: ").append(len).append(CRLF);

test/org/apache/catalina/authenticator/TestFormAuthenticatorB.java

@@ -359,9 +359,7 @@ protected void doResourceRequest(String method, boolean isFullQualUri,
                 if (requestTail == null) {
                     requestTail = "role=bar";
                 }
-                requestHead.append(
-                        "Content-Type: application/x-www-form-urlencoded")
-                        .append(CRLF);
+                requestHead.append(SimpleHttpClient.HTTP_HEADER_CONTENT_TYPE_FORM_URL_ENCODING);
                 // calculate post data length
                 String len = Integer.toString(requestTail.length());
                 requestHead.append("Content-length: ").append(len).append(CRLF);

test/org/apache/catalina/authenticator/TestFormAuthenticatorC.java

@@ -361,9 +361,7 @@ protected void doResourceRequest(String method, boolean isFullQualUri,
                 if (requestTail == null) {
                     requestTail = "role=bar";
                 }
-                requestHead.append(
-                        "Content-Type: application/x-www-form-urlencoded")
-                        .append(CRLF);
+                requestHead.append(SimpleHttpClient.HTTP_HEADER_CONTENT_TYPE_FORM_URL_ENCODING);
                 // calculate post data length
                 String len = Integer.toString(requestTail.length());
                 requestHead.append("Content-length: ").append(len).append(CRLF);

test/org/apache/catalina/connector/TestRequest.java

@@ -45,6 +45,7 @@
 import org.junit.Test;
 
 import org.apache.catalina.Context;
+import org.apache.catalina.Globals;
 import org.apache.catalina.authenticator.BasicAuthenticator;
 import org.apache.catalina.filters.FailedRequestFilter;
 import org.apache.catalina.startup.SimpleHttpClient;
@@ -54,6 +55,7 @@
 import org.apache.tomcat.unittest.TesterRequest;
 import org.apache.tomcat.util.buf.ByteChunk;
 import org.apache.tomcat.util.buf.EncodedSolidusHandling;
+import org.apache.tomcat.util.buf.StringUtils;
 import org.apache.tomcat.util.descriptor.web.FilterDef;
 import org.apache.tomcat.util.descriptor.web.FilterMap;
 import org.apache.tomcat.util.descriptor.web.LoginConfig;
@@ -208,7 +210,7 @@ private Exception doRequest(int postLimit, boolean ucChunkedHead) {
                     request[0] =
                         "POST http://localhost:8080/test HTTP/1.1" + CRLF +
                         "Host: localhost:8080" + CRLF +
-                        "content-type: application/x-www-form-urlencoded" + CRLF +
+                        SimpleHttpClient.HTTP_HEADER_CONTENT_TYPE_FORM_URL_ENCODING +
                         "Transfer-Encoding: CHUNKED" + CRLF +
                         "Connection: close" + CRLF +
                         CRLF +
@@ -218,7 +220,7 @@ private Exception doRequest(int postLimit, boolean ucChunkedHead) {
                     request[0] =
                         "POST http://localhost:8080/test HTTP/1.1" + CRLF +
                         "Host: localhost:8080" + CRLF +
-                        "content-type: application/x-www-form-urlencoded" + CRLF +
+                        SimpleHttpClient.HTTP_HEADER_CONTENT_TYPE_FORM_URL_ENCODING +
                         "Transfer-Encoding: chunked" + CRLF +
                         "Connection: close" + CRLF +
                         CRLF +
@@ -420,7 +422,7 @@ public void testBug48692() {
         // Make sure POST works properly
         //
         // POST with separate GET and POST parameters
-        client.doRequest("POST", "foo=bar", "application/x-www-form-urlencoded", "bar=baz", true);
+        client.doRequest("POST", "foo=bar", Globals.CONTENT_TYPE_FORM_URL_ENCODING, "bar=baz", true);
 
         Assert.assertTrue("Non-200 response for POST request",
                    client.isResponse200());
@@ -431,7 +433,7 @@ public void testBug48692() {
         client.reset();
 
         // POST with overlapping GET and POST parameters
-        client.doRequest("POST", "foo=bar&bar=foo", "application/x-www-form-urlencoded", "bar=baz&foo=baz", true);
+        client.doRequest("POST", "foo=bar&bar=foo", Globals.CONTENT_TYPE_FORM_URL_ENCODING, "bar=baz&foo=baz", true);
 
         Assert.assertTrue("Non-200 response for POST request",
                    client.isResponse200());
@@ -442,7 +444,7 @@ public void testBug48692() {
         client.reset();
 
         // PUT without POST-style parsing
-        client.doRequest("PUT", "foo=bar&bar=foo", "application/x-www-form-urlencoded", "bar=baz&foo=baz", false);
+        client.doRequest("PUT", "foo=bar&bar=foo", Globals.CONTENT_TYPE_FORM_URL_ENCODING, "bar=baz&foo=baz", false);
 
         Assert.assertTrue("Non-200 response for PUT/noparse request",
                    client.isResponse200());
@@ -453,7 +455,7 @@ public void testBug48692() {
         client.reset();
 
         // PUT with POST-style parsing
-        client.doRequest("PUT", "foo=bar&bar=foo", "application/x-www-form-urlencoded", "bar=baz&foo=baz", true);
+        client.doRequest("PUT", "foo=bar&bar=foo", Globals.CONTENT_TYPE_FORM_URL_ENCODING, "bar=baz&foo=baz", true);
 
         Assert.assertTrue("Non-200 response for PUT request",
                    client.isResponse200());
@@ -462,14 +464,6 @@ public void testBug48692() {
                      client.getResponseBody());
 
         client.reset();
-
-        /*
-        private Exception doRequest(String method,
-                                    String queryString,
-                                    String contentType,
-                                    String requestBody,
-                                    boolean allowBody) {
-        */
     }
 
     @Test
@@ -963,4 +957,64 @@ protected void doPost(HttpServletRequest req, HttpServletResponse resp)
             req.getReader();
         }
     }
+
+
+    /*
+     * https://bz.apache.org/bugzilla/show_bug.cgi?id=69442
+     */
+    @Test
+    public void testTestParameterMediaTypeLowerCase() throws Exception {
+        // toLowerCase() is unnecessary but keep it in case the constant is changed in the future
+        doTestParameterMediaTypeCase(Globals.CONTENT_TYPE_FORM_URL_ENCODING.toLowerCase(Locale.ENGLISH));
+    }
+
+
+    /*
+     * https://bz.apache.org/bugzilla/show_bug.cgi?id=69442
+     */
+    @Test
+    public void testTestParameterMediaTypeUpperCase() throws Exception {
+        doTestParameterMediaTypeCase(Globals.CONTENT_TYPE_FORM_URL_ENCODING.toUpperCase(Locale.ENGLISH));
+    }
+
+
+    private void doTestParameterMediaTypeCase(String contentType) throws Exception {
+        // Setup Tomcat instance
+        Tomcat tomcat = getTomcatInstance();
+
+        // No file system docBase required
+        Context ctx = getProgrammaticRootContext();
+
+        Tomcat.addServlet(ctx, "servlet", new Bug69442Servlet());
+        ctx.addServletMappingDecoded("/", "servlet");
+
+        tomcat.start();
+
+        ByteChunk bc = new ByteChunk();
+        Map<String,List<String>> reqHeaders = new HashMap<>();
+        reqHeaders.put("Content-Type", Arrays.asList(contentType));
+        postUrl("a=b&c=d".getBytes(), "http://localhost:" + getPort() + "/", bc, reqHeaders, null);
+        String responseBody = bc.toString();
+        Assert.assertTrue(responseBody, responseBody.contains("a=b"));
+        Assert.assertTrue(responseBody, responseBody.contains("c=d"));
+    }
+
+
+    private static class Bug69442Servlet extends HttpServlet {
+
+        private static final long serialVersionUID = 1L;
+
+        @Override
+        protected void doPost(HttpServletRequest req, HttpServletResponse resp) throws ServletException, IOException {
+            resp.setContentType("text/plain");
+            resp.setCharacterEncoding(StandardCharsets.UTF_8.name());
+            PrintWriter pw = resp.getWriter();
+            Enumeration<String> names = req.getParameterNames();
+            while (names.hasMoreElements()) {
+                String name = names.nextElement();
+                String[] values = req.getParameterValues(name);
+                pw.println(name + "=" + StringUtils.join(values));
+            }
+        }
+    }
 }

test/org/apache/catalina/startup/ExpectationClient.java

@@ -28,7 +28,7 @@ public void doRequestHeaders() throws Exception {
         requestHeaders.append("POST /echo HTTP/1.1").append(CRLF);
         requestHeaders.append("Host: localhost").append(CRLF);
         requestHeaders.append("Expect: 100-continue").append(CRLF);
-        requestHeaders.append("Content-Type: application/x-www-form-urlencoded").append(CRLF);
+        requestHeaders.append(SimpleHttpClient.HTTP_HEADER_CONTENT_TYPE_FORM_URL_ENCODING);
         String len = Integer.toString(BODY.length());
         requestHeaders.append("Content-length: ").append(len).append(CRLF);
         requestHeaders.append(CRLF);

test/org/apache/catalina/startup/SimpleHttpClient.java

@@ -37,6 +37,8 @@
 
 import org.junit.Assert;
 
+import org.apache.catalina.Globals;
+
 /**
  * Simple client for unit testing. It isn't robust, it isn't secure and
  * should not be used as the basis for production code. Its only purpose
@@ -50,6 +52,9 @@ public abstract class SimpleHttpClient {
     public static final String LF = "\n";
     public static final String CRLF = CR + LF;
 
+    public static final String HTTP_HEADER_CONTENT_TYPE_FORM_URL_ENCODING =
+            "Content-Type: " + Globals.CONTENT_TYPE_FORM_URL_ENCODING + CRLF;
+
     public static final String INFO_100 = "HTTP/1.1 100 ";
     public static final String OK_200 = "HTTP/1.1 200 ";
     public static final String CREATED_201 = "HTTP/1.1 201 ";