Remove redirects from error handling and clean Elmah (#7960)

Progress on #7868

Author: joelverhagen

src/NuGetGallery/App_400.aspx

@@ -0,0 +1,13 @@
+<% Response.StatusCode = 400 %>
+<!DOCTYPE html>
+<html lang="en">
+<head>
+    <meta charset="utf-8" />
+    <meta http-equiv="X-UA-Compatible" content="IE=edge">
+    <meta name="viewport" content="width=device-width, initial-scale=1">
+    <title>Bad Request</title>
+</head>
+<body>
+    Bad Request
+</body>
+</html>

src/NuGetGallery/App_404.aspx

@@ -0,0 +1,13 @@
+<% Response.StatusCode = 404 %>
+<!DOCTYPE html>
+<html lang="en">
+<head>
+    <meta charset="utf-8" />
+    <meta http-equiv="X-UA-Compatible" content="IE=edge">
+    <meta name="viewport" content="width=device-width, initial-scale=1">
+    <title>Not Found</title>
+</head>
+<body>
+    Not Found
+</body>
+</html>

src/NuGetGallery/App_500.aspx

@@ -0,0 +1,13 @@
+<% Response.StatusCode = 500 %>
+<!DOCTYPE html>
+<html lang="en">
+<head>
+    <meta charset="utf-8" />
+    <meta http-equiv="X-UA-Compatible" content="IE=edge">
+    <meta name="viewport" content="width=device-width, initial-scale=1">
+    <title>Internal Server Error</title>
+</head>
+<body>
+    Internal Server Error
+</body>
+</html>

src/NuGetGallery/App_Start/AppActivator.cs

@@ -237,6 +237,7 @@ private static void AppPostStart(IAppConfiguration configuration)
             GlobalFilters.Filters.Add(new ReadOnlyModeErrorFilter());
             GlobalFilters.Filters.Add(new AntiForgeryErrorFilter());
             GlobalFilters.Filters.Add(new UserDeletedErrorFilter());
+            GlobalFilters.Filters.Add(new RequestValidationExceptionFilter());
             ValueProviderFactories.Factories.Add(new HttpHeaderValueProviderFactory());
         }
 

src/NuGetGallery/Infrastructure/AntiForgeryErrorFilter.cs

@@ -1,5 +1,6 @@
 // Copyright (c) .NET Foundation. All rights reserved.
 // Licensed under the Apache License, Version 2.0. See License.txt in the project root for license information.
+
 using System.Web.Mvc;
 
 namespace NuGetGallery.Infrastructure

src/NuGetGallery/Infrastructure/CookieTempDataProvider.cs

@@ -1,8 +1,10 @@
 // Copyright (c) .NET Foundation. All rights reserved.
 // Licensed under the Apache License, Version 2.0. See License.txt in the project root for license information.
+
 using System;
 using System.Collections.Generic;
 using System.Globalization;
+using System.Net;
 using System.Web;
 using System.Web.Mvc;
 
@@ -50,7 +52,19 @@ void ITempDataProvider.SaveTempData(ControllerContext controllerContext, IDictio
 
         protected virtual IDictionary<string, object> LoadTempData(ControllerContext controllerContext)
         {
-            var cookie = _httpContext.Request.Cookies[TempDataCookieKey];
+            HttpCookie cookie;
+            try
+            {
+                cookie = _httpContext.Request.Cookies[TempDataCookieKey];
+            }
+            catch (HttpRequestValidationException ex)
+            {
+                throw new HttpException(
+                    (int)HttpStatusCode.BadRequest,
+                    $"The cookie {TempDataCookieKey} could not be read.",
+                    ex);
+            }
+
             var dictionary = new Dictionary<string, object>(StringComparer.OrdinalIgnoreCase);
             if ((cookie == null) || String.IsNullOrEmpty(cookie.Value))
             {

src/NuGetGallery/Infrastructure/RequestValidationExceptionFilter.cs

@@ -0,0 +1,28 @@
+// Copyright (c) .NET Foundation. All rights reserved.
+// Licensed under the Apache License, Version 2.0. See License.txt in the project root for license information.
+
+using System.Web;
+using System.Web.Mvc;
+
+namespace NuGetGallery.Infrastructure
+{
+    public sealed class RequestValidationExceptionFilter : FilterAttribute, IExceptionFilter
+    {
+        public void OnException(ExceptionContext context)
+        {
+            if (context.Exception is HttpRequestValidationException)
+            {
+                context.HttpContext.Response.Clear();
+                context.HttpContext.Response.TrySkipIisCustomErrors = true;
+                context.HttpContext.Response.StatusCode = 400;
+
+                context.Result = new ViewResult
+                {
+                    ViewName = "~/Views/Errors/BadRequest.cshtml",
+                };
+
+                context.ExceptionHandled = true;
+            }
+        }
+    }
+}

src/NuGetGallery/NuGetGallery.csproj

@@ -224,6 +224,7 @@
     <Compile Include="Infrastructure\ABTestEnrollmentState.cs" />
     <Compile Include="Infrastructure\ABTestEnrollmentFactory.cs" />
     <Compile Include="Infrastructure\CookieBasedABTestService.cs" />
+    <Compile Include="Infrastructure\RequestValidationExceptionFilter.cs" />
     <Compile Include="Infrastructure\IABTestEnrollmentFactory.cs" />
     <Compile Include="Infrastructure\IABTestService.cs" />
     <Compile Include="Infrastructure\ILuceneDocumentFactory.cs" />
@@ -1275,6 +1276,9 @@
       <CopyToOutputDirectory>PreserveNewest</CopyToOutputDirectory>
       <SubType>Designer</SubType>
     </Content>
+    <Content Include="App_404.aspx" />
+    <Content Include="App_400.aspx" />
+    <Content Include="App_500.aspx" />
     <Content Include="Areas\Admin\DynamicData\FieldTemplates\Url_Edit.ascx" />
     <Content Include="Areas\Admin\DynamicData\PageTemplates\ListDetails.aspx" />
     <Content Include="Content\admin\SupportRequestStyles.css" />

src/NuGetGallery/Web.config

@@ -211,7 +211,18 @@
     <security allowRemoteAccess="true"/>
     <errorFilter>
       <test>
-        <equal binding="HttpStatusCode" value="404" type="Int32"/>
+        <or>
+          <equal binding="HttpStatusCode" value="404" type="Int32"/>
+          <equal binding="HttpStatusCode" value="409" type="Int32"/>
+          
+          <regex binding="Exception.Message" pattern="(?ix: \b potentially \b.+?\b dangerous \b.+?\b value \b.+?\b detected \b.+?\b client \b )" />
+          
+          <!-- Ignore errors from the simulated error (fault injection) test path. -->
+          <equal binding="Context.Request.Path" value="/pages/simulate-error" type="String" />
+          <equal binding="Context.Request.Path" value="/api/simulate-error" type="String" />
+          <equal binding="Context.Request.Path" value="/api/v1/SimulateError()" type="String" />
+          <regex binding="Exception.Message" pattern="^SimulatedErrorType \w+$" />
+        </or>
       </test>
     </errorFilter>
     <errorLog type="Elmah.SqlErrorLog, Elmah, Version=1.2.14706.0, Culture=neutral, PublicKeyToken=57eac04b2e0f138e, processorArchitecture=MSIL" connectionStringName="NuGetGallery"/>
@@ -339,12 +350,10 @@
       <!-- Remove Default HTTP Handler -->
       <remove path="*" verb="GET,HEAD,POST"/>
     </httpHandlers>
-    <customErrors mode="RemoteOnly" defaultRedirect="~/Errors/500" redirectMode="ResponseRedirect">
-      <!-- Adding ? at the end of the redirect URL prevents the illegal request to be passed
-           as a query parameter to the redirect URL and causing additional failures -->
-      <error statusCode="400" redirect="~/Errors/400"/>
-      <error statusCode="404" redirect="~/Errors/404"/>
-      <error statusCode="500" redirect="~/Errors/500"/>
+    <customErrors mode="RemoteOnly" defaultRedirect="~/App_500.aspx" redirectMode="ResponseRewrite">
+      <error statusCode="400" redirect="~/App_400.aspx"/>
+      <error statusCode="404" redirect="~/App_404.aspx"/>
+      <error statusCode="500" redirect="~/App_500.aspx"/>
     </customErrors>
     <sessionState mode="Off"/>
   </system.web>
@@ -647,4 +656,4 @@
       </dependentAssembly>
     </assemblyBinding>
   </runtime>
-</configuration>
+</configuration>

tests/NuGetGallery.FunctionalTests/ErrorHandling/ErrorHandlingTests.cs

@@ -37,8 +37,12 @@ public ErrorHandlingTests(ITestOutputHelper testOutputHelper) : base(testOutputH
         [Theory]
         [Priority(2)]
         [Category("P2Tests")]
-        [MemberData(nameof(RejectedCookies))]
-        public async Task RejectedCookie(string relativePath, string name, string value, Action<TestResponse> validate)
+        [InlineData("/", "__Controller::TempData", "Message=You successfully uploaded z̡̜͍̈̍̐̃̊͋́a̜̣͍̬̞̝͉̽ͧ͗l̸̖͕̤̠̹̘͖̃̌ͤg͓̝͓̰̀ͪo͈͌ 1.0.0.", 400, false)]
+        [InlineData("/", "__Controller::TempData", "Message=<script>alert(1)</script>", 400, false)]
+        [InlineData("/", "__Controller::TempData", "<script>alert(1)</script>", 400, false)]
+        [InlineData("/packages", "nugetab", "<script>alert(1)</script>", 400, true)]
+        [InlineData("/packages", "nugetab", "z̡̜͍̈̍̐̃̊͋́a̜̣͍̬̞̝͉̽ͧ͗l̸̖͕̤̠̹̘͖̃̌ͤg͓̝͓̰̀ͪo͈͌", 400, false)]
+        public async Task RejectedCookie(string relativePath, string name, string value, int statusCode, bool pretty)
         {
             // Arrange
             _httpClientHandler.UseCookies = false;
@@ -51,23 +55,17 @@ public async Task RejectedCookie(string relativePath, string name, string value,
                 var response = await GetTestResponseAsync(relativePath, request);
 
                 // Assert
-                validate(response);
+                if (pretty)
+                {
+                    Validator.PrettyHtml((HttpStatusCode)statusCode)(response);
+                }
+                else
+                {
+                    Validator.SimpleHtml((HttpStatusCode)statusCode)(response);
+                }
             }
         }
 
-        public static IEnumerable<object[]> RejectedCookies => new[]
-        {
-            new object[] { $"/packages/{Constants.TestPackageId}", "__Controller::TempData", "Message=You successfully uploaded z̡̜͍̈̍̐̃̊͋́a̜̣͍̬̞̝͉̽ͧ͗l̸̖͕̤̠̹̘͖̃̌ͤg͓̝͓̰̀ͪo͈͌ 1.0.0.", Validator.SimpleHtml(HttpStatusCode.BadRequest) },
-
-            new object[] { $"/packages/{Constants.TestPackageId}", "__Controller::TempData", "Message=<script>alert(1)</script>", Validator.Redirect("500") },
-
-            new object[] { $"/packages/{Constants.TestPackageId}", "__Controller::TempData", "<script>alert(1)</script>", Validator.Redirect("500") },
-
-            new object[] { "/packages", "nugetab", "<script>alert(1)</script>", Validator.PrettyInternalServerError() },
-
-            new object[] { "/packages", "nugetab", "z̡̜͍̈̍̐̃̊͋́a̜̣͍̬̞̝͉̽ͧ͗l̸̖͕̤̠̹̘͖̃̌ͤg͓̝͓̰̀ͪo͈͌", Validator.SimpleHtml(HttpStatusCode.BadRequest) },
-        };
-
         /// <summary>
         /// Verify the behavior when a URL with restricted characters is used.
         /// </summary>
@@ -85,9 +83,7 @@ public async Task RejectedUrl(string relativePath)
             var response = await GetTestResponseAsync(relativePath);
 
             // Assert
-            // Since the HTTP client is configured to not follow redirects, the response we get back is not the
-            // error page itself but instead a redirect to an error page.
-            Validator.Redirect("400")(response);
+            Validator.SimpleHtml(HttpStatusCode.BadRequest)(response);
         }
 
         /// <summary>
@@ -96,17 +92,49 @@ public async Task RejectedUrl(string relativePath)
         [Theory]
         [Priority(2)]
         [Category("P2Tests")]
-        [InlineData("/api/does-not-exist")]
-        [InlineData("/pages/does-not-exist")]
-        [InlineData("/api/v2/curated-feed/microsoftdotnet/DoesNotExist()")]
-        [InlineData("/does-not-exist")]
-        public async Task PageThatDoesNotExist(string relativePath)
+        [InlineData("/api/does-not-exist", true)]
+        [InlineData("/pages/does-not-exist", true)]
+        [InlineData("/api/v2/curated-feed/microsoftdotnet/DoesNotExist()", true)]
+        [InlineData("/does-not-exist", true)]
+        [InlineData("/packages/package--cannot--exist", true)]
+        [InlineData("/packages/BaseTestPackage/invalid-version/Manage", true)]
+        // The following behave poorly. See: https://github.com/NuGet/NuGetGallery/issues/7959
+        [InlineData("/packages/BaseTestPackage/invalid-version", false)]
+        [InlineData("/packages/BaseTestPackage/1.0.0/Mismanage", false)]
+        public async Task PageThatDoesNotExist(string relativePath, bool pretty)
         {
             // Arrange & Act
             var response = await GetTestResponseAsync(relativePath);
 
             // Assert
-            Validator.PrettyHtml(HttpStatusCode.NotFound)(response);
+            if (pretty)
+            {
+                Validator.PrettyHtml(HttpStatusCode.NotFound)(response);
+            }
+            else
+            {
+                Validator.SimpleHtml(HttpStatusCode.NotFound)(response);
+            }
+        }
+
+        /// <summary>
+        /// Verify a matched route but a mismatched HTTP method.
+        /// </summary>
+        [Theory]
+        [Priority(2)]
+        [Category("P2Tests")]
+        [InlineData("DELETE", "/api/v2", 405)]
+        // The following have non-ideal behavior.
+        [InlineData("DELETE", "/api/status", 500)]
+        [InlineData("GET", "/packages/manage/reflow", 404)]
+        [InlineData("POST", "/packages/BaseTestPackage/1.0.0/License", 404)]
+        public async Task UnsupportedMethod(string httpMethod, string relativePath, int statusCode)
+        {
+            // Arrange & Act
+            var response = await GetTestResponseAsync(new HttpMethod(httpMethod), relativePath);
+
+            // Assert
+            Assert.Equal((HttpStatusCode)statusCode, response.StatusCode);
         }
 
         [Fact]
@@ -136,8 +164,7 @@ public async Task ErrorInErrorPageWithoutPath()
             var response = await GetTestResponseAsync("/Errors/500", cookies);
 
             // Assert
-            Validator.Redirect("500")(response);
-            Assert.Equal("/Errors/500?aspxerrorpath=/Errors/500", response.LocationHeader);
+            Validator.SimpleHtml(HttpStatusCode.InternalServerError);
         }
 
         /// <summary>
@@ -244,14 +271,14 @@ public static IEnumerable<object[]> AllTestData
             { SER(EndpointType.OData, SimulatedErrorType.Result500), Validator.Empty(HttpStatusCode.InternalServerError, SimulatedErrorType.Result500) },
             { SER(EndpointType.OData, SimulatedErrorType.Result503), Validator.Empty(HttpStatusCode.ServiceUnavailable, SimulatedErrorType.Result503) },
             { SER(EndpointType.OData, SimulatedErrorType.UserSafeException), Validator.Xml() },
-            { SER(EndpointType.Pages, SimulatedErrorType.HttpException400), Validator.Redirect("400") },
-            { SER(EndpointType.Pages, SimulatedErrorType.HttpException404), Validator.Redirect("404") },
-            { SER(EndpointType.Pages, SimulatedErrorType.HttpException503), Validator.Redirect("500") },
+            { SER(EndpointType.Pages, SimulatedErrorType.HttpException400), Validator.SimpleHtml(HttpStatusCode.BadRequest) },
+            { SER(EndpointType.Pages, SimulatedErrorType.HttpException404), Validator.SimpleHtml(HttpStatusCode.NotFound) },
+            { SER(EndpointType.Pages, SimulatedErrorType.HttpException503), Validator.SimpleHtml(HttpStatusCode.InternalServerError) },
             { SER(EndpointType.Pages, SimulatedErrorType.ReadOnlyMode), Validator.PrettyHtml(HttpStatusCode.ServiceUnavailable) },
             { SER(EndpointType.Pages, SimulatedErrorType.Result400), Validator.SimpleHtml(HttpStatusCode.BadRequest, SimulatedErrorType.Result400) },
             { SER(EndpointType.Pages, SimulatedErrorType.Result404), Validator.PrettyHtml(HttpStatusCode.NotFound) },
             { SER(EndpointType.Pages, SimulatedErrorType.Result503), Validator.SimpleHtml(HttpStatusCode.ServiceUnavailable, SimulatedErrorType.Result503) },
-            { SER(EndpointType.Pages, SimulatedErrorType.ExceptionInInlineErrorPage), Validator.Redirect("500") },
+            { SER(EndpointType.Pages, SimulatedErrorType.ExceptionInInlineErrorPage), Validator.SimpleHtml(HttpStatusCode.InternalServerError) },
         };
 
         /// <summary>
@@ -284,7 +311,22 @@ private async Task<TestResponse> GetTestResponseAsync(SimulatedErrorRequest erro
 
         private async Task<TestResponse> GetTestResponseAsync(string relativePath, IReadOnlyDictionary<string, string> cookies)
         {
-            using (var request = new HttpRequestMessage(HttpMethod.Get, GetRequestUri(relativePath)))
+            return await GetTestResponseAsync(HttpMethod.Get, relativePath, cookies);
+        }
+
+        private async Task<TestResponse> GetTestResponseAsync(string relativePath)
+        {
+            return await GetTestResponseAsync(HttpMethod.Get, relativePath);
+        }
+
+        private async Task<TestResponse> GetTestResponseAsync(HttpMethod method, string relativePath)
+        {
+            return await GetTestResponseAsync(method, relativePath, new Dictionary<string, string>());
+        }
+
+        private async Task<TestResponse> GetTestResponseAsync(HttpMethod method, string relativePath, IReadOnlyDictionary<string, string> cookies)
+        {
+            using (var request = new HttpRequestMessage(method, GetRequestUri(relativePath)))
             {
                 foreach (var cookie in cookies)
                 {
@@ -295,11 +337,6 @@ private async Task<TestResponse> GetTestResponseAsync(string relativePath, IRead
             }
         }
 
-        private async Task<TestResponse> GetTestResponseAsync(string relativePath)
-        {
-            return await GetTestResponseAsync(relativePath, new Dictionary<string, string>());
-        }
-
         private Uri GetRequestUri(string relativePath)
         {
             return new Uri(new Uri(UrlHelper.BaseUrl), relativePath);