fix: url percent encoding according to RFC 3986 (#781)

Author: VladislavFitz

Sources/AlgoliaSearchClient/Models/Search/Query/Query+URLEncodable.swift

@@ -101,9 +101,9 @@ extension Query {
     }
 
     func encode() -> String? {
-      var components = URLComponents()
-      components.queryItems = queryItems
-      return components.query?.addingPercentEncoding(withAllowedCharacters: .uriAllowed)
+      return queryItems
+        .map { "\($0.name)=\($0.value?.addingPercentEncoding(withAllowedCharacters: .urlAllowed) ?? "")" }
+        .joined(separator: "&")
     }
 
   }

Sources/AlgoliaSearchClient/Transport/URLSession/URLRequest+Convenience.swift

@@ -14,7 +14,7 @@ extension URLRequest: Builder {}
 
 extension CharacterSet {
 
-  static var uriAllowed = CharacterSet.urlQueryAllowed.subtracting(.init(charactersIn: "+"))
+  static let urlAllowed: CharacterSet = .alphanumerics.union(.init(charactersIn: "-._~")) // as per RFC 3986
 
 }
 

Tests/AlgoliaSearchClientTests/Unit/QueryTests.swift

@@ -19,7 +19,7 @@ class QueryTests: XCTestCase {
     .set(\.explainModules, to: [.matchAlternatives])
     .set(\.attributesToRetrieve, to: ["attr1", "attr2", "attr3"])
     .set(\.restrictSearchableAttributes, to: ["rattr1", "rattr2"])
-    .set(\.filters, to: "(color:red OR color:yellow) AND on-sale AND 12+")
+    .set(\.filters, to: "(color:red OR color:yellow) AND on-sale AND 12+ AND (test:\"Hello & World\")")
     .set(\.facetFilters, to: [.or("color:red", "color:blue"), "size:M"])
     .set(\.optionalFilters, to: [.or("color:red", "color:yellow"), "on-sale"])
     .set(\.numericFilters, to: [.or("price>100", "length<1000"), "metrics>5"])
@@ -93,23 +93,23 @@ class QueryTests: XCTestCase {
       "distinct=5",
       "getRankingInfo=true",
       "explainModules=match.alternatives",
-      "attributesToRetrieve=attr1,attr2,attr3",
-      "restrictSearchableAttributes=rattr1,rattr2",
-      "filters=(color:red%20OR%20color:yellow)%20AND%20on-sale%20AND%2012%2B",
-      "facetFilters=%5B%5B%22color:red%22,%22color:blue%22%5D,%22size:M%22%5D",
-      "optionalFilters=%5B%5B%22color:red%22,%22color:yellow%22%5D,%22on-sale%22%5D",
-      "numericFilters=%5B%5B%22price%3E100%22,%22length%3C1000%22%5D,%22metrics%3E5%22%5D",
-      "tagFilters=%5B%5B%22tag1%22,%22tag2%22%5D,%22tag3%22%5D",
+      "attributesToRetrieve=attr1%2Cattr2%2Cattr3",
+      "restrictSearchableAttributes=rattr1%2Crattr2",
+      "filters=%28color%3Ared%20OR%20color%3Ayellow%29%20AND%20on-sale%20AND%2012%2B%20AND%20%28test%3A%22Hello%20%26%20World%22%29",
+      "facetFilters=%5B%5B%22color%3Ared%22%2C%22color%3Ablue%22%5D%2C%22size%3AM%22%5D",
+      "optionalFilters=%5B%5B%22color%3Ared%22%2C%22color%3Ayellow%22%5D%2C%22on-sale%22%5D",
+      "numericFilters=%5B%5B%22price%3E100%22%2C%22length%3C1000%22%5D%2C%22metrics%3E5%22%5D",
+      "tagFilters=%5B%5B%22tag1%22%2C%22tag2%22%5D%2C%22tag3%22%5D",
       "sumOrFiltersScores=false",
-      "facets=facet1,facet2,facet3",
+      "facets=facet1%2Cfacet2%2Cfacet3",
       "maxValuesPerFacet=10",
       "facetingAfterDistinct=true",
       "sortFacetValuesBy=count",
       "maxFacetHits=100",
-      "attributesToHighlight=hattr1,hattr2,hattr3",
-      "attributesToSnippet=sattr1:10,sattr2",
+      "attributesToHighlight=hattr1%2Chattr2%2Chattr3",
+      "attributesToSnippet=sattr1%3A10%2Csattr2",
       "highlightPreTag=%3Chl%3E",
-      "highlightPostTag=%3C/hl%3E",
+      "highlightPostTag=%3C%2Fhl%3E",
       "snippetEllipsisText=read%20more",
       "restrictHighlightAndSnippetArrays=true",
       "page=15",
@@ -120,41 +120,41 @@ class QueryTests: XCTestCase {
       "minWordSizefor2Typos=4",
       "typoTolerance=strict",
       "allowTyposOnNumericTokens=false",
-      "disableTypoToleranceOnAttributes=dtattr1,dtattr2",
-      "aroundLatLng=79.5,10.5",
+      "disableTypoToleranceOnAttributes=dtattr1%2Cdtattr2",
+      "aroundLatLng=79.5%2C10.5",
       "aroundLatLngViaIP=true",
       "aroundRadius=80",
-      "aroundPrecision=%5B%7B%22from%22:0,%22value%22:1000%7D,%7B%22from%22:0,%22value%22:100000%7D%5D",
+      "aroundPrecision=%5B%7B%22from%22%3A0%2C%22value%22%3A1000%7D%2C%7B%22from%22%3A0%2C%22value%22%3A100000%7D%5D",
       "minimumAroundRadius=40",
-      "insideBoundingBox=%5B%5B0.0,10.0,20.0,30.0%5D,%5B40.0,50.0,60.0,70.0%5D%5D",
-      "insidePolygon=%5B%5B0.0,10.0,20.0,30.0,40.0,50.0%5D,%5B10.0,20.0,30.0,40.0,50.0,60.0%5D%5D",
+      "insideBoundingBox=%5B%5B0.0%2C10.0%2C20.0%2C30.0%5D%2C%5B40.0%2C50.0%2C60.0%2C70.0%5D%5D",
+      "insidePolygon=%5B%5B0.0%2C10.0%2C20.0%2C30.0%2C40.0%2C50.0%5D%2C%5B10.0%2C20.0%2C30.0%2C40.0%2C50.0%2C60.0%5D%5D",
       "queryType=prefixLast",
       "removeWordsIfNoResults=lastWords",
       "advancedSyntax=false",
-      "advancedSyntaxFeatures=exactPhrase,excludeWords",
-      "optionalWords=optWord1,optWord2",
-      "removeStopWords=ar,fr",
-      "disableExactOnAttributes=deAttr1,deAttr2",
+      "advancedSyntaxFeatures=exactPhrase%2CexcludeWords",
+      "optionalWords=optWord1%2CoptWord2",
+      "removeStopWords=ar%2Cfr",
+      "disableExactOnAttributes=deAttr1%2CdeAttr2",
       "exactOnSingleWordQuery=word",
-      "alternativesAsExact=ignorePlurals,singleWordSynonym",
+      "alternativesAsExact=ignorePlurals%2CsingleWordSynonym",
       "ignorePlurals=false",
-      "queryLanguages=hi,sq",
+      "queryLanguages=hi%2Csq",
       "decompoundQuery=false",
       "enableRules=true",
-      "ruleContexts=rc1,rc2",
+      "ruleContexts=rc1%2Crc2",
       "enablePersonalization=false",
       "personalizationImpact=5",
       "userToken=testUserToken",
       "analytics=true",
-      "analyticsTags=at1,at2,at3",
+      "analyticsTags=at1%2Cat2%2Cat3",
       "enableABTest=false",
       "clickAnalytics=true",
       "synonyms=false",
       "replaceSynonymsInHighlight=true",
       "minProximity=3",
-      "responseFields=facets_stats,hits",
+      "responseFields=facets_stats%2Chits",
       "percentileComputation=false",
-      "naturalLanguages=mi,ta",
+      "naturalLanguages=mi%2Cta",
       "enableReRanking=true",
       "custom1=val1",
       "custom2=2.0",
@@ -189,7 +189,7 @@ class QueryTests: XCTestCase {
       "explainModules": ["match.alternatives"],
       "attributesToRetrieve": ["attr1", "attr2", "attr3"],
       "restrictSearchableAttributes": ["rattr1", "rattr2"],
-      "filters": "(color:red OR color:yellow) AND on-sale AND 12+",
+      "filters": "(color:red OR color:yellow) AND on-sale AND 12+ AND (test:\"Hello & World\")",
       "facetFilters": [["color:red", "color:blue"], "size:M"],
       "optionalFilters": [["color:red", "color:yellow"], "on-sale"],
       "numericFilters": [["price>100", "length<1000"], "metrics>5"],

Tests/AlgoliaSearchClientTests/Unit/SecuredAPIKeyRestrictionTests.swift

@@ -22,7 +22,7 @@ class SecuredAPIKeyRestrictionTests: XCTestCase {
                                                validUntil: validUntil,
                                                userToken: "testUserToken")
 
-    XCTAssertEqual(restriction.urlEncodedString, "query=testQuery&clickAnalytics=true&restrictIndices=index1,index2&restrictSources=127.0.0.1,127.0.0.2&userToken=testUserToken&validUntil=\(Int(validUntil))")
+    XCTAssertEqual(restriction.urlEncodedString, "query=testQuery&clickAnalytics=true&restrictIndices=index1%2Cindex2&restrictSources=127.0.0.1%2C127.0.0.2&userToken=testUserToken&validUntil=\(Int(validUntil))")
   }
 
 }