Response headers/raw headers to more closely match Node's functionality.

[mastermatt]

For #1553

Updates the header handling in the Interceptor and RequestOverrider with the intention of mimicking the native behavior of http.IncomingMessage.rawHeaders.

The raw request/response headers list exactly as they were received.

There are three fundamental changes in this changeset:

Header Input Type

Previously, headers could be provided to:

• Scope.defaultReplyHeaders as a plain object
• Interceptor.reply(status, body, headers) as a plain object or an array of raw headers
• Interceptor.reply(() => [status, body, headers] as a plain object

Now, all three allow consistent inputs where the headers can be provided as a plain object, an array of raw headers, or a Map.

Duplicate Headers Folding

This change deviates from the suggested guidelines laid out in #1553 because those guidelines didn't properly handle duplicate headers, especially when some are defined as defaults.

Duplicate values for a headers are valid (rfc) and can be represented in the raw HTTP text as either:

Cache-Control: no-cache, no-store

or

Cache-Control: no-cache
Cache-Control: no-store

Note that order is important.

The changes included in this PR were modeled to duplicate Node's implementation (relevant docs). It specifically lays out how duplicate headers are handled depending on the field name.

In the case of default headers, they are not included on the Response (not even in the raw headers) if the field name exists in the reply headers (using a case-insensitive comparison).

Raw Headers are the Source of Truth

Previously, the Interceptor and RequestOverrider mostly keep track of headers as a plain object and the array of raw headers was created by looping that object. This was the cause for inconsistencies with the final result of the raw headers. The problem with that approach is that converting raw headers to an object is a lossy process, so going backwards makes it impossible to guarantee the correct results.

This change reverses that logic and now the Interceptor and RequestOverrider maintain the header data in raw arrays. All additions to headers are only added to raw headers. The plain headers object is never mutated directly, and instead is [re]created from the raw headers as needed.

---

Bugs Addressed

• Dynamic reply headers field names were not lowercase in the header object.
• Default header field names were incorrectly lowercased in the raw header array.
• Direct reply header field names were incorrectly lowercased in the raw header array if default headers were also provided.
• Dynamic reply headers were not accepted in the raw header array format.
• Default headers were included in the response's raw headers even if the same header field was provided in a dynamic reply.
• Direct reply headers provided as an object would always use an array for duplicate field names.

Breaking Changes

The good news is that the breaking changes will not affect the vast majority of users. The main use case tends to be using plain objects, without duplicates, when specifying reply headers. The net result of that input has not changed.

That being said, changes that may throw some users for a loop:

• The field names in response.rawHeaders will no longer be lowercased if the headers were provided as defaults or in a direct reply call. They will now stay in their original case.
• Duplicate headers are now folded as Node does. Example:

scope.reply(200, "", {
  "X-Some-Header": "one",
  "x-some-header": "two",
  "Content-Type": "application/json",
  "content-type": "text/xml",
})

// Before
response.headers === {
  "x-some-header": ["one", "two"],
  "content-type": ["application/json", "text/xml"],
}

// After
response.headers === {
  "x-some-header": "one, two", // joined as string
  "content-type": "application/json", // rejects duplicate
}

[mastermatt]

Alright. @gr2m and @paulmelnikow this is ready for review.

[paulmelnikow]

Wow! Again, great work on cleaning this up. I left some comments. There is a lot here so I might take another pass through it now that I've a good understanding.

Thanks also for your comment explaining the changes. That was immensely helpful in understanding this!

[paulmelnikow]

Should this check for undefined or null? That way it would reject likely mistakes like an empty string.

[mastermatt]

👍 undefined is a valid input so I'll check for that and let other falsy values error out.

[paulmelnikow]

I wonder if it would be better to use a boolean true to represent this condition. Or better yet, true in place of an array.

[mastermatt]

values needs to be an array of strings to behave.

[paulmelnikow]

Which part does? I think it's a good idea not to evaluate the function values twice, though it makes me nervous to pass around objects with half-evaluated header values.

I haven't followed exactly how this is used, though some of it seems related to checking whether other headers are present. Would it work to pass around the list of keys?

[paulmelnikow]

Augh I see it's really involved and complicated. Would like this to be cleaner but it can be left for another day!

[mastermatt]

To clarify, the functions are called at most once and we have a test to assert that.

addHeaderLine is a private helper function for headersArrayToObject, which is called in two places.

First in RequestOverrider.end, in the case all the functions have already been evaluated so value will never be a function.

The second place headersArrayToObject is called is in Interceptor.reply where headers are temporarily assembled to aid in other logic between the Interceptor and the RequestOverrider.
I left a comment there to explain why this is done:

nock/lib/interceptor.js

Lines 112 to 119 in 89f3ebf

	// Prepare the headers temporarily so we can make best guesses about content-encoding and content-type
	// below as well as while the response is being processed in RequestOverrider.end().
	// Including all the default headers is safe for our purposes because of the specific headers we introspect.
	// A more thoughtful process is used to merge the default headers when the response headers are finally computed.
	this.headers = common.headersArrayToObject([
	...this.rawHeaders,
	...this.scope._defaultReplyHeaders,
	])

All of that is roughly the same as it was before. Previously, in Interceptor.reply, the headers would get grouped and the ones that happened to be functions where just left as functions in the headers object. The change I created here was caused by enforcing a parity with the headers object and what Node would create. Node's http.IncomingMessage.headers object always has values of strings (expect set-cookie which is an array of strings). For the case of values that are functions, I had to make a decision on how to handle those given it's not a feature of Node. I didn't want to skip them because there are cases, eg Content-Encoding, where the existence of the field name made a difference. I chose to use the functions name as I thought it might help users when debugging.
Passing around a list of header field names wouldn't work as there are sometimes, eg Content-Type, where the value in introspected. Now in those cases, if the value is a function, it's not compared correctly. But that's a shortcoming of the current code, and probably one everyone is ok living with as the alternative would be to evaluate the header functions before we have a response.

[paulmelnikow]

From reading this, it's not clear which parts of the code below is related to specific behaviors in Node. Enumerating the specifics is important here. Could you paste in some of the notes from your PR message, and include the link?

[paulmelnikow]

Same comment as above.

[paulmelnikow]

👍

[paulmelnikow]

I don't think this optimization is necessary and it sort of obscures what this is doing.

Suggested change

	for (let i = 1, len = response.rawHeaders.length; i < len; i = i + 2) {
	for (let i = 1; i < response.rawHeaders.length; i += 2) {

[mastermatt]

I was following existing convention, but would be happy to change.

[paulmelnikow]

I definitely like to not make the perfect the enemy of the good, and make a point to avoid requesting changes on things that were just moved intact. Sorry I didn't realize from the diff that was the case.

[paulmelnikow]

👍

[paulmelnikow]

Maybe it would be helpful to define forEachHeaderValue that invokes a callback with (value, key, indexOfKey) parameters? It could be used in the three places here where these headers are being iterated.

[paulmelnikow]

Coverage looks good. I'm not seeing any new uncovered lines. It would be really great to get to 100% so we won't have to keep checking for that!

[paulmelnikow]

Thanks for these doc additions 🙌

[paulmelnikow]

Augh I see it's really involved and complicated. Would like this to be cleaner but it can be left for another day!

[paulmelnikow]

This turned out nice!

[paulmelnikow]

Good call on changing these field names.

[paulmelnikow]

Thanks for the updates and responses. I'll take another read through this, hopefully by tomorrow.

[mastermatt]

Fixes #539.

[paulmelnikow]

Let's get this in!

[nockbot]

🎉 This PR is included in version 11.0.0-beta.18 🎉

The release is available on:

• npm package (@beta dist-tag)
• GitHub release

Your semantic-release bot 📦🚀

[nockbot]

🎉 This PR is included in version 11.0.0 🎉

The release is available on:

• npm package (@next dist-tag)
• GitHub release

Your semantic-release bot 📦🚀