serverless-toolkit icon indicating copy to clipboard operation
serverless-toolkit copied to clipboard
verified publisher icon twilio-labs

Content-Type header check in response is not handling charset

Open dkundel opened this issue 3 years ago • 0 comments

Broken:

exports.handler = async (context, event, callback) => {
  const response = new Twilio.Response();
  response.appendHeader('Content-Type', 'application/json; charset=UTF-8');
  response.setStatusCode(400);
  response.setBody(
    {message: 'I am a JSON message'}
  )
  return callback(null, response);
};

Working:

exports.handler = async (context, event, callback) => {
  const response = new Twilio.Response();
  response.appendHeader('Content-Type', 'application/json');
  response.setStatusCode(400);
  response.setBody(
    {message: 'I am a JSON message'}
  )
  return callback(null, response);
};

Instead we should adjust the check for the Content-Type header to validate that it includes application/json as opposed to being explicitly application-json.

https://github.com/twilio-labs/serverless-toolkit/blob/33ca348aa7886cdf58255900077b156f00461433/packages/runtime-handler/src/dev-runtime/internal/response.ts#L139

dkundel avatar Mar 29 '22 17:03 dkundel