[REF-1741] Disallow routes with /api prefix (#2711)

2024-02-26 19:34:51 -08:00 · 2024-02-26 19:34:51 -08:00 · 350a051a45
commit 350a051a45
parent 0464a7723e
2 changed files with 26 additions and 0 deletions
--- a/reflex/route.py
+++ b/reflex/route.py
@ -19,6 +19,10 @@ def verify_route_validity(route: str) -> None:
    pattern = catchall_in_route(route)
    if pattern and not route.endswith(pattern):
        raise ValueError(f"Catch-all must be the last part of the URL: {route}")
+    if route == "api" or route.startswith("api/"):
+        raise ValueError(
+            f"Cannot have a route prefixed with 'api/': {route} (conflicts with NextJS)"
+        )


 def get_route_args(route: str) -> dict[str, str]:
--- a/tests/test_app.py
+++ b/tests/test_app.py
@ -275,6 +275,28 @@ def test_add_page_set_route_nested(app: App, index_page, windows_platform: bool)
    assert set(app.pages.keys()) == {route.strip(os.path.sep)}


+def test_add_page_invalid_api_route(app: App, index_page):
+    """Test adding a page with an invalid route to an app.
+
+    Args:
+        app: The app to test.
+        index_page: The index page.
+    """
+    with pytest.raises(ValueError):
+        app.add_page(index_page, route="api")
+    with pytest.raises(ValueError):
+        app.add_page(index_page, route="/api")
+    with pytest.raises(ValueError):
+        app.add_page(index_page, route="/api/")
+    with pytest.raises(ValueError):
+        app.add_page(index_page, route="api/foo")
+    with pytest.raises(ValueError):
+        app.add_page(index_page, route="/api/foo")
+    # These should be fine
+    app.add_page(index_page, route="api2")
+    app.add_page(index_page, route="/foo/api")
+
+
 def test_initialize_with_admin_dashboard(test_model):
    """Test setting the admin dashboard of an app.