tags:

views:

84

answers:

3
+3  Q: 

Plus (+) in MVC Argument causes 404 on IIS 7.0

I have an MVC route that is giving me hell on a staging server running IIS. I am running Visual Studio 2010's development server locally.

Here is a sample URL that actually works on my dev box:

Root/CPUBoards/Full+Size

Results
Server Error404 - File or directory not found.
The resource you are looking for might have been removed, had its name changed, or is temporarily unavailable.

Here is the complete behaviour I am seeing.

Localhost:

Root/CPUBoards/Full Size - Resolves
Root/CPUBoards/Full%20Size - Resolves
Root/CPUBoards/Full+Size - Resolves

Staging Server with IIS 7.0:

Root/CPUBoards/Full Size - Resolves
Root/CPUBoards/Full%20Size - Resolves
Root/CPUBoards/Full+Size - 404 Not Found Error.

Any ideas? I need to work with the encoded version for several reasons... won't waste your time with them.

HttpUtility.UrlEncode("Full Size") returns the version with the plus sing... Full+Size. This works on my dev box, but not on the staging server. I would prefer to just get it working on the server, since I already have everything else tested and working locally, but I have no idea where to start looking on the server configuration to get it to behave the same way.

Thanks!

+2  A: 

Try the answer at handling-urls-with-plus-sign-in-base-not-querystring and the article it points to at IIS7 rejecting URLs containing +

Zabba  2010-07-30 22:29:20
+1  A: 

+ only has the special meaning of being a space in application/x-www-form-urlencoded data such as the query string part of a URL.

In other parts of the URL like path components, + literally means a plus sign. So resolving Full+Size to the unencoded name Full Size should not work anywhere.

The only correct form of a space in a path component is %20. (It still works when you type an actual space because the browser spots the error and corrects it for you.) %20 also works in form-URL-encoded data as well, so it's generally safest to always use that.

Sadly HttpUtility.UrlEncode is misleadingly-named. It produces + in its output instead of %20, so it's really a form-URL-encoder and not a standard URL-encoder. Unfortunately I don't know of an ASP.NET function to “really URL-encode” strings for use in a path, so all I can recommend is doing a string replace of + to %20 after encoding.

Alternatively, avoid using spaces in path parts, eg. by replacing them with -. It's common to ‘slug’ titles being inserted to URLs, reducing them to simple alphanumerics and ‘safe’ punctuation, to avoid filling the URL with ugly %nn sequences.

bobince  2010-07-30 22:35:25
OK. This is very helpful. These URL "Segments" are coming from a database, and we prefer to allow the data in the database to be natural. We also need the URL to be unique, so replacing a bunch of stuff with '-' is not desireable. For example, we have both underscore and space characters, both of which people like to replace with a dash. I suppose this means we are stuck using "ugliness" like %20 to represent characters accurately, but these are the edge cases, and the compromise is not so bad. I guess I will have to do some manual replacing before URL Encoding stuff. Thanks!
Eric  2010-08-02 14:22:19
Unfortunately you can't *quite* get arbitrary strings into path parts. `%2F` (the encoded form of `/`) is blocked by many web servers—by default in Apache, and unavoidably in IIS. IIS also blocks `%5C`, and all servers block `%00` (other control codes can also cause various difficulties, and of course Unicode in path parts has some gotchas of its own).
bobince  2010-08-02 15:03:15

related questions

Loop function parameters for sanity check
Passing arguments with DOS wildcards to a Python script
Are there any programming languages with functions with variable arguments not at the end?
Passing optional arguments to a COM function in VC++
Arguing about usability and "prettyness"
Generic list manipulation function in C?
unpacking an array of arguments in php
C++ compiler optimization of passed arguments
Which exception should I raise on bad/illegal argument combinations in Python?
Supplying an argument at Rails runtime
Passing a Class Object to a function (probably by pointer not reference) C++
Should I make sure arguments aren't null before using them in a function.
Can you list the keyword arguments a Python function receives?
How do I parse command line arguments in bash?
Is there a way to pass arguments to a query in CodeIgniter *without* using ActiveRecord?
Customized command line parsing in Python
What's the difference between an argument and a parameter?
Is there a way to handle a variable number of parameters in a template class?
Is there a better way to do optional function parameters in Javascript?
How can I pass an argument to a C# plug-in being loaded through Assembly.CreateInstance?
C++ Passing Options To Executable
What is the design pattern for processing command line arguments
Is there a difference between foo(void) and foo() in C++ or C
Passing switches to Xcode 3.1 user scripts
PowerShell - How do I pass string parameters correctly?