From bd61a3d0216fd16020f9f3675c07464463e2c385 Mon Sep 17 00:00:00 2001
From: El RIDO <elrido@gmx.net>
Date: Wed, 3 Sep 2025 20:13:33 +0200
Subject: [PATCH] enable tests to pass

The path is only optional when it is / and the very last element, otherwise it is required. As soon as it is in the middle of a URL it helps the parser to identify which part is the username and domain and what is path and GET parameters. The @ sign is legitimate, if unusual, in the latter two.
---
 tst/YourlsProxyTest.php | 9 ++++++---
 1 file changed, 6 insertions(+), 3 deletions(-)

diff --git a/tst/YourlsProxyTest.php b/tst/YourlsProxyTest.php
index 11c07a86..a4a87bd9 100644
--- a/tst/YourlsProxyTest.php
+++ b/tst/YourlsProxyTest.php
@@ -45,6 +45,10 @@ class YourlsProxyTest extends TestCase
         $yourls = new YourlsProxy($this->_conf, 'https://example.com/?foo#bar');
         $this->assertFalse($yourls->isError());
         $this->assertEquals($yourls->getUrl(), 'https://example.com/1');
+
+        $yourls = new YourlsProxy($this->_conf, 'https://example.com/?@foreign.malicious.example?foo#bar');
+        $this->assertFalse($yourls->isError());
+        $this->assertEquals($yourls->getUrl(), 'https://example.com/1');
     }
 
     /**
@@ -67,7 +71,7 @@ class YourlsProxyTest extends TestCase
             array('https://example.com'), // missing path and query parameter,
             array('https://example.com/'), // missing query parameter
             array('https://example.com?paste=something'), // missing path parameter
-            array('https://example.com@foreign.malicious.example?foo#bar'), // shall belong to providerForeignUrlUsernameTrick, but for some reason PHP considers this an invalid URL
+            array('https://example.com@foreign.malicious.example?foo#bar'), // missing path parameter
         );
     }
 
@@ -87,9 +91,8 @@ class YourlsProxyTest extends TestCase
     public function providerForeignUrlUsernameTrick(): array
     {
         return array(
-            // array('https://example.com@foreign.malicious.example?foo#bar'),
+            array('https://example.com@foreign.malicious.example/?foo#bar'),
             array('https://example.com/@foreign.malicious.example?foo#bar'),
-            array('https://example.com/?@foreign.malicious.example?foo#bar'),
         );
     }