server/rest: unescape percent-encoded route parameters

for routes that address things by name instead of ID, e.g. /tag/tagname, where we allow special characters, we need to unescape the values.
2025-07-17 08:26:24 +00:00 · 2025-03-26 20:12:04 +01:00
parent 782f069031
commit 888f83337b
1 changed files with 1 additions and 1 deletions
--- a/server/szurubooru/rest/app.py
+++ b/server/szurubooru/rest/app.py
@ -101,7 +101,7 @@ def application(
                for hook in middleware.pre_hooks:
                    hook(ctx)
                try:
-                    response = handler(ctx, match.groupdict())
+                    response = handler(ctx, {k: urllib.parse.unquote(v) for k, v in match.groupdict().items()})
                except Exception:
                    ctx.session.rollback()
                    raise