Allow wildcarded domains for image optimization #27345
Conversation
FDiskas
requested review from
huozhi,
ijjk,
leerob,
lfades,
padmaia,
shuding,
styfle and
timneutkens
as code owners
| @@ -3,6 +3,7 @@ import { createHash } from 'crypto' | |||
| import { createReadStream, promises } from 'fs' | |||
| import { getOrientation, Orientation } from 'get-orientation' | |||
| import { IncomingMessage, ServerResponse } from 'http' | |||
| import micromatch from 'micromatch' | |||
There was a problem hiding this comment.
We also need to validate on the client in packages/next/client/image.tsx
I think #18730 is a better implementation because it doesn't rely on a 3rd party package that would need to be bundled in the client.
There was a problem hiding this comment.
I think that special modules does his job better then that pr. The module has a lot of tests and it works. Pr has unknown status. What if I add *.staging.*.com or **.google.com to the config list? Will it work?
There was a problem hiding this comment.
In any case we need that feature a lot. That image resizing is super awesome. And there is so many cdn's with random sub domains.
There was a problem hiding this comment.
What if I add .staging..com or **.google.com to the config list?
These are great questions which is why its better to have our own implementation, so we can test and document the usage.
There was a problem hiding this comment.
Should I continue on this PR - add some more tests and so on?
There was a problem hiding this comment.
If so, we would need to drop micromatch.
I'm skeptical if we even need to differentiate ** vs * but willing to hear out any use cases
There was a problem hiding this comment.
On second thought, maybe we do need ** because wildcard certs have a single * so we should match that behavior and then ** could mean any number of subdomains.
We could even introduce this in separate phases so that only ** is supported at first which can be implemented with a simple url.hostname.endsWith(suffix). Then we can add support for single * in a separate PR.
There was a problem hiding this comment.
The blocker is micromatch. It shouldn't use an external dependency since we need to document behavior around ** vs *. See #27925
- Add `gitea.${KITSPACE_DOMAIN}, and `processor.${KITSAPCE_DOMAIN} for
nextjs image optimization allowed domains.
- There is no wildcards support yet, see vercel/next.js#27345
- Remove ISR environment variables as they are no longer used.
|
Any update? |
|
If it's still relevant I can take a look. There was similar PR without introduced dependency. |
…/allow-wildcard-domainas-for-image-optimization
…/allow-wildcard-domainas-for-image-optimization
|
I see that somebody already added micromatch as a dev dependency. So that means we are good to go? |
This comment has been minimized.
This comment has been minimized.
This comment has been minimized.
This comment has been minimized.
This comment has been minimized.
This comment has been minimized.
|
Any updates on this PR? This feature is really important that if we are loading external CDN images. |
|
I don't know what should I do to make it happen. |
- Add `gitea.${KITSPACE_DOMAIN}, and `processor.${KITSAPCE_DOMAIN} for
nextjs image optimization allowed domains.
- There is no wildcards support yet, see vercel/next.js#27345
- Remove ISR environment variables as they are no longer used.
|
Could we please have an update from the Vercel team ? The app we are developing displays images from dynamic external hosts. Unless we have a solution, I might be forced to use a regular |
|
Bump... what's going on with this? |
|
As far as I understand this will not be merged untill it will introduce a new dependency. I should update it and make it work with custom glob match. |
|
Just here to say how urgent this is needed. Thanks ❤️ |
I recently posted a workaround here, #18429 (comment) . It has some cons, especially in big scale projects, but for most apps, it should do the job cc'ing @borispoehland, @joelamltc, @samstr, @jericopulvera, @fizzterious, @afnar |
|
any further updates on this? |
|
Yes, take a look at the proposal here #27925 |
|
I have a concept that could actually work let match = 'https://**.google.*';
match = match.replace(/[$()+.?[\\\]^{|}]/g, '\\$&');
match = match.replace(/\*\*/g, '([^/]+/<asterisk>)+');
match = match.replace(/\*/g, '([^./]<asterisk>)');
match = match.replace(/<asterisk>/g, '*');
console.log('https://www.google.com'.match(match)); // true
console.log('https://buzz.www.google.com'.match(match)); // true
console.log('https://foo.buzz.www.google.com'.match(match)); // true
console.log('https://google.com'.match(match)); // false |
…#36245) ## Description This PR implements a new configuration object in `next.config.js` called `experimental.images.remotePatterns`. This will eventually deprecate `images.domains` because it covers the same use cases and more by allowing wildcard pattern matching on `hostname` and `pathname` and also allows restricting `protocol` and `port`. ## Feature - [x] Implements an existing feature request. - [x] Related issues linked - [x] Unit tests added - [x] Integration tests added - [x] Documentation added - [x] Telemetry added. In case of a feature if it's used or not. - [x] Errors have helpful link attached, see `contributing.md` ## Related - Fixes #27925 - Closes #18429 - Closes #18632 - Closes #18730 - Closes #27345
|
This feature is available on the canary channel |
Add ability to use wildcard in configuration of allowed list of domains.
Bug
Related PR:
fixes #18412 #23902 #18632 #27925
contributing.mdFeature
Requests:
fixes #numbercontributing.mdDocumentation / Examples