Ruby client: escape path parameters (#3039)

* Ruby client: escape path parameters

Path parameters should be escaped when encoded into the path.

In the path '/pet/{petId}' let's pretend petId is a string instead of a
number.

If the user uses "Bobby" as the petId then they correctly get the path
'/pet/Bobby'.
But if they put 'Bobby/Tables' as the petId then they used to get the
path '/pet/Bobby/Tables' which will be interpreted by the server as a
different route.

Using CGI::Escape they now get '/pet/Bobby%2FTables' which is correct.

* Ruby client- regenerate further files

Thank you @autopp for noticing I needed to update
`samples/openapi3/client/petstore/ruby`.

Regenerated by running `bin/openapi3/ruby-client-petstore.sh`.

PR #3039

Author: ccouzens

modules/openapi-generator/src/main/resources/ruby-client/api.mustache

@@ -3,6 +3,7 @@
 =end
 
 require 'uri'
+require 'cgi'
 
 module {{moduleName}}
 {{#operations}}
@@ -123,7 +124,7 @@ module {{moduleName}}
       {{/hasValidation}}
       {{/allParams}}
       # resource path
-      local_var_path = '{{{path}}}'{{#pathParams}}.sub('{' + '{{baseName}}' + '}', {{paramName}}.to_s){{/pathParams}}
+      local_var_path = '{{{path}}}'{{#pathParams}}.sub('{' + '{{baseName}}' + '}', CGI.escape({{paramName}}.to_s)){{/pathParams}}
 
       # query parameters
       query_params = opts[:query_params] || {}

samples/client/petstore/ruby/lib/petstore/api/another_fake_api.rb

@@ -11,6 +11,7 @@
 =end
 
 require 'uri'
+require 'cgi'
 
 module Petstore
   class AnotherFakeApi

samples/client/petstore/ruby/lib/petstore/api/fake_api.rb

@@ -11,6 +11,7 @@
 =end
 
 require 'uri'
+require 'cgi'
 
 module Petstore
   class FakeApi

samples/client/petstore/ruby/lib/petstore/api/fake_classname_tags123_api.rb

@@ -11,6 +11,7 @@
 =end
 
 require 'uri'
+require 'cgi'
 
 module Petstore
   class FakeClassnameTags123Api

samples/client/petstore/ruby/lib/petstore/api/pet_api.rb

@@ -11,6 +11,7 @@
 =end
 
 require 'uri'
+require 'cgi'
 
 module Petstore
   class PetApi
@@ -103,7 +104,7 @@ def delete_pet_with_http_info(pet_id, opts = {})
         fail ArgumentError, "Missing the required parameter 'pet_id' when calling PetApi.delete_pet"
       end
       # resource path
-      local_var_path = '/pet/{petId}'.sub('{' + 'petId' + '}', pet_id.to_s)
+      local_var_path = '/pet/{petId}'.sub('{' + 'petId' + '}', CGI.escape(pet_id.to_s))
 
       # query parameters
       query_params = opts[:query_params] || {}
@@ -290,7 +291,7 @@ def get_pet_by_id_with_http_info(pet_id, opts = {})
         fail ArgumentError, "Missing the required parameter 'pet_id' when calling PetApi.get_pet_by_id"
       end
       # resource path
-      local_var_path = '/pet/{petId}'.sub('{' + 'petId' + '}', pet_id.to_s)
+      local_var_path = '/pet/{petId}'.sub('{' + 'petId' + '}', CGI.escape(pet_id.to_s))
 
       # query parameters
       query_params = opts[:query_params] || {}
@@ -414,7 +415,7 @@ def update_pet_with_form_with_http_info(pet_id, opts = {})
         fail ArgumentError, "Missing the required parameter 'pet_id' when calling PetApi.update_pet_with_form"
       end
       # resource path
-      local_var_path = '/pet/{petId}'.sub('{' + 'petId' + '}', pet_id.to_s)
+      local_var_path = '/pet/{petId}'.sub('{' + 'petId' + '}', CGI.escape(pet_id.to_s))
 
       # query parameters
       query_params = opts[:query_params] || {}
@@ -480,7 +481,7 @@ def upload_file_with_http_info(pet_id, opts = {})
         fail ArgumentError, "Missing the required parameter 'pet_id' when calling PetApi.upload_file"
       end
       # resource path
-      local_var_path = '/pet/{petId}/uploadImage'.sub('{' + 'petId' + '}', pet_id.to_s)
+      local_var_path = '/pet/{petId}/uploadImage'.sub('{' + 'petId' + '}', CGI.escape(pet_id.to_s))
 
       # query parameters
       query_params = opts[:query_params] || {}
@@ -552,7 +553,7 @@ def upload_file_with_required_file_with_http_info(pet_id, required_file, opts =
         fail ArgumentError, "Missing the required parameter 'required_file' when calling PetApi.upload_file_with_required_file"
       end
       # resource path
-      local_var_path = '/fake/{petId}/uploadImageWithRequiredFile'.sub('{' + 'petId' + '}', pet_id.to_s)
+      local_var_path = '/fake/{petId}/uploadImageWithRequiredFile'.sub('{' + 'petId' + '}', CGI.escape(pet_id.to_s))
 
       # query parameters
       query_params = opts[:query_params] || {}

samples/client/petstore/ruby/lib/petstore/api/store_api.rb

@@ -11,6 +11,7 @@
 =end
 
 require 'uri'
+require 'cgi'
 
 module Petstore
   class StoreApi
@@ -43,7 +44,7 @@ def delete_order_with_http_info(order_id, opts = {})
         fail ArgumentError, "Missing the required parameter 'order_id' when calling StoreApi.delete_order"
       end
       # resource path
-      local_var_path = '/store/order/{order_id}'.sub('{' + 'order_id' + '}', order_id.to_s)
+      local_var_path = '/store/order/{order_id}'.sub('{' + 'order_id' + '}', CGI.escape(order_id.to_s))
 
       # query parameters
       query_params = opts[:query_params] || {}
@@ -167,7 +168,7 @@ def get_order_by_id_with_http_info(order_id, opts = {})
       end
 
       # resource path
-      local_var_path = '/store/order/{order_id}'.sub('{' + 'order_id' + '}', order_id.to_s)
+      local_var_path = '/store/order/{order_id}'.sub('{' + 'order_id' + '}', CGI.escape(order_id.to_s))
 
       # query parameters
       query_params = opts[:query_params] || {}

samples/client/petstore/ruby/lib/petstore/api/user_api.rb

@@ -11,6 +11,7 @@
 =end
 
 require 'uri'
+require 'cgi'
 
 module Petstore
   class UserApi
@@ -219,7 +220,7 @@ def delete_user_with_http_info(username, opts = {})
         fail ArgumentError, "Missing the required parameter 'username' when calling UserApi.delete_user"
       end
       # resource path
-      local_var_path = '/user/{username}'.sub('{' + 'username' + '}', username.to_s)
+      local_var_path = '/user/{username}'.sub('{' + 'username' + '}', CGI.escape(username.to_s))
 
       # query parameters
       query_params = opts[:query_params] || {}
@@ -277,7 +278,7 @@ def get_user_by_name_with_http_info(username, opts = {})
         fail ArgumentError, "Missing the required parameter 'username' when calling UserApi.get_user_by_name"
       end
       # resource path
-      local_var_path = '/user/{username}'.sub('{' + 'username' + '}', username.to_s)
+      local_var_path = '/user/{username}'.sub('{' + 'username' + '}', CGI.escape(username.to_s))
 
       # query parameters
       query_params = opts[:query_params] || {}
@@ -465,7 +466,7 @@ def update_user_with_http_info(username, body, opts = {})
         fail ArgumentError, "Missing the required parameter 'body' when calling UserApi.update_user"
       end
       # resource path
-      local_var_path = '/user/{username}'.sub('{' + 'username' + '}', username.to_s)
+      local_var_path = '/user/{username}'.sub('{' + 'username' + '}', CGI.escape(username.to_s))
 
       # query parameters
       query_params = opts[:query_params] || {}

samples/openapi3/client/petstore/ruby/lib/petstore/api/another_fake_api.rb

@@ -11,6 +11,7 @@
 =end
 
 require 'uri'
+require 'cgi'
 
 module Petstore
   class AnotherFakeApi

samples/openapi3/client/petstore/ruby/lib/petstore/api/default_api.rb

@@ -11,6 +11,7 @@
 =end
 
 require 'uri'
+require 'cgi'
 
 module Petstore
   class DefaultApi

samples/openapi3/client/petstore/ruby/lib/petstore/api/fake_api.rb

@@ -11,6 +11,7 @@
 =end
 
 require 'uri'
+require 'cgi'
 
 module Petstore
   class FakeApi

samples/openapi3/client/petstore/ruby/lib/petstore/api/fake_classname_tags123_api.rb

@@ -11,6 +11,7 @@
 =end
 
 require 'uri'
+require 'cgi'
 
 module Petstore
   class FakeClassnameTags123Api

samples/openapi3/client/petstore/ruby/lib/petstore/api/pet_api.rb

@@ -11,6 +11,7 @@
 =end
 
 require 'uri'
+require 'cgi'
 
 module Petstore
   class PetApi
@@ -103,7 +104,7 @@ def delete_pet_with_http_info(pet_id, opts = {})
         fail ArgumentError, "Missing the required parameter 'pet_id' when calling PetApi.delete_pet"
       end
       # resource path
-      local_var_path = '/pet/{petId}'.sub('{' + 'petId' + '}', pet_id.to_s)
+      local_var_path = '/pet/{petId}'.sub('{' + 'petId' + '}', CGI.escape(pet_id.to_s))
 
       # query parameters
       query_params = opts[:query_params] || {}
@@ -290,7 +291,7 @@ def get_pet_by_id_with_http_info(pet_id, opts = {})
         fail ArgumentError, "Missing the required parameter 'pet_id' when calling PetApi.get_pet_by_id"
       end
       # resource path
-      local_var_path = '/pet/{petId}'.sub('{' + 'petId' + '}', pet_id.to_s)
+      local_var_path = '/pet/{petId}'.sub('{' + 'petId' + '}', CGI.escape(pet_id.to_s))
 
       # query parameters
       query_params = opts[:query_params] || {}
@@ -414,7 +415,7 @@ def update_pet_with_form_with_http_info(pet_id, opts = {})
         fail ArgumentError, "Missing the required parameter 'pet_id' when calling PetApi.update_pet_with_form"
       end
       # resource path
-      local_var_path = '/pet/{petId}'.sub('{' + 'petId' + '}', pet_id.to_s)
+      local_var_path = '/pet/{petId}'.sub('{' + 'petId' + '}', CGI.escape(pet_id.to_s))
 
       # query parameters
       query_params = opts[:query_params] || {}
@@ -480,7 +481,7 @@ def upload_file_with_http_info(pet_id, opts = {})
         fail ArgumentError, "Missing the required parameter 'pet_id' when calling PetApi.upload_file"
       end
       # resource path
-      local_var_path = '/pet/{petId}/uploadImage'.sub('{' + 'petId' + '}', pet_id.to_s)
+      local_var_path = '/pet/{petId}/uploadImage'.sub('{' + 'petId' + '}', CGI.escape(pet_id.to_s))
 
       # query parameters
       query_params = opts[:query_params] || {}
@@ -552,7 +553,7 @@ def upload_file_with_required_file_with_http_info(pet_id, required_file, opts =
         fail ArgumentError, "Missing the required parameter 'required_file' when calling PetApi.upload_file_with_required_file"
       end
       # resource path
-      local_var_path = '/fake/{petId}/uploadImageWithRequiredFile'.sub('{' + 'petId' + '}', pet_id.to_s)
+      local_var_path = '/fake/{petId}/uploadImageWithRequiredFile'.sub('{' + 'petId' + '}', CGI.escape(pet_id.to_s))
 
       # query parameters
       query_params = opts[:query_params] || {}

samples/openapi3/client/petstore/ruby/lib/petstore/api/store_api.rb

@@ -11,6 +11,7 @@
 =end
 
 require 'uri'
+require 'cgi'
 
 module Petstore
   class StoreApi
@@ -43,7 +44,7 @@ def delete_order_with_http_info(order_id, opts = {})
         fail ArgumentError, "Missing the required parameter 'order_id' when calling StoreApi.delete_order"
       end
       # resource path
-      local_var_path = '/store/order/{order_id}'.sub('{' + 'order_id' + '}', order_id.to_s)
+      local_var_path = '/store/order/{order_id}'.sub('{' + 'order_id' + '}', CGI.escape(order_id.to_s))
 
       # query parameters
       query_params = opts[:query_params] || {}
@@ -167,7 +168,7 @@ def get_order_by_id_with_http_info(order_id, opts = {})
       end
 
       # resource path
-      local_var_path = '/store/order/{order_id}'.sub('{' + 'order_id' + '}', order_id.to_s)
+      local_var_path = '/store/order/{order_id}'.sub('{' + 'order_id' + '}', CGI.escape(order_id.to_s))
 
       # query parameters
       query_params = opts[:query_params] || {}

samples/openapi3/client/petstore/ruby/lib/petstore/api/user_api.rb

@@ -11,6 +11,7 @@
 =end
 
 require 'uri'
+require 'cgi'
 
 module Petstore
   class UserApi
@@ -225,7 +226,7 @@ def delete_user_with_http_info(username, opts = {})
         fail ArgumentError, "Missing the required parameter 'username' when calling UserApi.delete_user"
       end
       # resource path
-      local_var_path = '/user/{username}'.sub('{' + 'username' + '}', username.to_s)
+      local_var_path = '/user/{username}'.sub('{' + 'username' + '}', CGI.escape(username.to_s))
 
       # query parameters
       query_params = opts[:query_params] || {}
@@ -283,7 +284,7 @@ def get_user_by_name_with_http_info(username, opts = {})
         fail ArgumentError, "Missing the required parameter 'username' when calling UserApi.get_user_by_name"
       end
       # resource path
-      local_var_path = '/user/{username}'.sub('{' + 'username' + '}', username.to_s)
+      local_var_path = '/user/{username}'.sub('{' + 'username' + '}', CGI.escape(username.to_s))
 
       # query parameters
       query_params = opts[:query_params] || {}
@@ -471,7 +472,7 @@ def update_user_with_http_info(username, user, opts = {})
         fail ArgumentError, "Missing the required parameter 'user' when calling UserApi.update_user"
       end
       # resource path
-      local_var_path = '/user/{username}'.sub('{' + 'username' + '}', username.to_s)
+      local_var_path = '/user/{username}'.sub('{' + 'username' + '}', CGI.escape(username.to_s))
 
       # query parameters
       query_params = opts[:query_params] || {}