Fix searchindex.js loading when ajax fails (because e.g. CORS in embedded iframes) #15649
Conversation
|
Matplotlib's website is built upon a vendored version of the sphinx_rtd_theme, which was forked years ago. This fact already led to some problems with search in the past, see #12216. I wouldn't worry about older versions. |
|
Forgot the type="text/javascript" on the previous commit, sorry about that. A more future-proof version would probably be to follow sphinx-doc/sphinx@55c5168 and replace the whole: <script type="text/javascript">
jQuery(function() { Search.loadIndex("searchindex.js"); });
</script>
<script type="text/javascript" id="searchindexloader"></script>with: <script type="text/javascript" src="{{ pathto('searchindex.js', 1) }}" defer></script>That way, loading searchindex.js will no longer be dependent on AJAX or searchtools.js (which is, even in sphinx_rtd_theme, inherited from the sphinx basic theme template), which may in future versions of sphinx again remove the |
Hopefully a more future-proof fix, removing the dependency on ajax and searchtools.js altogether. (After loading, searchindex.js itself does depend on searchtools.js, but both are updated with the version of sphinx that is used, unlike this template.) Because the script is loaded with `defer` and also right at the end of the body, the size of searchindex.js should not block loading the rest of the page (one of the arguments for using ajax).
|
Referenced the correct pull request this time. This solution removes the need for searchtools.js or ajax for loading searchindex.js altogether (after loading, searchindex.js itself does depend on searchtools.js, but both are updated with the version of sphinx that is used, unlike this template). From the author: sphinx-doc/sphinx#3620 (comment), the argument for using ajax to load searchindex.js seems to have been that it is a large file (~1.5 MB currently) and might block loading the page. But since the template block had already been moved to the very bottom of the page, just before Also in the pull request sphinx-doc/sphinx#6091 the conclusion seems to be that it works fine on all browsers. |
|
Did a bit more digging and found that this issue became visible mainly as the result of Jupyterlab iframe containing a This same issue also affects documentation for Numpy, Scipy, Pandas, Sympy, IPython and even the main Python.org docs. None of them however return no results, which is why this fix should still be merged in Matplotlib. It also allows loading search results when opened as a local |
|
A note about our website hosting: It is primarily hosted through githubpages and proxied through cloudflare. It looks like CF passes through CORS headers (https://support.cloudflare.com/hc/en-us/articles/200308847-Using-cross-origin-resource-sharing-CORS-with-Cloudflare ) so to fix this on the server side we would have to figure out how to configure github pages. |
|
Thanks! I set this to backport back to the 2.2.x docs so the docs of all of our currently supported versions will be fixed. |
|
https://26552-1385122-gh.circle-artifacts.com/0/home/circleci/project/doc/build/html/search.html?q=plot <- link to built docs, verified it works. |
…ils (because e.g. CORS in embedded iframes)
…ils (because e.g. CORS in embedded iframes)
…ils (because e.g. CORS in embedded iframes)
…ils (because e.g. CORS in embedded iframes)
|
Thanks @jeroonk Congratulations on your first PR into Matplotilb 🎉 Hopefully we will hear from you again! |
…ils (because e.g. CORS in embedded iframes)
|
Thanks for merging! I also monkey-patched the built https://26552-1385122-gh.circle-artifacts.com/0/home/circleci/project/doc/build/html/search.html into the offending Jupyterlab iframe I guess the server configuration can wait. The SymPy, Pandas, IPython and Python.org docs all have the same problem. jupyterlab#7506 should also mostly mitigate it. |
…649-on-v3.1.1-doc Backport PR #15649 on branch v3.1.1-doc (Fix searchindex.js loading when ajax fails (because e.g. CORS in embedded iframes))
…649-on-v3.2.x Backport PR #15649 on branch v3.2.x (Fix searchindex.js loading when ajax fails (because e.g. CORS in embedded iframes))
…649-on-v2.2.x Backport PR #15649 on branch v2.2.x (Fix searchindex.js loading when ajax fails (because e.g. CORS in embedded iframes))
…649-on-v3.1.x Backport PR #15649 on branch v3.1.x (Fix searchindex.js loading when ajax fails (because e.g. CORS in embedded iframes))
Summary:
Searching the documentation does not work in Jupyterlab's Matplotlib reference pane, because
searchindex.jsfails to load due to a AJAX/XHR CORS issue. The search page remains stuck on "Searching..".This PR partially fixes the issue by restoring the backup-method of using a
<script>tag that was missing from Matplotlib's version of thesearch.htmltemplate.The search page now returns a list of relevant links. The preview snippets that load underneath each link still do not work because of the same CORS issue (and cannot be loaded in an alternate way).
Context of the fix:
The
searchindex.jsis being loaded using AJAX/XHR in search.html#L45 callingloadIndexin searchtools.js#L78 (A file provided by Sphinx. Matplotlib docs inherits its theme from numpy/numpydoc, which inherits from scipy/scipy-sphinx-theme, which inherits from the sphinx-doc/sphinx basic theme).If the XHR fails,
loadIndexresorts to loading the script through the<script id="searchindexloader">tag. Matplotlib's version of thesearch.htmltemplate has somehow lost this tag.Additionally, Sphinx has changed the way
searchindex.jsloads:search.htmltemplate, the AJAX method is dropped for just a simpledefer-ed<script>tag. Alternative to this PR, matplotlib could also adopt this change instead?What about the original issue, that XHR fails?
The original AJAX/XHR request fails because the CORS (Cross-Origin-Resource-Sharing) preflight OPTIONS request returns a 405 Method Not Allowed response from matplotlib.org. Even though a subsequent GET would return the correct
Access-Control-Allow-Origin: *header. The same happens for the snippets.This issue has to be fixed in the web server configuration. For the OPTIONS request it should instead respond with a 200 OK and the headers
Access-Control-Allow-Methods: POST, GET, OPTIONSandAccess-Control-Allow-Origin: *. I'll submit a request in discourse for this, but otherwise do not know where/whom to direct this issue to. (Should this require a separate issue on the main repo?)See also: https://developer.mozilla.org/en-US/docs/Glossary/Preflight_request or https://developer.mozilla.org/en-US/docs/Web/HTTP/CORS#Preflighted_requests.
What about the older docs?
I am not sure how to go about potentially getting this fix back-ported to older versions of Matplotlib documentation (Is that a thing? Or are those frozen?). The Jupyterlab reference pane only points to the latest version on matplotlib.org, so it is not an immediate concern. It's probably better to just have the CORS issue on the server fixed.