flux: Sanitize domain URL for validation

These changes to the flux source code replace the endsWith check with a
more precise validation that ensures the groupName is either
toolkit.fluxcd.io or a valid subdomain of it.

Signed-off-by: Evangelos Skopelitis <[email protected]>

Author: skoeva

flux/src/helm-releases/Inventory.tsx

@@ -271,10 +271,14 @@ function inventoryNameLink(item): JSX.Element {
   const pluralName = PluralName(kind);
 
   // Flux types
-  if (groupName.endsWith('toolkit.fluxcd.io')) {
+  const allowedDomain = 'toolkit.fluxcd.io';
+  if (groupName === allowedDomain || groupName.endswith(`.${allowedDomain}`)) {
+    const routeName =
+      groupName === allowedDomain ? 'toolkit' : groupName.substring(0, groupName.indexOf('.'));
+
     return (
       <Link
-        routeName={groupName.substring(0, groupName.indexOf('.'))}
+        routeName={routeName}
         params={{
           pluralName: pluralName,
           name: item.metadata.name,

flux/src/kustomizations/Inventory.tsx

@@ -131,10 +131,14 @@ function inventoryNameLink(item: KubeObject) {
   const pluralName = PluralName(kind);
 
   // Flux types
-  if (groupName.endsWith('toolkit.fluxcd.io')) {
+  const allowedDomain = 'toolkit.fluxcd.io';
+  if (groupName === allowedDomain || groupName.endswith(`.${allowedDomain}`)) {
+    const routeName =
+      groupName === allowedDomain ? 'toolkit' : groupName.substring(0, groupName.indexOf('.'));
+
     return (
       <Link
-        routeName={groupName.substr(0, groupName.indexOf('.'))}
+        routeName={routeName}
         params={{
           pluralName: pluralName,
           name: item.metadata.name,