2008-01-05 13:32:06 +00:00
|
|
|
require 'abstract_unit'
|
2004-11-24 01:04:44 +00:00
|
|
|
|
|
|
|
|
class CookieTest < Test::Unit::TestCase
|
|
|
|
|
class TestController < ActionController::Base
|
2004-11-26 02:04:35 +00:00
|
|
|
def authenticate
|
|
|
|
|
cookies["user_name"] = "david"
|
|
|
|
|
end
|
|
|
|
|
|
2007-09-28 14:18:47 +00:00
|
|
|
def authenticate_for_fourteen_days
|
2004-11-26 02:04:35 +00:00
|
|
|
cookies["user_name"] = { "value" => "david", "expires" => Time.local(2005, 10, 10) }
|
|
|
|
|
end
|
|
|
|
|
|
2007-09-28 14:18:47 +00:00
|
|
|
def authenticate_for_fourteen_days_with_symbols
|
2004-11-26 02:11:42 +00:00
|
|
|
cookies[:user_name] = { :value => "david", :expires => Time.local(2005, 10, 10) }
|
2004-11-26 02:09:38 +00:00
|
|
|
end
|
|
|
|
|
|
2004-11-26 02:04:35 +00:00
|
|
|
def set_multiple_cookies
|
|
|
|
|
cookies["user_name"] = { "value" => "david", "expires" => Time.local(2005, 10, 10) }
|
|
|
|
|
cookies["login"] = "XJ-122"
|
|
|
|
|
end
|
2008-12-19 22:35:23 +00:00
|
|
|
|
2005-04-02 08:54:25 +00:00
|
|
|
def access_frozen_cookies
|
2006-09-29 08:04:39 +00:00
|
|
|
cookies["will"] = "work"
|
2005-04-02 08:54:25 +00:00
|
|
|
end
|
|
|
|
|
|
2007-01-17 06:51:59 +00:00
|
|
|
def logout
|
|
|
|
|
cookies.delete("user_name")
|
|
|
|
|
end
|
|
|
|
|
|
2007-07-01 23:27:59 +00:00
|
|
|
def delete_cookie_with_path
|
|
|
|
|
cookies.delete("user_name", :path => '/beaten')
|
2007-09-03 00:18:30 +00:00
|
|
|
render :text => "hello world"
|
2007-07-01 23:27:59 +00:00
|
|
|
end
|
|
|
|
|
|
2007-09-21 15:05:49 +00:00
|
|
|
def authenticate_with_http_only
|
|
|
|
|
cookies["user_name"] = { :value => "david", :http_only => true }
|
|
|
|
|
end
|
|
|
|
|
|
2008-12-19 22:35:23 +00:00
|
|
|
def rescue_action(e)
|
|
|
|
|
raise unless ActionView::MissingTemplate # No templates here, and we don't care about the output
|
2007-01-17 06:51:59 +00:00
|
|
|
end
|
2004-11-24 01:04:44 +00:00
|
|
|
end
|
|
|
|
|
|
|
|
|
|
def setup
|
|
|
|
|
@request = ActionController::TestRequest.new
|
|
|
|
|
@response = ActionController::TestResponse.new
|
|
|
|
|
|
2007-01-17 06:51:59 +00:00
|
|
|
@controller = TestController.new
|
2004-11-24 01:04:44 +00:00
|
|
|
@request.host = "www.nextangle.com"
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
def test_setting_cookie
|
2007-01-17 06:51:59 +00:00
|
|
|
get :authenticate
|
2008-12-19 22:49:06 +00:00
|
|
|
assert_equal ["user_name=david; path=/"], @response.headers["Set-Cookie"]
|
2008-12-19 22:35:23 +00:00
|
|
|
assert_equal({"user_name" => ["david"]}, @response.cookies)
|
2004-11-24 01:04:44 +00:00
|
|
|
end
|
|
|
|
|
|
2004-11-26 02:04:35 +00:00
|
|
|
def test_setting_cookie_for_fourteen_days
|
2007-09-28 14:18:47 +00:00
|
|
|
get :authenticate_for_fourteen_days
|
2008-12-19 22:49:06 +00:00
|
|
|
assert_equal ["user_name=david; path=/; expires=Mon, 10 Oct 2005 05:00:00 GMT"], @response.headers["Set-Cookie"]
|
2008-12-19 22:35:23 +00:00
|
|
|
assert_equal({"user_name" => ["david"]}, @response.cookies)
|
2008-12-19 23:15:22 +00:00
|
|
|
end
|
2004-11-26 02:04:35 +00:00
|
|
|
|
2004-11-26 02:09:38 +00:00
|
|
|
def test_setting_cookie_for_fourteen_days_with_symbols
|
2008-07-17 17:19:09 +00:00
|
|
|
get :authenticate_for_fourteen_days_with_symbols
|
2008-12-19 22:49:06 +00:00
|
|
|
assert_equal ["user_name=david; path=/; expires=Mon, 10 Oct 2005 05:00:00 GMT"], @response.headers["Set-Cookie"]
|
2008-12-19 22:35:23 +00:00
|
|
|
assert_equal({"user_name" => ["david"]}, @response.cookies)
|
2004-11-26 02:09:38 +00:00
|
|
|
end
|
|
|
|
|
|
2007-09-21 15:05:49 +00:00
|
|
|
def test_setting_cookie_with_http_only
|
|
|
|
|
get :authenticate_with_http_only
|
2008-12-19 22:49:06 +00:00
|
|
|
assert_equal ["user_name=david; path=/; HttpOnly"], @response.headers["Set-Cookie"]
|
2008-12-19 22:35:23 +00:00
|
|
|
assert_equal({"user_name" => ["david"]}, @response.cookies)
|
2008-12-19 23:15:22 +00:00
|
|
|
end
|
2007-09-21 15:05:49 +00:00
|
|
|
|
2004-11-26 02:04:35 +00:00
|
|
|
def test_multiple_cookies
|
2007-01-17 06:51:59 +00:00
|
|
|
get :set_multiple_cookies
|
|
|
|
|
assert_equal 2, @response.cookies.size
|
2008-12-19 22:49:06 +00:00
|
|
|
assert_equal "user_name=david; path=/; expires=Mon, 10 Oct 2005 05:00:00 GMT", @response.headers["Set-Cookie"][0]
|
|
|
|
|
assert_equal "login=XJ-122; path=/", @response.headers["Set-Cookie"][1]
|
2008-12-19 22:35:23 +00:00
|
|
|
assert_equal({"login" => ["XJ-122"], "user_name" => ["david"]}, @response.cookies)
|
2008-12-19 23:15:22 +00:00
|
|
|
end
|
2004-11-26 02:04:35 +00:00
|
|
|
|
2005-04-02 08:54:25 +00:00
|
|
|
def test_setting_test_cookie
|
2007-01-17 06:51:59 +00:00
|
|
|
assert_nothing_raised { get :access_frozen_cookies }
|
|
|
|
|
end
|
2008-12-19 22:35:23 +00:00
|
|
|
|
2007-01-17 06:51:59 +00:00
|
|
|
def test_expiring_cookie
|
|
|
|
|
get :logout
|
2008-12-19 22:49:06 +00:00
|
|
|
assert_equal ["user_name=; path=/; expires=Thu, 01 Jan 1970 00:00:00 GMT"], @response.headers["Set-Cookie"]
|
2008-12-19 22:35:23 +00:00
|
|
|
assert_equal({"user_name" => []}, @response.cookies)
|
2008-12-19 23:15:22 +00:00
|
|
|
end
|
2008-12-19 22:35:23 +00:00
|
|
|
|
2007-01-17 06:51:59 +00:00
|
|
|
def test_cookiejar_accessor
|
|
|
|
|
@request.cookies["user_name"] = CGI::Cookie.new("name" => "user_name", "value" => "david", "expires" => Time.local(2025, 10, 10))
|
|
|
|
|
@controller.request = @request
|
|
|
|
|
jar = ActionController::CookieJar.new(@controller)
|
|
|
|
|
assert_equal "david", jar["user_name"]
|
|
|
|
|
assert_equal nil, jar["something_else"]
|
2005-04-02 08:54:25 +00:00
|
|
|
end
|
2007-07-01 23:27:59 +00:00
|
|
|
|
2007-10-20 17:30:01 +00:00
|
|
|
def test_cookiejar_accessor_with_array_value
|
|
|
|
|
a = %w{1 2 3}
|
|
|
|
|
@request.cookies["pages"] = CGI::Cookie.new("name" => "pages", "value" => a, "expires" => Time.local(2025, 10, 10))
|
|
|
|
|
@controller.request = @request
|
|
|
|
|
jar = ActionController::CookieJar.new(@controller)
|
|
|
|
|
assert_equal a, jar["pages"]
|
|
|
|
|
end
|
2008-12-19 22:35:23 +00:00
|
|
|
|
2007-07-01 23:27:59 +00:00
|
|
|
def test_delete_cookie_with_path
|
|
|
|
|
get :delete_cookie_with_path
|
2008-12-19 22:49:06 +00:00
|
|
|
assert_equal ["user_name=; path=/beaten; expires=Thu, 01 Jan 1970 00:00:00 GMT"], @response.headers["Set-Cookie"]
|
2007-07-01 23:27:59 +00:00
|
|
|
end
|
2007-09-22 09:01:33 +00:00
|
|
|
|
|
|
|
|
def test_cookie_to_s_simple_values
|
|
|
|
|
assert_equal 'myname=myvalue; path=', CGI::Cookie.new('myname', 'myvalue').to_s
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
def test_cookie_to_s_hash
|
|
|
|
|
cookie_str = CGI::Cookie.new(
|
|
|
|
|
'name' => 'myname',
|
|
|
|
|
'value' => 'myvalue',
|
|
|
|
|
'domain' => 'mydomain',
|
|
|
|
|
'path' => 'mypath',
|
|
|
|
|
'expires' => Time.utc(2007, 10, 20),
|
|
|
|
|
'secure' => true,
|
|
|
|
|
'http_only' => true).to_s
|
|
|
|
|
assert_equal 'myname=myvalue; domain=mydomain; path=mypath; expires=Sat, 20 Oct 2007 00:00:00 GMT; secure; HttpOnly', cookie_str
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
def test_cookie_to_s_hash_default_not_secure_not_http_only
|
|
|
|
|
cookie_str = CGI::Cookie.new(
|
|
|
|
|
'name' => 'myname',
|
|
|
|
|
'value' => 'myvalue',
|
|
|
|
|
'domain' => 'mydomain',
|
|
|
|
|
'path' => 'mypath',
|
|
|
|
|
'expires' => Time.utc(2007, 10, 20))
|
|
|
|
|
assert cookie_str !~ /secure/
|
|
|
|
|
assert cookie_str !~ /HttpOnly/
|
|
|
|
|
end
|
2008-02-12 21:45:39 +00:00
|
|
|
|
|
|
|
|
def test_cookies_should_not_be_split_on_ampersand_values
|
|
|
|
|
cookies = CGI::Cookie.parse('return_to=http://rubyonrails.org/search?term=api&scope=all&global=true')
|
|
|
|
|
assert_equal({"return_to" => ["http://rubyonrails.org/search?term=api&scope=all&global=true"]}, cookies)
|
|
|
|
|
end
|
2008-05-12 22:25:56 +00:00
|
|
|
|
|
|
|
|
def test_cookies_should_not_be_split_on_values_with_newlines
|
|
|
|
|
cookies = CGI::Cookie.new("name" => "val", "value" => "this\nis\na\ntest")
|
|
|
|
|
assert cookies.size == 1
|
|
|
|
|
end
|
2005-04-02 08:54:25 +00:00
|
|
|
end
|
