rails--rails/actionpack/test/dispatch/request_id_test.rb

require 'abstract_unit'

class RequestIdTest < ActiveSupport::TestCase
  test "passing on the request id from the outside" do
    assert_equal "external-uu-rid", stub_request('HTTP_X_REQUEST_ID' => 'external-uu-rid').request_id
  end

  test "ensure that only alphanumeric uurids are accepted" do
    assert_equal "X-Hacked-HeaderStuff", stub_request('HTTP_X_REQUEST_ID' => '; X-Hacked-Header: Stuff').request_id
  end

  test "ensure that 255 char limit on the request id is being enforced" do
    assert_equal "X" * 255, stub_request('HTTP_X_REQUEST_ID' => 'X' * 500).request_id
  end

  test "generating a request id when none is supplied" do
    assert_match(/\w+-\w+-\w+-\w+-\w+/, stub_request.request_id)
  end

  test "uuid alias" do
    assert_equal "external-uu-rid", stub_request('HTTP_X_REQUEST_ID' => 'external-uu-rid').uuid
  end

  private

  def stub_request(env = {})
    ActionDispatch::RequestId.new(lambda { |environment| [ 200, environment, [] ] }).call(env)
    ActionDispatch::Request.new(env)
  end
end

class RequestIdResponseTest < ActionDispatch::IntegrationTest
  class TestController < ActionController::Base
    def index
      head :ok
    end
  end

  test "request id is passed all the way to the response" do
    with_test_route_set do
      get '/'
      assert_match(/\w+/, @response.headers["X-Request-Id"])
    end
  end

  test "request id given on request is passed all the way to the response" do
    with_test_route_set do
      get '/', headers: { 'HTTP_X_REQUEST_ID' => 'X' * 500 }
      assert_equal "X" * 255, @response.headers["X-Request-Id"]
    end
  end


  private

  def with_test_route_set
    with_routing do |set|
      set.draw do
        get '/', :to => ::RequestIdResponseTest::TestController.action(:index)
      end

      @app = self.class.build_app(set) do |middleware|
        middleware.use ActionDispatch::RequestId
      end

      yield
    end
  end
end
Added X-Request-Id tracking and TaggedLogging to easily log that and other production concerns 2011-10-19 13:59:33 -04:00			`require 'abstract_unit'`

			`class RequestIdTest < ActiveSupport::TestCase`
			`test "passing on the request id from the outside" do`
Prefer request_id over uuid and test the alias 2015-02-20 17:45:01 -05:00			`assert_equal "external-uu-rid", stub_request('HTTP_X_REQUEST_ID' => 'external-uu-rid').request_id`
Added X-Request-Id tracking and TaggedLogging to easily log that and other production concerns 2011-10-19 13:59:33 -04:00			`end`

			`test "ensure that only alphanumeric uurids are accepted" do`
Prefer request_id over uuid and test the alias 2015-02-20 17:45:01 -05:00			`assert_equal "X-Hacked-HeaderStuff", stub_request('HTTP_X_REQUEST_ID' => '; X-Hacked-Header: Stuff').request_id`
Added X-Request-Id tracking and TaggedLogging to easily log that and other production concerns 2011-10-19 13:59:33 -04:00			`end`
Make tests run on 1.8.x, add integration setup. 2011-10-19 16:09:36 -04:00
Added X-Request-Id tracking and TaggedLogging to easily log that and other production concerns 2011-10-19 13:59:33 -04:00			`test "ensure that 255 char limit on the request id is being enforced" do`
Prefer request_id over uuid and test the alias 2015-02-20 17:45:01 -05:00			`assert_equal "X" * 255, stub_request('HTTP_X_REQUEST_ID' => 'X' * 500).request_id`
Added X-Request-Id tracking and TaggedLogging to easily log that and other production concerns 2011-10-19 13:59:33 -04:00			`end`
Make tests run on 1.8.x, add integration setup. 2011-10-19 16:09:36 -04:00
Added X-Request-Id tracking and TaggedLogging to easily log that and other production concerns 2011-10-19 13:59:33 -04:00			`test "generating a request id when none is supplied" do`
Prefer request_id over uuid and test the alias 2015-02-20 17:45:01 -05:00			`assert_match(/\w+-\w+-\w+-\w+-\w+/, stub_request.request_id)`
			`end`

			`test "uuid alias" do`
			`assert_equal "external-uu-rid", stub_request('HTTP_X_REQUEST_ID' => 'external-uu-rid').uuid`
Added X-Request-Id tracking and TaggedLogging to easily log that and other production concerns 2011-10-19 13:59:33 -04:00			`end`

			`private`
Make tests run on 1.8.x, add integration setup. 2011-10-19 16:09:36 -04:00
			`def stub_request(env = {})`
Warnings removed from RequestIdTest 2011-10-22 07:00:48 -04:00			`ActionDispatch::RequestId.new(lambda { \|environment\| [ 200, environment, [] ] }).call(env)`
Make tests run on 1.8.x, add integration setup. 2011-10-19 16:09:36 -04:00			`ActionDispatch::Request.new(env)`
			`end`
Added X-Request-Id tracking and TaggedLogging to easily log that and other production concerns 2011-10-19 13:59:33 -04:00			`end`

Make tests run on 1.8.x, add integration setup. 2011-10-19 16:09:36 -04:00			`class RequestIdResponseTest < ActionDispatch::IntegrationTest`
			`class TestController < ActionController::Base`
			`def index`
			`head :ok`
			`end`
			`end`

			`test "request id is passed all the way to the response" do`
			`with_test_route_set do`
			`get '/'`
			`assert_match(/\w+/, @response.headers["X-Request-Id"])`
			`end`
			`end`

			`test "request id given on request is passed all the way to the response" do`
			`with_test_route_set do`
Consistent usage of spaces in hashes across our codebase 2015-01-29 09:19:41 -05:00			`get '/', headers: { 'HTTP_X_REQUEST_ID' => 'X' * 500 }`
Make tests run on 1.8.x, add integration setup. 2011-10-19 16:09:36 -04:00			`assert_equal "X" * 255, @response.headers["X-Request-Id"]`
			`end`
			`end`


			`private`

			`def with_test_route_set`
			`with_routing do \|set\|`
			`set.draw do`
Remove default match without specified method In the current router DSL, using the +match+ DSL method will match all verbs for the path to the specified endpoint. In the vast majority of cases, people are currently using +match+ when they actually mean +get+. This introduces security implications. This commit disallows calling +match+ without an HTTP verb constraint by default. To explicitly match all verbs, this commit also adds a :via => :all option to +match+. Closes #5964 2012-04-24 23:32:09 -04:00			`get '/', :to => ::RequestIdResponseTest::TestController.action(:index)`
Make tests run on 1.8.x, add integration setup. 2011-10-19 16:09:36 -04:00			`end`

			`@app = self.class.build_app(set) do \|middleware\|`
			`middleware.use ActionDispatch::RequestId`
			`end`

			`yield`
			`end`
			`end`
Remove default match without specified method In the current router DSL, using the +match+ DSL method will match all verbs for the path to the specified endpoint. In the vast majority of cases, people are currently using +match+ when they actually mean +get+. This introduces security implications. This commit disallows calling +match+ without an HTTP verb constraint by default. To explicitly match all verbs, this commit also adds a :via => :all option to +match+. Closes #5964 2012-04-24 23:32:09 -04:00			`end`