kotovalexarian-likes-github/rails--rails
1
0
Fork 0
mirror of https://github.com/rails/rails.git synced 2022-11-09 12:12:34 -05:00
Code Releases Activity

Add test for cookie being modified by rotation

Browse source
This commit is contained in:
Milo Winningham 2019-06-21 23:29:05 -07:00
parent a2a515d9de
commit 36b25aa1c4
1 changed files with 13 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

13
actionpack/test/dispatch/cookies_test.rb
View file

@ -893,6 +893,19 @@ class CookiesTest < ActionController::TestCase
assert_equal 45, encryptor.decrypt_and_verify(@response.cookies["foo"])
end
def test_cookie_with_hash_value_not_modified_by_rotation
@request.env["action_dispatch.signed_cookie_digest"] = "SHA256"
@request.env["action_dispatch.cookies_rotations"].rotate :signed, digest: "SHA1"
key_generator = @request.env["action_dispatch.key_generator"]
old_secret = key_generator.generate_key(@request.env["action_dispatch.signed_cookie_salt"])
old_value = ActiveSupport::MessageVerifier.new(old_secret).generate(bar: "baz")
@request.headers["Cookie"] = "foo=#{old_value}"
get :get_signed_cookie
assert_equal({ bar: "baz" }, @controller.send(:cookies).signed[:foo])
end
def test_cookie_with_all_domain_option
get :set_cookie_with_domain
assert_response :success