sinatra/rack-protection/spec/lib/rack/protection/base_spec.rb

describe Rack::Protection::Base do

  subject { described_class.new(lambda {}) }

  describe "#random_string" do
    it "outputs a string of 32 characters" do
      expect(subject.random_string.length).to eq(32)
    end
  end

  describe "#referrer" do
    it "Reads referrer from Referer header" do
      env = {"HTTP_HOST" => "foo.com", "HTTP_REFERER" => "http://bar.com/valid"}
      expect(subject.referrer(env)).to eq("bar.com")
    end

    it "Reads referrer from Host header when Referer header is relative" do
      env = {"HTTP_HOST" => "foo.com", "HTTP_REFERER" => "/valid"}
      expect(subject.referrer(env)).to eq("foo.com")
    end

    it "Reads referrer from Host header when Referer header is missing" do
      env = {"HTTP_HOST" => "foo.com"}
      expect(subject.referrer(env)).to eq("foo.com")
    end

    it "Returns nil when Referer header is missing and allow_empty_referrer is false" do
      env = {"HTTP_HOST" => "foo.com"}
      subject.options[:allow_empty_referrer] = false
      expect(subject.referrer(env)).to be_nil
    end

    it "Returns nil when Referer header is invalid" do
      env = {"HTTP_HOST" => "foo.com", "HTTP_REFERER" => "http://bar.com/bad|uri"}
      expect(subject.referrer(env)).to be_nil
    end
  end
end
ensure Rack::Protection::Base#random_string always outputs 32 characters 2013-09-09 18:26:03 -04:00			`describe Rack::Protection::Base do`
refactor instantiation 2014-01-23 17:22:40 -05:00
			`subject { described_class.new(lambda {}) }`

ensure Rack::Protection::Base#random_string always outputs 32 characters 2013-09-09 18:26:03 -04:00			`describe "#random_string" do`
			`it "outputs a string of 32 characters" do`
Convert specs to RSpec 2.99.2 syntax with Transpec This conversion is done by Transpec 2.3.7 with the following command: transpec * 69 conversions from: obj.should to: expect(obj).to * 30 conversions from: == expected to: eq(expected) * 24 conversions from: obj.should_not to: expect(obj).not_to * 3 conversions from: it { should ... } to: it { is_expected.to ... } * 2 conversions from: be_false to: be_falsey * 1 conversion from: be_true to: be_truthy * 1 conversion from: obj.should_not_receive(:message) to: expect(obj).not_to receive(:message) * 1 conversion from: obj.should_receive(:message) to: expect(obj).to receive(:message) For more details: https://github.com/yujinakayama/transpec#supported-conversions 2014-09-02 19:54:36 -04:00			`expect(subject.random_string.length).to eq(32)`
ensure Rack::Protection::Base#random_string always outputs 32 characters 2013-09-09 18:26:03 -04:00			`end`
			`end`
Discard invalid Referer header If an invalid Referer header such as "http://example.com/bad\|uri" is provided, ignore the value of it and skip using the Host header fallback. 2014-01-23 17:15:44 -05:00
			`describe "#referrer" do`
fix typoed header name 2014-01-23 17:29:16 -05:00			`it "Reads referrer from Referer header" do`
Discard invalid Referer header If an invalid Referer header such as "http://example.com/bad\|uri" is provided, ignore the value of it and skip using the Host header fallback. 2014-01-23 17:15:44 -05:00			`env = {"HTTP_HOST" => "foo.com", "HTTP_REFERER" => "http://bar.com/valid"}`
Convert specs to RSpec 2.99.2 syntax with Transpec This conversion is done by Transpec 2.3.7 with the following command: transpec * 69 conversions from: obj.should to: expect(obj).to * 30 conversions from: == expected to: eq(expected) * 24 conversions from: obj.should_not to: expect(obj).not_to * 3 conversions from: it { should ... } to: it { is_expected.to ... } * 2 conversions from: be_false to: be_falsey * 1 conversion from: be_true to: be_truthy * 1 conversion from: obj.should_not_receive(:message) to: expect(obj).not_to receive(:message) * 1 conversion from: obj.should_receive(:message) to: expect(obj).to receive(:message) For more details: https://github.com/yujinakayama/transpec#supported-conversions 2014-09-02 19:54:36 -04:00			`expect(subject.referrer(env)).to eq("bar.com")`
Discard invalid Referer header If an invalid Referer header such as "http://example.com/bad\|uri" is provided, ignore the value of it and skip using the Host header fallback. 2014-01-23 17:15:44 -05:00			`end`

fix typoed header name 2014-01-23 17:29:16 -05:00			`it "Reads referrer from Host header when Referer header is relative" do`
Discard invalid Referer header If an invalid Referer header such as "http://example.com/bad\|uri" is provided, ignore the value of it and skip using the Host header fallback. 2014-01-23 17:15:44 -05:00			`env = {"HTTP_HOST" => "foo.com", "HTTP_REFERER" => "/valid"}`
Convert specs to RSpec 2.99.2 syntax with Transpec This conversion is done by Transpec 2.3.7 with the following command: transpec * 69 conversions from: obj.should to: expect(obj).to * 30 conversions from: == expected to: eq(expected) * 24 conversions from: obj.should_not to: expect(obj).not_to * 3 conversions from: it { should ... } to: it { is_expected.to ... } * 2 conversions from: be_false to: be_falsey * 1 conversion from: be_true to: be_truthy * 1 conversion from: obj.should_not_receive(:message) to: expect(obj).not_to receive(:message) * 1 conversion from: obj.should_receive(:message) to: expect(obj).to receive(:message) For more details: https://github.com/yujinakayama/transpec#supported-conversions 2014-09-02 19:54:36 -04:00			`expect(subject.referrer(env)).to eq("foo.com")`
Discard invalid Referer header If an invalid Referer header such as "http://example.com/bad\|uri" is provided, ignore the value of it and skip using the Host header fallback. 2014-01-23 17:15:44 -05:00			`end`

fix typoed header name 2014-01-23 17:29:16 -05:00			`it "Reads referrer from Host header when Referer header is missing" do`
Discard invalid Referer header If an invalid Referer header such as "http://example.com/bad\|uri" is provided, ignore the value of it and skip using the Host header fallback. 2014-01-23 17:15:44 -05:00			`env = {"HTTP_HOST" => "foo.com"}`
Convert specs to RSpec 2.99.2 syntax with Transpec This conversion is done by Transpec 2.3.7 with the following command: transpec * 69 conversions from: obj.should to: expect(obj).to * 30 conversions from: == expected to: eq(expected) * 24 conversions from: obj.should_not to: expect(obj).not_to * 3 conversions from: it { should ... } to: it { is_expected.to ... } * 2 conversions from: be_false to: be_falsey * 1 conversion from: be_true to: be_truthy * 1 conversion from: obj.should_not_receive(:message) to: expect(obj).not_to receive(:message) * 1 conversion from: obj.should_receive(:message) to: expect(obj).to receive(:message) For more details: https://github.com/yujinakayama/transpec#supported-conversions 2014-09-02 19:54:36 -04:00			`expect(subject.referrer(env)).to eq("foo.com")`
Discard invalid Referer header If an invalid Referer header such as "http://example.com/bad\|uri" is provided, ignore the value of it and skip using the Host header fallback. 2014-01-23 17:15:44 -05:00			`end`

fix typoed header name 2014-01-23 17:29:16 -05:00			`it "Returns nil when Referer header is missing and allow_empty_referrer is false" do`
Discard invalid Referer header If an invalid Referer header such as "http://example.com/bad\|uri" is provided, ignore the value of it and skip using the Host header fallback. 2014-01-23 17:15:44 -05:00			`env = {"HTTP_HOST" => "foo.com"}`
refactor instantiation 2014-01-23 17:22:40 -05:00			`subject.options[:allow_empty_referrer] = false`
Convert specs to RSpec 2.99.2 syntax with Transpec This conversion is done by Transpec 2.3.7 with the following command: transpec * 69 conversions from: obj.should to: expect(obj).to * 30 conversions from: == expected to: eq(expected) * 24 conversions from: obj.should_not to: expect(obj).not_to * 3 conversions from: it { should ... } to: it { is_expected.to ... } * 2 conversions from: be_false to: be_falsey * 1 conversion from: be_true to: be_truthy * 1 conversion from: obj.should_not_receive(:message) to: expect(obj).not_to receive(:message) * 1 conversion from: obj.should_receive(:message) to: expect(obj).to receive(:message) For more details: https://github.com/yujinakayama/transpec#supported-conversions 2014-09-02 19:54:36 -04:00			`expect(subject.referrer(env)).to be_nil`
Discard invalid Referer header If an invalid Referer header such as "http://example.com/bad\|uri" is provided, ignore the value of it and skip using the Host header fallback. 2014-01-23 17:15:44 -05:00			`end`

fix typoed header name 2014-01-23 17:29:16 -05:00			`it "Returns nil when Referer header is invalid" do`
Discard invalid Referer header If an invalid Referer header such as "http://example.com/bad\|uri" is provided, ignore the value of it and skip using the Host header fallback. 2014-01-23 17:15:44 -05:00			`env = {"HTTP_HOST" => "foo.com", "HTTP_REFERER" => "http://bar.com/bad\|uri"}`
Convert specs to RSpec 2.99.2 syntax with Transpec This conversion is done by Transpec 2.3.7 with the following command: transpec * 69 conversions from: obj.should to: expect(obj).to * 30 conversions from: == expected to: eq(expected) * 24 conversions from: obj.should_not to: expect(obj).not_to * 3 conversions from: it { should ... } to: it { is_expected.to ... } * 2 conversions from: be_false to: be_falsey * 1 conversion from: be_true to: be_truthy * 1 conversion from: obj.should_not_receive(:message) to: expect(obj).not_to receive(:message) * 1 conversion from: obj.should_receive(:message) to: expect(obj).to receive(:message) For more details: https://github.com/yujinakayama/transpec#supported-conversions 2014-09-02 19:54:36 -04:00			`expect(subject.referrer(env)).to be_nil`
Discard invalid Referer header If an invalid Referer header such as "http://example.com/bad\|uri" is provided, ignore the value of it and skip using the Host header fallback. 2014-01-23 17:15:44 -05:00			`end`
			`end`
ensure Rack::Protection::Base#random_string always outputs 32 characters 2013-09-09 18:26:03 -04:00			`end`