gitlab-org--gitlab-foss/spec/features/users/one_trust_csp_spec.rb

17 lines
421 B
Ruby

# frozen_string_literal: true
require 'spec_helper'
RSpec.describe 'OneTrust content security policy' do
let(:user) { create(:user) }
before do
stub_config(extra: { one_trust_id: SecureRandom.uuid })
end
it 'has proper Content Security Policy headers' do
visit root_path
expect(response_headers['Content-Security-Policy']).to include('https://cdn.cookielaw.org https://*.onetrust.com')
end
end