123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291 |
- <?php
- /**
- * ownCloud - App Framework
- *
- * @author Bernhard Posselt
- * @copyright 2012 Bernhard Posselt <dev@bernhard-posselt.com>
- *
- * This library is free software; you can redistribute it and/or
- * modify it under the terms of the GNU AFFERO GENERAL PUBLIC LICENSE
- * License as published by the Free Software Foundation; either
- * version 3 of the License, or any later version.
- *
- * This library is distributed in the hope that it will be useful,
- * but WITHOUT ANY WARRANTY; without even the implied warranty of
- * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
- * GNU AFFERO GENERAL PUBLIC LICENSE for more details.
- *
- * You should have received a copy of the GNU Affero General Public
- * License along with this library. If not, see <http://www.gnu.org/licenses/>.
- *
- */
- namespace Test\AppFramework\Http;
- use OCP\AppFramework\Http;
- use OCP\AppFramework\Http\Response;
- use OCP\AppFramework\Utility\ITimeFactory;
- class ResponseTest extends \Test\TestCase {
- /**
- * @var \OCP\AppFramework\Http\Response
- */
- private $childResponse;
- protected function setUp(): void {
- parent::setUp();
- $this->childResponse = new Response();
- }
- public function testAddHeader() {
- $this->childResponse->addHeader(' hello ', 'world');
- $headers = $this->childResponse->getHeaders();
- $this->assertEquals('world', $headers['hello']);
- }
- public function testSetHeaders() {
- $expected = [
- 'Last-Modified' => 1,
- 'ETag' => 3,
- 'Something-Else' => 'hi',
- 'X-Robots-Tag' => 'noindex, nofollow',
- ];
- $this->childResponse->setHeaders($expected);
- $headers = $this->childResponse->getHeaders();
- $expected['Content-Security-Policy'] = "default-src 'none';base-uri 'none';manifest-src 'self';frame-ancestors 'none'";
- $expected['Feature-Policy'] = "autoplay 'none';camera 'none';fullscreen 'none';geolocation 'none';microphone 'none';payment 'none'";
- $this->assertEquals($expected, $headers);
- }
- public function testOverwriteCsp() {
- $expected = [
- 'Content-Security-Policy' => "default-src 'none';base-uri 'none';manifest-src 'self';script-src 'self' 'unsafe-inline';style-src 'self' 'unsafe-inline';img-src 'self';font-src 'self' data:;connect-src 'self';media-src 'self'",
- ];
- $policy = new Http\ContentSecurityPolicy();
- $policy->allowInlineScript(true);
- $this->childResponse->setContentSecurityPolicy($policy);
- $headers = $this->childResponse->getHeaders();
- $this->assertEquals(array_merge($expected, $headers), $headers);
- }
- public function testGetCsp() {
- $policy = new Http\ContentSecurityPolicy();
- $policy->allowInlineScript(true);
- $this->childResponse->setContentSecurityPolicy($policy);
- $this->assertEquals($policy, $this->childResponse->getContentSecurityPolicy());
- }
- public function testGetCspEmpty() {
- $this->assertEquals(new Http\EmptyContentSecurityPolicy(), $this->childResponse->getContentSecurityPolicy());
- }
- public function testAddHeaderValueNullDeletesIt() {
- $this->childResponse->addHeader('hello', 'world');
- $this->childResponse->addHeader('hello', null);
- $this->assertEquals(5, count($this->childResponse->getHeaders()));
- }
- public function testCacheHeadersAreDisabledByDefault() {
- $headers = $this->childResponse->getHeaders();
- $this->assertEquals('no-cache, no-store, must-revalidate', $headers['Cache-Control']);
- }
- public function testAddCookie() {
- $this->childResponse->addCookie('foo', 'bar');
- $this->childResponse->addCookie('bar', 'foo', new \DateTime('1970-01-01'));
- $expectedResponse = [
- 'foo' => [
- 'value' => 'bar',
- 'expireDate' => null,
- 'sameSite' => 'Lax',
- ],
- 'bar' => [
- 'value' => 'foo',
- 'expireDate' => new \DateTime('1970-01-01'),
- 'sameSite' => 'Lax',
- ]
- ];
- $this->assertEquals($expectedResponse, $this->childResponse->getCookies());
- }
- public function testSetCookies() {
- $expected = [
- 'foo' => [
- 'value' => 'bar',
- 'expireDate' => null,
- ],
- 'bar' => [
- 'value' => 'foo',
- 'expireDate' => new \DateTime('1970-01-01')
- ]
- ];
- $this->childResponse->setCookies($expected);
- $cookies = $this->childResponse->getCookies();
- $this->assertEquals($expected, $cookies);
- }
- public function testInvalidateCookie() {
- $this->childResponse->addCookie('foo', 'bar');
- $this->childResponse->invalidateCookie('foo');
- $expected = [
- 'foo' => [
- 'value' => 'expired',
- 'expireDate' => new \DateTime('1971-01-01'),
- 'sameSite' => 'Lax',
- ]
- ];
- $cookies = $this->childResponse->getCookies();
- $this->assertEquals($expected, $cookies);
- }
- public function testInvalidateCookies() {
- $this->childResponse->addCookie('foo', 'bar');
- $this->childResponse->addCookie('bar', 'foo');
- $expected = [
- 'foo' => [
- 'value' => 'bar',
- 'expireDate' => null,
- 'sameSite' => 'Lax',
- ],
- 'bar' => [
- 'value' => 'foo',
- 'expireDate' => null,
- 'sameSite' => 'Lax',
- ]
- ];
- $cookies = $this->childResponse->getCookies();
- $this->assertEquals($expected, $cookies);
- $this->childResponse->invalidateCookies(['foo', 'bar']);
- $expected = [
- 'foo' => [
- 'value' => 'expired',
- 'expireDate' => new \DateTime('1971-01-01'),
- 'sameSite' => 'Lax',
- ],
- 'bar' => [
- 'value' => 'expired',
- 'expireDate' => new \DateTime('1971-01-01'),
- 'sameSite' => 'Lax',
- ]
- ];
- $cookies = $this->childResponse->getCookies();
- $this->assertEquals($expected, $cookies);
- }
- public function testRenderReturnNullByDefault() {
- $this->assertEquals(null, $this->childResponse->render());
- }
- public function testGetStatus() {
- $default = $this->childResponse->getStatus();
- $this->childResponse->setStatus(Http::STATUS_NOT_FOUND);
- $this->assertEquals(Http::STATUS_OK, $default);
- $this->assertEquals(Http::STATUS_NOT_FOUND, $this->childResponse->getStatus());
- }
- public function testGetEtag() {
- $this->childResponse->setEtag('hi');
- $this->assertSame('hi', $this->childResponse->getEtag());
- }
- public function testGetLastModified() {
- $lastModified = new \DateTime('now', new \DateTimeZone('GMT'));
- $lastModified->setTimestamp(1);
- $this->childResponse->setLastModified($lastModified);
- $this->assertEquals($lastModified, $this->childResponse->getLastModified());
- }
- public function testCacheSecondsZero() {
- $this->childResponse->cacheFor(0);
- $headers = $this->childResponse->getHeaders();
- $this->assertEquals('no-cache, no-store, must-revalidate', $headers['Cache-Control']);
- $this->assertFalse(isset($headers['Pragma']));
- $this->assertFalse(isset($headers['Expires']));
- }
- public function testCacheSeconds() {
- $time = $this->createMock(ITimeFactory::class);
- $time->method('getTime')
- ->willReturn(1234567);
- $this->overwriteService(ITimeFactory::class, $time);
- $this->childResponse->cacheFor(33);
- $headers = $this->childResponse->getHeaders();
- $this->assertEquals('private, max-age=33, must-revalidate', $headers['Cache-Control']);
- $this->assertEquals('private', $headers['Pragma']);
- $this->assertEquals('Thu, 15 Jan 1970 06:56:40 +0000', $headers['Expires']);
- }
- public function testEtagLastModifiedHeaders() {
- $lastModified = new \DateTime('now', new \DateTimeZone('GMT'));
- $lastModified->setTimestamp(1);
- $this->childResponse->setLastModified($lastModified);
- $headers = $this->childResponse->getHeaders();
- $this->assertEquals('Thu, 01 Jan 1970 00:00:01 +0000', $headers['Last-Modified']);
- }
- public function testChainability() {
- $lastModified = new \DateTime('now', new \DateTimeZone('GMT'));
- $lastModified->setTimestamp(1);
- $this->childResponse->setEtag('hi')
- ->setStatus(Http::STATUS_NOT_FOUND)
- ->setLastModified($lastModified)
- ->cacheFor(33)
- ->addHeader('hello', 'world');
- $headers = $this->childResponse->getHeaders();
- $this->assertEquals('world', $headers['hello']);
- $this->assertEquals(Http::STATUS_NOT_FOUND, $this->childResponse->getStatus());
- $this->assertEquals('hi', $this->childResponse->getEtag());
- $this->assertEquals('Thu, 01 Jan 1970 00:00:01 +0000', $headers['Last-Modified']);
- $this->assertEquals('private, max-age=33, must-revalidate',
- $headers['Cache-Control']);
- }
- public function testThrottle() {
- $this->assertFalse($this->childResponse->isThrottled());
- $this->childResponse->throttle();
- $this->assertTrue($this->childResponse->isThrottled());
- }
- public function testGetThrottleMetadata() {
- $this->childResponse->throttle(['foo' => 'bar']);
- $this->assertSame(['foo' => 'bar'], $this->childResponse->getThrottleMetadata());
- }
- }
|