Google Git
Sign in
apache / shiro / 3a5d88197c4b72d7f61074dd15f87234969110b2 / . / web / src / test / java / org / apache / shiro / web / servlet / SimpleCookieTest.java
blob: 4d26f861bb90db34b9c70c5b928a71b0fa8ad12c [file] [log] [blame]
/*
* Licensed to the Apache Software Foundation (ASF) under one
* or more contributor license agreements. See the NOTICE file
* distributed with this work for additional information
* regarding copyright ownership. The ASF licenses this file
* to you under the Apache License, Version 2.0 (the
* "License"); you may not use this file except in compliance
* with the License. You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing,
* software distributed under the License is distributed on an
* "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
* KIND, either express or implied. See the License for the
* specific language governing permissions and limitations
* under the License.
*/
package org.apache.shiro.web.servlet;
import junit.framework.TestCase;
import org.easymock.IArgumentMatcher;
import org.junit.Before;
import org.junit.Test;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import java.util.Locale;
import static org.easymock.EasyMock.*;
/**
* TODO - Class JavaDoc
*
* @since Apr 22, 2010 9:40:47 PM
*/
public class SimpleCookieTest extends TestCase {
private SimpleCookie cookie;
private HttpServletRequest mockRequest;
private HttpServletResponse mockResponse;
@Before
public void setUp() throws Exception {
this.mockRequest = createMock(HttpServletRequest.class);
this.mockResponse = createMock(HttpServletResponse.class);
this.cookie = new SimpleCookie("test");
}
@Test
//Verifies fix for JSEC-94
public void testRemoveValue() throws Exception {
//verify that the cookie header starts with what we want
//we can't verify the exact date format string that is appended, so we resort to just
//simple 'startsWith' matching, which is good enough:
String name = "test";
String value = "deleteMe";
String path = "/somepath";
String headerValue = this.cookie.buildHeaderValue(name, value, null, null, path,
0, SimpleCookie.DEFAULT_VERSION, false, false, null);
String expectedStart = new StringBuilder()
.append(name).append(SimpleCookie.NAME_VALUE_DELIMITER).append(value)
.append(SimpleCookie.ATTRIBUTE_DELIMITER)
.append(SimpleCookie.PATH_ATTRIBUTE_NAME).append(SimpleCookie.NAME_VALUE_DELIMITER).append(path)
.toString();
assertTrue(headerValue.startsWith(expectedStart));
expect(mockRequest.getContextPath()).andReturn(path).times(1);
mockResponse.addHeader(eq(SimpleCookie.COOKIE_HEADER_NAME), isA(String.class)); //can't calculate the date format in the test
replay(mockRequest);
replay(mockResponse);
this.cookie.removeFrom(mockRequest, mockResponse);
verify(mockRequest);
verify(mockResponse);
}
private void testRootContextPath(String contextPath) {
this.cookie.setValue("blah");
String expectedCookieValue = new StringBuilder()
.append("test").append(SimpleCookie.NAME_VALUE_DELIMITER).append("blah")
.append(SimpleCookie.ATTRIBUTE_DELIMITER)
.append(SimpleCookie.PATH_ATTRIBUTE_NAME).append(SimpleCookie.NAME_VALUE_DELIMITER).append(Cookie.ROOT_PATH)
.append(SimpleCookie.ATTRIBUTE_DELIMITER)
.append(SimpleCookie.HTTP_ONLY_ATTRIBUTE_NAME)
.append(SimpleCookie.ATTRIBUTE_DELIMITER)
.append(SimpleCookie.SAME_SITE_ATTRIBUTE_NAME).append(SimpleCookie.NAME_VALUE_DELIMITER)
.append(Cookie.SameSiteOptions.LAX.toString().toLowerCase(Locale.ENGLISH))
.toString();
expect(mockRequest.getContextPath()).andReturn(contextPath);
mockResponse.addHeader(SimpleCookie.COOKIE_HEADER_NAME, expectedCookieValue);
replay(mockRequest);
replay(mockResponse);
this.cookie.saveTo(mockRequest, mockResponse);
verify(mockRequest);
verify(mockResponse);
}
@Test
/** Verifies fix for <a href="http://issues.apache.org/jira/browse/JSEC-34">JSEC-34</a> (1 of 2)*/
public void testEmptyContextPath() throws Exception {
testRootContextPath("");
}
@Test
/** Verifies fix for <a href="http://issues.apache.org/jira/browse/JSEC-34">JSEC-34</a> (2 of 2)*/
public void testNullContextPath() throws Exception {
testRootContextPath(null);
}
@Test
public void testReadValueInvalidPath() throws Exception {
expect(mockRequest.getRequestURI()).andStubReturn("/foo/index.jsp");
expect(mockRequest.getCookies()).andStubReturn(new javax.servlet.http.Cookie[] { new javax.servlet.http.Cookie(this.cookie.getName(), "value") });
replay(mockRequest);
replay(mockResponse);
this.cookie.setPath("/bar/index.jsp");
assertEquals(null, this.cookie.readValue(mockRequest, mockResponse));
}
@Test
public void testReadValuePrefixPath() throws Exception {
expect(mockRequest.getRequestURI()).andStubReturn("/bar/index.jsp");
expect(mockRequest.getCookies()).andStubReturn(new javax.servlet.http.Cookie[] { new javax.servlet.http.Cookie(this.cookie.getName(), "value") });
replay(mockRequest);
replay(mockResponse);
this.cookie.setPath("/bar");
assertEquals("value", this.cookie.readValue(mockRequest, mockResponse));
}
@Test
public void testReadValueInvalidPrefixPath() throws Exception {
expect(mockRequest.getRequestURI()).andStubReturn("/foobar/index.jsp");
expect(mockRequest.getCookies()).andStubReturn(new javax.servlet.http.Cookie[] { new javax.servlet.http.Cookie(this.cookie.getName(), "value") });
replay(mockRequest);
replay(mockResponse);
this.cookie.setPath("/foo");
assertEquals(null, this.cookie.readValue(mockRequest, mockResponse));
}
private static <T extends javax.servlet.http.Cookie> T eqCookie(final T in) {
reportMatcher(new IArgumentMatcher() {
public boolean matches(Object o) {
javax.servlet.http.Cookie c = (javax.servlet.http.Cookie) o;
return c.getName().equals(in.getName()) &&
c.getValue().equals(in.getValue()) &&
c.getPath().equals(in.getPath()) &&
c.getMaxAge() == in.getMaxAge() &&
c.getSecure() == in.getSecure() &&
c.getValue().equals(in.getValue());
}
public void appendTo(StringBuffer sb) {
sb.append("eqCookie(");
sb.append(in.getClass().getName());
sb.append(")");
}
});
return null;
}
}