Skip to content

G
gitlab-ce
Commit 5a1f3df3 authored by blackst0ne's avatar blackst0ne Committed by Douwe Maan
Browse files
Options

Remove spec/lib/api/helpers/csrf_tokens_spec.rb

parent cc3a82bc
Hide whitespace changes
Inline Side-by-side
Showing with 0 additions and 42 deletions
spec/lib/api/helpers/csrf_tokens_spec.rb deleted 100644 → 0
View file @ cc3a82bc
require 'spec_helper'
describe API::Helpers do
subject do
Class.new.include(described_class).new
end
let(:header_token) { 'WblCcheb1qQLHFVhlMtwOhxJr5613vUT05vCvToRvfJ68UPT7+eV5xpaY9CjubnF3VGbTfIhQYkZWmWTfvZAWQ==' }
let(:session_token) { 'I0gBofh8Q0MRRjaxN3LJ/8EYNNNH/7SaysGnLkTn/as=' }
before do
class Request
attr_reader :headers
attr_reader :session
def initialize(header_token = nil, session_token = nil)
@headers = { 'X-Csrf-Token' => header_token }
@session = { '_csrf_token' => session_token }
end
end
end
it 'should return false if header token is invalid' do
request = Request.new(nil, session_token)
expect(subject.send(:csrf_tokens_valid?, request)).to be false
end
it 'should return false if session_token token is invalid' do
request = Request.new(header_token, nil)
expect(subject.send(:csrf_tokens_valid?, request)).to be false
end
it 'should return false if header_token is not 64 symbols long' do
request = Request.new(header_token[0..16], session_token)
expect(subject.send(:csrf_tokens_valid?, request)).to be false
end
it 'should return true if both header_token and session_token are correct' do
request = Request.new(header_token, session_token)
expect(subject.send(:csrf_tokens_valid?, request)).to be true
end
end
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment
GitLab Nexedi Edition | About GitLab | About Nexedi | 沪ICP备2021021310号-2 | 沪ICP备2021021310号-7