diff options
| author | Kasper Timm Hansen <kaspth@gmail.com> | 2016-01-10 17:44:43 +0100 |
|---|---|---|
| committer | Kasper Timm Hansen <kaspth@gmail.com> | 2016-01-10 17:44:43 +0100 |
| commit | 56c93bba2fe79df0952c2e587dbbc3c2dd332534 (patch) | |
| tree | d4b609d0f5c7274a94cceba4efb97afcb31f7e7f /actionpack/test/controller | |
| parent | 527cd8dfcd72b184e6289a68585f0aab206e9a5c (diff) | |
| parent | 2ae757d76bdc4c02e47a43ebc5ecbfc8bb8dee41 (diff) | |
| download | rails-56c93bba2fe79df0952c2e587dbbc3c2dd332534.tar.gz rails-56c93bba2fe79df0952c2e587dbbc3c2dd332534.tar.bz2 rails-56c93bba2fe79df0952c2e587dbbc3c2dd332534.zip | |
Merge pull request #21181 from denisenkom/mypatch
Test basic auth with symbols in password
Diffstat (limited to 'actionpack/test/controller')
| -rw-r--r-- | actionpack/test/controller/http_basic_authentication_test.rb | 19 |
1 files changed, 19 insertions, 0 deletions
diff --git a/actionpack/test/controller/http_basic_authentication_test.rb b/actionpack/test/controller/http_basic_authentication_test.rb index 194f5b3790..adcf259317 100644 --- a/actionpack/test/controller/http_basic_authentication_test.rb +++ b/actionpack/test/controller/http_basic_authentication_test.rb @@ -5,6 +5,7 @@ class HttpBasicAuthenticationTest < ActionController::TestCase before_action :authenticate, only: :index before_action :authenticate_with_request, only: :display before_action :authenticate_long_credentials, only: :show + before_action :auth_with_special_chars, only: :special_creds http_basic_authenticate_with :name => "David", :password => "Goliath", :only => :search @@ -20,6 +21,10 @@ class HttpBasicAuthenticationTest < ActionController::TestCase render plain: 'Only for loooooong credentials' end + def special_creds + render plain: 'Only for special credentials' + end + def search render plain: 'All inline' end @@ -40,6 +45,12 @@ class HttpBasicAuthenticationTest < ActionController::TestCase end end + def auth_with_special_chars + authenticate_or_request_with_http_basic do |username, password| + username == 'login!@#$%^&*()_+{}[];"\',./<>?`~ \n\r\t' && password == 'pwd:!@#$%^&*()_+{}[];"\',./<>?`~ \n\r\t' + end + end + def authenticate_long_credentials authenticate_or_request_with_http_basic do |username, password| username == '1234567890123456789012345678901234567890' && password == '1234567890123456789012345678901234567890' @@ -133,6 +144,14 @@ class HttpBasicAuthenticationTest < ActionController::TestCase assert_equal 'Definitely Maybe', @response.body end + test "authentication request with valid credential special chars" do + @request.env['HTTP_AUTHORIZATION'] = encode_credentials('login!@#$%^&*()_+{}[];"\',./<>?`~ \n\r\t', 'pwd:!@#$%^&*()_+{}[];"\',./<>?`~ \n\r\t') + get :special_creds + + assert_response :success + assert_equal 'Only for special credentials', @response.body + end + test "authenticate with class method" do @request.env['HTTP_AUTHORIZATION'] = encode_credentials('David', 'Goliath') get :search |