diff options
author | David Heinemeier Hansson <david@loudthinking.com> | 2007-06-23 16:43:08 +0000 |
---|---|---|
committer | David Heinemeier Hansson <david@loudthinking.com> | 2007-06-23 16:43:08 +0000 |
commit | 73fba4faf13394540489063247a887a0d396af2f (patch) | |
tree | fa67d321586d49b477c36427dd75267f93df6e9d /actionpack/test | |
parent | a347d461a80a1ae8298ecc11123d06f2057ad684 (diff) | |
download | rails-73fba4faf13394540489063247a887a0d396af2f.tar.gz rails-73fba4faf13394540489063247a887a0d396af2f.tar.bz2 rails-73fba4faf13394540489063247a887a0d396af2f.zip |
Fixed that HTTP authentication should work if the header is called REDIRECT_X_HTTP_AUTHORIZATION as well (closes #6754) [mislaw]
git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@7091 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
Diffstat (limited to 'actionpack/test')
-rw-r--r-- | actionpack/test/controller/http_authentication_test.rb | 56 |
1 files changed, 34 insertions, 22 deletions
diff --git a/actionpack/test/controller/http_authentication_test.rb b/actionpack/test/controller/http_authentication_test.rb index e08bc7b94b..6f7b31a41b 100644 --- a/actionpack/test/controller/http_authentication_test.rb +++ b/actionpack/test/controller/http_authentication_test.rb @@ -3,35 +3,42 @@ require File.dirname(__FILE__) + '/../abstract_unit' class HttpBasicAuthenticationTest < Test::Unit::TestCase include ActionController::HttpAuthentication::Basic + class DummyController + attr_accessor :headers, :renders, :request + + def initialize + @headers, @renders = {}, [] + @request = ActionController::TestRequest.new + end + + def render(options) + self.renders << options + end + end + def setup - @controller = Class.new do - attr_accessor :headers, :renders - - def initialize - @headers, @renders = {}, [] - end - - def request - Class.new do - def env - { 'HTTP_AUTHORIZATION' => ActionController::HttpAuthentication::Basic.encode_credentials("dhh", "secret") } - end - end.new - end - - def render(options) - self.renders << options - end - end.new + @controller = DummyController.new + @credentials = ActionController::HttpAuthentication::Basic.encode_credentials("dhh", "secret") end def test_successful_authentication - assert authenticate(@controller) { |user_name, password| user_name == "dhh" && password == "secret" } - end + login = Proc.new { |user_name, password| user_name == "dhh" && password == "secret" } + set_headers + assert authenticate(@controller, &login) + set_headers '' + assert_nothing_raised do + assert !authenticate(@controller, &login) + end + + set_headers nil + set_headers @credentials, 'REDIRECT_X_HTTP_AUTHORIZATION' + assert authenticate(@controller, &login) + end def test_failing_authentication - assert !authenticate(@controller) { |user_name, password| user_name == "dhh" && password == "secret!!" } + set_headers + assert !authenticate(@controller) { |user_name, password| user_name == "dhh" && password == "incorrect" } end def test_authentication_request @@ -39,4 +46,9 @@ class HttpBasicAuthenticationTest < Test::Unit::TestCase assert_equal 'Basic realm="Megaglobalapp"', @controller.headers["WWW-Authenticate"] assert_equal :unauthorized, @controller.renders.first[:status] end + + private + def set_headers(value = @credentials, name = 'HTTP_AUTHORIZATION') + @controller.request.env[name] = value + end end |