Eliminate newlines in basic auth. fixes #2882

author: Aaron Patterson <aaron.patterson@gmail.com> 2011-09-06 17:25:20 -0700
committer: Aaron Patterson <aaron.patterson@gmail.com> 2011-09-06 17:25:20 -0700
commit: f6ced69a11cdff56c2e87b84e775ef09c6d999d1 (patch)
tree: a9949f3d4cc99f28c9a30921bd6a2d0500da2a3f /actionpack/test
parent: 54b7e783ef202d022a57dcdd54f7edf021c1df78 (diff)
download: rails-f6ced69a11cdff56c2e87b84e775ef09c6d999d1.tar.gz
rails-f6ced69a11cdff56c2e87b84e775ef09c6d999d1.tar.bz2
rails-f6ced69a11cdff56c2e87b84e775ef09c6d999d1.zip
1 files changed, 8 insertions, 0 deletions
diff --git a/actionpack/test/controller/http_basic_authentication_test.rb b/actionpack/test/controller/http_basic_authentication_test.rb
index bd3e13e6fa..364e96d4f6 100644
--- a/actionpack/test/controller/http_basic_authentication_test.rb
+++ b/actionpack/test/controller/http_basic_authentication_test.rb
@@ -85,6 +85,14 @@ class HttpBasicAuthenticationTest < ActionController::TestCase
     end
   end
 
+  def test_encode_credentials_has_no_newline
+    username = 'laskjdfhalksdjfhalkjdsfhalksdjfhklsdjhalksdjfhalksdjfhlakdsjfh'
+    password = 'kjfhueyt9485osdfasdkljfh4lkjhakldjfhalkdsjf'
+    result = ActionController::HttpAuthentication::Basic.encode_credentials(
+      username, password)
+    assert_no_match(/\n/, result)
+  end
+
   test "authentication request without credential" do
     get :display
author	Aaron Patterson <aaron.patterson@gmail.com>	2011-09-06 17:25:20 -0700
committer	Aaron Patterson <aaron.patterson@gmail.com>	2011-09-06 17:25:20 -0700
commit	f6ced69a11cdff56c2e87b84e775ef09c6d999d1 (patch)
tree	a9949f3d4cc99f28c9a30921bd6a2d0500da2a3f /actionpack/test
parent	54b7e783ef202d022a57dcdd54f7edf021c1df78 (diff)
download	rails-f6ced69a11cdff56c2e87b84e775ef09c6d999d1.tar.gz rails-f6ced69a11cdff56c2e87b84e775ef09c6d999d1.tar.bz2 rails-f6ced69a11cdff56c2e87b84e775ef09c6d999d1.zip