dépôts / lhc / web / wiklou.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
history | raw | HEAD
tests for r94881 which interprets relative Location: headers
[lhc/web/wiklou.git] / tests / phpunit / includes / HttpTest.php
1 <?php
2 /**
3 * @group Broken
4 */
5 class HttpTest extends MediaWikiTestCase {
6 /**
7 * @dataProvider cookieDomains
8 */
9 function testValidateCookieDomain( $expected, $domain, $origin = null ) {
10 if ( $origin ) {
11 $ok = Cookie::validateCookieDomain( $domain, $origin );
12 $msg = "$domain against origin $origin";
13 } else {
14 $ok = Cookie::validateCookieDomain( $domain );
15 $msg = "$domain";
16 }
17 $this->assertEquals( $expected, $ok, $msg );
18 }
19
20 function cookieDomains() {
21 return array(
22 array( false, "org"),
23 array( false, ".org"),
24 array( true, "wikipedia.org"),
25 array( true, ".wikipedia.org"),
26 array( false, "co.uk" ),
27 array( false, ".co.uk" ),
28 array( false, "gov.uk" ),
29 array( false, ".gov.uk" ),
30 array( true, "supermarket.uk" ),
31 array( false, "uk" ),
32 array( false, ".uk" ),
33 array( false, "127.0.0." ),
34 array( false, "127." ),
35 array( false, "127.0.0.1." ),
36 array( true, "127.0.0.1" ),
37 array( false, "333.0.0.1" ),
38 array( true, "example.com" ),
39 array( false, "example.com." ),
40 array( true, ".example.com" ),
41
42 array( true, ".example.com", "www.example.com" ),
43 array( false, "example.com", "www.example.com" ),
44 array( true, "127.0.0.1", "127.0.0.1" ),
45 array( false, "127.0.0.1", "localhost" ),
46 );
47 }
48
49 /**
50 * Test Http::isValidURI()
51 * @bug 27854 : Http::isValidURI is too lax
52 * @dataProvider provideURI
53 */
54 function testIsValidUri( $expect, $URI, $message = '' ) {
55 $this->assertEquals(
56 $expect,
57 (bool) Http::isValidURI( $URI ),
58 $message
59 );
60 }
61
62 /**
63 * Feeds URI to test a long regular expression in Http::isValidURI
64 */
65 function provideURI() {
66 /** Format: 'boolean expectation', 'URI to test', 'Optional message' */
67 return array(
68 array( false, '¿non sens before!! http://a', 'Allow anything before URI' ),
69
70 # (http|https) - only two schemes allowed
71 array( true, 'http://www.example.org/' ),
72 array( true, 'https://www.example.org/' ),
73 array( true, 'http://www.example.org', 'URI without directory' ),
74 array( true, 'http://a', 'Short name' ),
75 array( true, 'http://étoile', 'Allow UTF-8 in hostname' ), # 'étoile' is french for 'star'
76 array( false, '\\host\directory', 'CIFS share' ),
77 array( false, 'gopher://host/dir', 'Reject gopher scheme' ),
78 array( false, 'telnet://host', 'Reject telnet scheme' ),
79
80 # :\/\/ - double slashes
81 array( false, 'http//example.org', 'Reject missing colon in protocol' ),
82 array( false, 'http:/example.org', 'Reject missing slash in protocol' ),
83 array( false, 'http:example.org', 'Must have two slashes' ),
84 # Following fail since hostname can be made of anything
85 array( false, 'http:///example.org', 'Must have exactly two slashes, not three' ),
86
87 # (\w+:{0,1}\w*@)? - optional user:pass
88 array( true, 'http://user@host', 'Username provided' ),
89 array( true, 'http://user:@host', 'Username provided, no password' ),
90 array( true, 'http://user:pass@host', 'Username and password provided' ),
91
92 # (\S+) - host part is made of anything not whitespaces
93 array( false, 'http://!"èèè¿¿¿~~\'', 'hostname is made of any non whitespace' ),
94 array( false, 'http://exam:ple.org/', 'hostname can not use colons!' ),
95
96 # (:[0-9]+)? - port number
97 array( true, 'http://example.org:80/' ),
98 array( true, 'https://example.org:80/' ),
99 array( true, 'http://example.org:443/' ),
100 array( true, 'https://example.org:443/' ),
101
102 # Part after the hostname is / or / with something else
103 array( true, 'http://example/#' ),
104 array( true, 'http://example/!' ),
105 array( true, 'http://example/:' ),
106 array( true, 'http://example/.' ),
107 array( true, 'http://example/?' ),
108 array( true, 'http://example/+' ),
109 array( true, 'http://example/=' ),
110 array( true, 'http://example/&' ),
111 array( true, 'http://example/%' ),
112 array( true, 'http://example/@' ),
113 array( true, 'http://example/-' ),
114 array( true, 'http://example//' ),
115 array( true, 'http://example/&' ),
116
117 # Fragment
118 array( true, 'http://exam#ple.org', ), # This one is valid, really!
119 array( true, 'http://example.org:80#anchor' ),
120 array( true, 'http://example.org/?id#anchor' ),
121 array( true, 'http://example.org/?#anchor' ),
122
123 array( false, 'http://a ¿non !!sens after', 'Allow anything after URI' ),
124 );
125 }
126
127 function testRelativeRedirections() {
128 $h = new MWHttpRequestTester( 'http://oldsite/file.ext' );
129 # Forge a Location header
130 $h->setRespHeaders( 'location', array(
131 'http://newsite/file.ext',
132 '/newfile.ext',
133 )
134 );
135 # Verify we correctly fix the Location
136 $this->assertEquals(
137 'http://newsite/newfile.ext',
138 $h->getFinalUrl(),
139 "Relative file path Location: interpreted as full URL"
140 );
141
142 $h->setRespHeaders( 'location', array(
143 'https://oldsite/file.ext'
144 )
145 );
146 $this->assertEquals(
147 'https://oldsite/file.ext',
148 $h->getFinalUrl(),
149 "Location to the HTTPS version of the site"
150 );
151
152 $h->setRespHeaders( 'location', array(
153 '/anotherfile.ext',
154 'http://anotherfile/hoster.ext',
155 'https://anotherfile/hoster.ext'
156 )
157 );
158 $this->assertEquals(
159 'https://anotherfile/hoster.ext',
160 $h->getFinalUrl( "Relative file path Location: should keep the latest host and scheme!")
161 );
162 }
163 }
164
165 /**
166 * Class to let us overwrite MWHttpREquest respHeaders variable
167 */
168 class MWHttpRequestTester extends MWHttpRequest {
169 function setRespHeaders( $name, $value ) {
170 $this->respHeaders[$name] = $value ;
171 }
172 }
Wiklou, le Wiki du Wiklou