2008-08-09 03:54:55 +00:00
|
|
|
<?php
|
|
|
|
|
2016-10-14 14:30:05 +13:00
|
|
|
namespace SilverStripe\Control\Tests;
|
|
|
|
|
2019-08-02 11:29:23 +12:00
|
|
|
use ReflectionMethod;
|
|
|
|
use SilverStripe\Control\HTTPRequest;
|
2017-06-25 15:12:29 +12:00
|
|
|
use SilverStripe\Control\Middleware\TrustedProxyMiddleware;
|
2019-08-02 11:29:23 +12:00
|
|
|
use SilverStripe\Control\Session;
|
2016-08-19 10:51:35 +12:00
|
|
|
use SilverStripe\Dev\SapphireTest;
|
|
|
|
|
2016-12-16 17:34:21 +13:00
|
|
|
class HTTPRequestTest extends SapphireTest
|
|
|
|
{
|
|
|
|
protected static $fixture_file = null;
|
2014-08-15 18:53:05 +12:00
|
|
|
|
2016-12-16 17:34:21 +13:00
|
|
|
public function testMatch()
|
|
|
|
{
|
|
|
|
$request = new HTTPRequest("GET", "admin/crm/add");
|
2014-08-15 18:53:05 +12:00
|
|
|
|
2016-12-16 17:34:21 +13:00
|
|
|
/* When a rule matches, but has no variables, array("_matched" => true) is returned. */
|
2020-04-20 18:58:09 +01:00
|
|
|
$this->assertEquals(["_matched" => true], $request->match('admin/crm', true));
|
2014-08-15 18:53:05 +12:00
|
|
|
|
2016-12-16 17:34:21 +13:00
|
|
|
/* Becasue we shifted admin/crm off the stack, just "add" should be remaining */
|
|
|
|
$this->assertEquals("add", $request->remaining());
|
2014-08-15 18:53:05 +12:00
|
|
|
|
2020-04-20 18:58:09 +01:00
|
|
|
$this->assertEquals(["_matched" => true], $request->match('add', true));
|
2016-12-16 17:34:21 +13:00
|
|
|
}
|
2014-08-15 18:53:05 +12:00
|
|
|
|
2020-03-24 20:16:13 +00:00
|
|
|
/**
|
|
|
|
* @useDatabase false
|
|
|
|
*/
|
|
|
|
public function testWildCardMatch()
|
|
|
|
{
|
|
|
|
$request = new HTTPRequest('GET', 'admin/crm/test');
|
|
|
|
$this->assertEquals(['$1' => 'crm', '$2' => 'test'], $request->match('admin/$@', true));
|
|
|
|
$this->assertTrue($request->allParsed());
|
|
|
|
|
|
|
|
$request = new HTTPRequest('GET', 'admin/crm/test');
|
|
|
|
$this->assertEquals(['_matched' => true], $request->match('admin/$*', true));
|
|
|
|
$this->assertTrue($request->allParsed());
|
|
|
|
$this->assertEquals('crm/test', $request->remaining());
|
|
|
|
|
|
|
|
$request = new HTTPRequest('GET', 'admin/crm/test/part1/part2');
|
|
|
|
$this->assertEquals(['Action' => 'crm', '$1' => 'test', '$2' => 'part1', '$3' => 'part2'], $request->match('admin/$Action/$@', true));
|
|
|
|
$this->assertTrue($request->allParsed());
|
|
|
|
|
|
|
|
$request = new HTTPRequest('GET', 'admin/crm/test/part1/part2');
|
|
|
|
$this->assertEquals(['Action' => 'crm'], $request->match('admin/$Action/$*', true));
|
|
|
|
$this->assertTrue($request->allParsed());
|
|
|
|
$this->assertEquals('test/part1/part2', $request->remaining());
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* This test just asserts a warning is given if there is more than one wildcard parameter. Note that this isn't an
|
|
|
|
* enforcement of an API and we an add new behaviour in the future to allow many wildcard params if we want to
|
|
|
|
*
|
|
|
|
* @expectedException \PHPUnit_Framework_Error_Warning
|
|
|
|
*/
|
|
|
|
public function testWildCardWithFurtherParams()
|
|
|
|
{
|
|
|
|
$request = new HTTPRequest('GET', 'admin/crm/test');
|
|
|
|
// all parameters after the first wildcard parameter are ignored
|
|
|
|
$request->match('admin/$Action/$@/$Other/$*', true);
|
|
|
|
}
|
|
|
|
|
2016-12-16 17:34:21 +13:00
|
|
|
public function testHttpMethodOverrides()
|
|
|
|
{
|
|
|
|
$request = new HTTPRequest(
|
|
|
|
'GET',
|
|
|
|
'admin/crm'
|
|
|
|
);
|
|
|
|
$this->assertTrue(
|
|
|
|
$request->isGET(),
|
|
|
|
'GET with no method override'
|
|
|
|
);
|
2008-10-06 14:58:01 +00:00
|
|
|
|
2016-12-16 17:34:21 +13:00
|
|
|
$request = new HTTPRequest(
|
|
|
|
'POST',
|
|
|
|
'admin/crm'
|
|
|
|
);
|
|
|
|
$this->assertTrue(
|
|
|
|
$request->isPOST(),
|
|
|
|
'POST with no method override'
|
|
|
|
);
|
2008-10-06 14:58:01 +00:00
|
|
|
|
2016-12-16 17:34:21 +13:00
|
|
|
$request = new HTTPRequest(
|
|
|
|
'GET',
|
|
|
|
'admin/crm',
|
2020-04-20 18:58:09 +01:00
|
|
|
['_method' => 'DELETE']
|
2016-12-16 17:34:21 +13:00
|
|
|
);
|
|
|
|
$this->assertTrue(
|
|
|
|
$request->isGET(),
|
|
|
|
'GET with invalid POST method override'
|
|
|
|
);
|
2014-08-15 18:53:05 +12:00
|
|
|
|
2016-12-16 17:34:21 +13:00
|
|
|
$request = new HTTPRequest(
|
|
|
|
'POST',
|
|
|
|
'admin/crm',
|
2020-04-20 18:58:09 +01:00
|
|
|
[],
|
|
|
|
['_method' => 'DELETE']
|
2016-12-16 17:34:21 +13:00
|
|
|
);
|
|
|
|
$this->assertTrue(
|
|
|
|
$request->isDELETE(),
|
|
|
|
'POST with valid method override to DELETE'
|
|
|
|
);
|
2014-08-15 18:53:05 +12:00
|
|
|
|
2016-12-16 17:34:21 +13:00
|
|
|
$request = new HTTPRequest(
|
|
|
|
'POST',
|
|
|
|
'admin/crm',
|
2020-04-20 18:58:09 +01:00
|
|
|
[],
|
|
|
|
['_method' => 'put']
|
2016-12-16 17:34:21 +13:00
|
|
|
);
|
|
|
|
$this->assertTrue(
|
|
|
|
$request->isPUT(),
|
|
|
|
'POST with valid method override to PUT'
|
|
|
|
);
|
2014-08-15 18:53:05 +12:00
|
|
|
|
2016-12-16 17:34:21 +13:00
|
|
|
$request = new HTTPRequest(
|
|
|
|
'POST',
|
|
|
|
'admin/crm',
|
2020-04-20 18:58:09 +01:00
|
|
|
[],
|
|
|
|
['_method' => 'head']
|
2016-12-16 17:34:21 +13:00
|
|
|
);
|
|
|
|
$this->assertTrue(
|
|
|
|
$request->isHEAD(),
|
|
|
|
'POST with valid method override to HEAD '
|
|
|
|
);
|
2014-08-15 18:53:05 +12:00
|
|
|
|
2016-12-16 17:34:21 +13:00
|
|
|
$request = new HTTPRequest(
|
|
|
|
'POST',
|
|
|
|
'admin/crm',
|
2020-04-20 18:58:09 +01:00
|
|
|
[],
|
|
|
|
['_method' => 'head']
|
2016-12-16 17:34:21 +13:00
|
|
|
);
|
|
|
|
$this->assertTrue(
|
|
|
|
$request->isHEAD(),
|
|
|
|
'POST with valid method override to HEAD'
|
|
|
|
);
|
2014-08-15 18:53:05 +12:00
|
|
|
|
2016-12-16 17:34:21 +13:00
|
|
|
$request = new HTTPRequest(
|
|
|
|
'POST',
|
|
|
|
'admin/crm',
|
2020-04-20 18:58:09 +01:00
|
|
|
['_method' => 'head']
|
2016-12-16 17:34:21 +13:00
|
|
|
);
|
|
|
|
$this->assertTrue(
|
|
|
|
$request->isPOST(),
|
|
|
|
'POST with invalid method override by GET parameters to HEAD'
|
|
|
|
);
|
|
|
|
}
|
2014-08-15 18:53:05 +12:00
|
|
|
|
2016-12-16 17:34:21 +13:00
|
|
|
public function testRequestVars()
|
|
|
|
{
|
2020-04-20 18:58:09 +01:00
|
|
|
$getVars = [
|
2016-12-16 17:34:21 +13:00
|
|
|
'first' => 'a',
|
|
|
|
'second' => 'b',
|
2020-04-20 18:58:09 +01:00
|
|
|
];
|
|
|
|
$postVars = [
|
2016-12-16 17:34:21 +13:00
|
|
|
'third' => 'c',
|
|
|
|
'fourth' => 'd',
|
2020-04-20 18:58:09 +01:00
|
|
|
];
|
|
|
|
$requestVars = [
|
2016-12-16 17:34:21 +13:00
|
|
|
'first' => 'a',
|
|
|
|
'second' => 'b',
|
|
|
|
'third' => 'c',
|
|
|
|
'fourth' => 'd',
|
2020-04-20 18:58:09 +01:00
|
|
|
];
|
2016-12-16 17:34:21 +13:00
|
|
|
$request = new HTTPRequest(
|
|
|
|
'POST',
|
|
|
|
'admin/crm',
|
|
|
|
$getVars,
|
|
|
|
$postVars
|
|
|
|
);
|
|
|
|
$this->assertEquals(
|
|
|
|
$requestVars,
|
|
|
|
$request->requestVars(),
|
|
|
|
'GET parameters should supplement POST parameters'
|
|
|
|
);
|
2014-08-15 18:53:05 +12:00
|
|
|
|
2020-04-20 18:58:09 +01:00
|
|
|
$getVars = [
|
2016-12-16 17:34:21 +13:00
|
|
|
'first' => 'a',
|
|
|
|
'second' => 'b',
|
2020-04-20 18:58:09 +01:00
|
|
|
];
|
|
|
|
$postVars = [
|
2016-12-16 17:34:21 +13:00
|
|
|
'first' => 'c',
|
|
|
|
'third' => 'd',
|
2020-04-20 18:58:09 +01:00
|
|
|
];
|
|
|
|
$requestVars = [
|
2016-12-16 17:34:21 +13:00
|
|
|
'first' => 'c',
|
|
|
|
'second' => 'b',
|
|
|
|
'third' => 'd',
|
2020-04-20 18:58:09 +01:00
|
|
|
];
|
2016-12-16 17:34:21 +13:00
|
|
|
$request = new HTTPRequest(
|
|
|
|
'POST',
|
|
|
|
'admin/crm',
|
|
|
|
$getVars,
|
|
|
|
$postVars
|
|
|
|
);
|
|
|
|
$this->assertEquals(
|
|
|
|
$requestVars,
|
|
|
|
$request->requestVars(),
|
|
|
|
'POST parameters should override GET parameters'
|
|
|
|
);
|
2014-08-15 18:53:05 +12:00
|
|
|
|
2020-04-20 18:58:09 +01:00
|
|
|
$getVars = [
|
|
|
|
'first' => [
|
2016-12-16 17:34:21 +13:00
|
|
|
'first' => 'a',
|
2020-04-20 18:58:09 +01:00
|
|
|
],
|
|
|
|
'second' => [
|
2016-12-16 17:34:21 +13:00
|
|
|
'second' => 'b',
|
2020-04-20 18:58:09 +01:00
|
|
|
],
|
|
|
|
];
|
|
|
|
$postVars = [
|
|
|
|
'first' => [
|
2016-12-16 17:34:21 +13:00
|
|
|
'first' => 'c',
|
2020-04-20 18:58:09 +01:00
|
|
|
],
|
|
|
|
'third' => [
|
2016-12-16 17:34:21 +13:00
|
|
|
'third' => 'd',
|
2020-04-20 18:58:09 +01:00
|
|
|
],
|
|
|
|
];
|
|
|
|
$requestVars = [
|
|
|
|
'first' => [
|
2016-12-16 17:34:21 +13:00
|
|
|
'first' => 'c',
|
2020-04-20 18:58:09 +01:00
|
|
|
],
|
|
|
|
'second' => [
|
2016-12-16 17:34:21 +13:00
|
|
|
'second' => 'b',
|
2020-04-20 18:58:09 +01:00
|
|
|
],
|
|
|
|
'third' => [
|
2016-12-16 17:34:21 +13:00
|
|
|
'third' => 'd',
|
2020-04-20 18:58:09 +01:00
|
|
|
],
|
|
|
|
];
|
2016-12-16 17:34:21 +13:00
|
|
|
$request = new HTTPRequest(
|
|
|
|
'POST',
|
|
|
|
'admin/crm',
|
|
|
|
$getVars,
|
|
|
|
$postVars
|
|
|
|
);
|
|
|
|
$this->assertEquals(
|
|
|
|
$requestVars,
|
|
|
|
$request->requestVars(),
|
|
|
|
'Nested POST parameters should override GET parameters'
|
|
|
|
);
|
2014-08-15 18:53:05 +12:00
|
|
|
|
2020-04-20 18:58:09 +01:00
|
|
|
$getVars = [
|
|
|
|
'first' => [
|
2016-12-16 17:34:21 +13:00
|
|
|
'first' => 'a',
|
2020-04-20 18:58:09 +01:00
|
|
|
],
|
|
|
|
'second' => [
|
2016-12-16 17:34:21 +13:00
|
|
|
'second' => 'b',
|
2020-04-20 18:58:09 +01:00
|
|
|
],
|
|
|
|
];
|
|
|
|
$postVars = [
|
|
|
|
'first' => [
|
2016-12-16 17:34:21 +13:00
|
|
|
'second' => 'c',
|
2020-04-20 18:58:09 +01:00
|
|
|
],
|
|
|
|
'third' => [
|
2016-12-16 17:34:21 +13:00
|
|
|
'third' => 'd',
|
2020-04-20 18:58:09 +01:00
|
|
|
],
|
|
|
|
];
|
|
|
|
$requestVars = [
|
|
|
|
'first' => [
|
2016-12-16 17:34:21 +13:00
|
|
|
'first' => 'a',
|
|
|
|
'second' => 'c',
|
2020-04-20 18:58:09 +01:00
|
|
|
],
|
|
|
|
'second' => [
|
2016-12-16 17:34:21 +13:00
|
|
|
'second' => 'b',
|
2020-04-20 18:58:09 +01:00
|
|
|
],
|
|
|
|
'third' => [
|
2016-12-16 17:34:21 +13:00
|
|
|
'third' => 'd',
|
2020-04-20 18:58:09 +01:00
|
|
|
],
|
|
|
|
];
|
2016-12-16 17:34:21 +13:00
|
|
|
$request = new HTTPRequest(
|
|
|
|
'POST',
|
|
|
|
'admin/crm',
|
|
|
|
$getVars,
|
|
|
|
$postVars
|
|
|
|
);
|
|
|
|
$this->assertEquals(
|
|
|
|
$requestVars,
|
|
|
|
$request->requestVars(),
|
|
|
|
'Nested GET parameters should supplement POST parameters'
|
|
|
|
);
|
|
|
|
}
|
2012-04-05 14:44:42 +02:00
|
|
|
|
2016-12-16 17:34:21 +13:00
|
|
|
public function testIsAjax()
|
|
|
|
{
|
2020-04-20 18:58:09 +01:00
|
|
|
$req = new HTTPRequest('GET', '/', ['ajax' => 0]);
|
2016-12-16 17:34:21 +13:00
|
|
|
$this->assertFalse($req->isAjax());
|
2012-04-05 14:44:42 +02:00
|
|
|
|
2020-04-20 18:58:09 +01:00
|
|
|
$req = new HTTPRequest('GET', '/', ['ajax' => 1]);
|
2016-12-16 17:34:21 +13:00
|
|
|
$this->assertTrue($req->isAjax());
|
2012-04-05 14:44:42 +02:00
|
|
|
|
2016-12-16 17:34:21 +13:00
|
|
|
$req = new HTTPRequest('GET', '/');
|
|
|
|
$req->addHeader('X-Requested-With', 'XMLHttpRequest');
|
|
|
|
$this->assertTrue($req->isAjax());
|
|
|
|
}
|
2012-06-29 22:02:30 +12:00
|
|
|
|
2016-12-16 17:34:21 +13:00
|
|
|
public function testGetURL()
|
|
|
|
{
|
|
|
|
$req = new HTTPRequest('GET', '/');
|
|
|
|
$this->assertEquals('', $req->getURL());
|
2012-06-29 22:02:30 +12:00
|
|
|
|
2016-12-16 17:34:21 +13:00
|
|
|
$req = new HTTPRequest('GET', '/assets/somefile.gif');
|
|
|
|
$this->assertEquals('assets/somefile.gif', $req->getURL());
|
2012-06-29 22:02:30 +12:00
|
|
|
|
2016-12-16 17:34:21 +13:00
|
|
|
$req = new HTTPRequest('GET', '/home?test=1');
|
|
|
|
$this->assertEquals('home?test=1', $req->getURL(true));
|
|
|
|
$this->assertEquals('home', $req->getURL());
|
|
|
|
}
|
2016-03-01 12:56:34 +00:00
|
|
|
|
2017-06-25 15:12:29 +12:00
|
|
|
public function testSetIPFromHeaderValue()
|
2016-12-16 17:34:21 +13:00
|
|
|
{
|
2017-06-25 15:12:29 +12:00
|
|
|
$req = new TrustedProxyMiddleware();
|
2016-12-16 17:34:21 +13:00
|
|
|
$reflectionMethod = new ReflectionMethod($req, 'getIPFromHeaderValue');
|
|
|
|
$reflectionMethod->setAccessible(true);
|
2016-03-01 12:56:34 +00:00
|
|
|
|
2020-04-20 18:58:09 +01:00
|
|
|
$headers = [
|
2016-12-16 17:34:21 +13:00
|
|
|
'80.79.208.21, 149.126.76.1, 10.51.0.68' => '80.79.208.21',
|
|
|
|
'52.19.19.103, 10.51.0.49' => '52.19.19.103',
|
|
|
|
'10.51.0.49, 52.19.19.103' => '52.19.19.103',
|
|
|
|
'10.51.0.49' => '10.51.0.49',
|
|
|
|
'127.0.0.1, 10.51.0.49' => '127.0.0.1',
|
2020-04-20 18:58:09 +01:00
|
|
|
];
|
2016-03-01 12:56:34 +00:00
|
|
|
|
2016-12-16 17:34:21 +13:00
|
|
|
foreach ($headers as $header => $ip) {
|
|
|
|
$this->assertEquals($ip, $reflectionMethod->invoke($req, $header));
|
|
|
|
}
|
|
|
|
}
|
2019-08-02 11:29:23 +12:00
|
|
|
|
|
|
|
public function testHasSession()
|
|
|
|
{
|
|
|
|
$request = new HTTPRequest('GET', '/');
|
|
|
|
$this->assertFalse($request->hasSession());
|
|
|
|
|
|
|
|
$request->setSession($this->createMock(Session::class));
|
|
|
|
$this->assertTrue($request->hasSession());
|
|
|
|
}
|
2011-12-23 11:04:44 +13:00
|
|
|
}
|