2017-02-18 08:52:16 +03:00
|
|
|
# frozen_string_literal: true
|
2008-08-27 09:49:28 +04:00
|
|
|
require 'test/unit'
|
|
|
|
require 'cgi'
|
|
|
|
require 'stringio'
|
2015-03-12 17:57:33 +03:00
|
|
|
require_relative 'update_env'
|
2008-08-27 09:49:28 +04:00
|
|
|
|
|
|
|
|
|
|
|
class CGICoreTest < Test::Unit::TestCase
|
2015-03-12 17:57:33 +03:00
|
|
|
include UpdateEnv
|
2008-08-27 09:49:28 +04:00
|
|
|
|
|
|
|
def setup
|
2015-03-12 17:57:33 +03:00
|
|
|
@environ = {}
|
2008-08-27 09:49:28 +04:00
|
|
|
#@environ = {
|
|
|
|
# 'SERVER_PROTOCOL' => 'HTTP/1.1',
|
|
|
|
# 'REQUEST_METHOD' => 'GET',
|
|
|
|
# 'SERVER_SOFTWARE' => 'Apache 2.2.0',
|
|
|
|
#}
|
|
|
|
#ENV.update(@environ)
|
|
|
|
end
|
|
|
|
|
|
|
|
def teardown
|
2015-03-12 17:57:33 +03:00
|
|
|
ENV.update(@environ)
|
2008-08-27 09:49:28 +04:00
|
|
|
$stdout = STDOUT
|
|
|
|
end
|
|
|
|
|
2008-09-28 18:55:59 +04:00
|
|
|
def test_cgi_parse_illegal_query
|
2015-03-12 17:57:33 +03:00
|
|
|
update_env(
|
2008-09-28 18:55:59 +04:00
|
|
|
'REQUEST_METHOD' => 'GET',
|
|
|
|
'QUERY_STRING' => 'a=111&&b=222&c&d=',
|
|
|
|
'HTTP_COOKIE' => '_session_id=12345; name1=val1&val2;',
|
|
|
|
'SERVER_SOFTWARE' => 'Apache 2.2.0',
|
|
|
|
'SERVER_PROTOCOL' => 'HTTP/1.1',
|
2015-03-12 17:57:33 +03:00
|
|
|
)
|
2008-09-28 18:55:59 +04:00
|
|
|
cgi = CGI.new
|
2014-08-09 05:19:18 +04:00
|
|
|
assert_equal(["a","b","c","d"],cgi.keys.sort)
|
2008-09-28 18:55:59 +04:00
|
|
|
assert_equal("",cgi["d"])
|
|
|
|
end
|
2008-08-27 09:49:28 +04:00
|
|
|
|
|
|
|
def test_cgi_core_params_GET
|
2015-03-12 17:57:33 +03:00
|
|
|
update_env(
|
2008-08-27 09:49:28 +04:00
|
|
|
'REQUEST_METHOD' => 'GET',
|
2012-07-04 08:42:32 +04:00
|
|
|
'QUERY_STRING' => 'id=123&id=456&id=&id&str=%40h+%3D%7E+%2F%5E%24%2F',
|
2008-08-27 09:49:28 +04:00
|
|
|
'HTTP_COOKIE' => '_session_id=12345; name1=val1&val2;',
|
|
|
|
'SERVER_SOFTWARE' => 'Apache 2.2.0',
|
|
|
|
'SERVER_PROTOCOL' => 'HTTP/1.1',
|
2015-03-12 17:57:33 +03:00
|
|
|
)
|
2008-08-27 09:49:28 +04:00
|
|
|
cgi = CGI.new
|
|
|
|
## cgi[]
|
|
|
|
assert_equal('123', cgi['id'])
|
|
|
|
assert_equal('@h =~ /^$/', cgi['str'])
|
|
|
|
## cgi.params
|
|
|
|
assert_equal(['123', '456', ''], cgi.params['id'])
|
|
|
|
assert_equal(['@h =~ /^$/'], cgi.params['str'])
|
|
|
|
## cgi.keys
|
|
|
|
assert_equal(['id', 'str'], cgi.keys.sort)
|
|
|
|
## cgi.key?, cgi.has_key?, cgi.include?
|
|
|
|
assert_equal(true, cgi.key?('id'))
|
|
|
|
assert_equal(true, cgi.has_key?('id'))
|
|
|
|
assert_equal(true, cgi.include?('id'))
|
|
|
|
assert_equal(false, cgi.key?('foo'))
|
|
|
|
assert_equal(false, cgi.has_key?('foo'))
|
|
|
|
assert_equal(false, cgi.include?('foo'))
|
|
|
|
## invalid parameter name
|
|
|
|
assert_equal('', cgi['*notfound*']) # [ruby-dev:30740]
|
|
|
|
assert_equal([], cgi.params['*notfound*'])
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
|
|
def test_cgi_core_params_POST
|
|
|
|
query_str = 'id=123&id=456&id=&str=%40h+%3D%7E+%2F%5E%24%2F'
|
2015-03-12 17:57:33 +03:00
|
|
|
update_env(
|
2008-08-27 09:49:28 +04:00
|
|
|
'REQUEST_METHOD' => 'POST',
|
|
|
|
'CONTENT_LENGTH' => query_str.length.to_s,
|
|
|
|
'HTTP_COOKIE' => '_session_id=12345; name1=val1&val2;',
|
|
|
|
'SERVER_SOFTWARE' => 'Apache 2.2.0',
|
|
|
|
'SERVER_PROTOCOL' => 'HTTP/1.1',
|
2015-03-12 17:57:33 +03:00
|
|
|
)
|
2008-08-27 09:49:28 +04:00
|
|
|
$stdin = StringIO.new
|
|
|
|
$stdin << query_str
|
|
|
|
$stdin.rewind
|
|
|
|
cgi = CGI.new
|
|
|
|
## cgi[]
|
|
|
|
assert_equal('123', cgi['id'])
|
|
|
|
assert_equal('@h =~ /^$/', cgi['str'])
|
|
|
|
## cgi.params
|
|
|
|
assert_equal(['123', '456', ''], cgi.params['id'])
|
|
|
|
assert_equal(['@h =~ /^$/'], cgi.params['str'])
|
|
|
|
## invalid parameter name
|
|
|
|
assert_equal('', cgi['*notfound*'])
|
|
|
|
assert_equal([], cgi.params['*notfound*'])
|
2020-03-02 07:13:24 +03:00
|
|
|
ensure
|
|
|
|
$stdin = STDIN
|
2008-08-27 09:49:28 +04:00
|
|
|
end
|
|
|
|
|
2008-09-24 18:27:53 +04:00
|
|
|
def test_cgi_core_params_encoding_check
|
|
|
|
query_str = 'str=%BE%BE%B9%BE'
|
2015-03-12 17:57:33 +03:00
|
|
|
update_env(
|
2008-09-24 18:27:53 +04:00
|
|
|
'REQUEST_METHOD' => 'POST',
|
|
|
|
'CONTENT_LENGTH' => query_str.length.to_s,
|
|
|
|
'SERVER_SOFTWARE' => 'Apache 2.2.0',
|
|
|
|
'SERVER_PROTOCOL' => 'HTTP/1.1',
|
2015-03-12 17:57:33 +03:00
|
|
|
)
|
2008-09-24 18:27:53 +04:00
|
|
|
$stdin = StringIO.new
|
|
|
|
$stdin << query_str
|
|
|
|
$stdin.rewind
|
2009-12-23 03:14:48 +03:00
|
|
|
if defined?(::Encoding)
|
2008-09-24 18:27:53 +04:00
|
|
|
hash={}
|
|
|
|
cgi = CGI.new(:accept_charset=>"UTF-8"){|key,val|hash[key]=val}
|
|
|
|
## cgi[]
|
2017-02-18 08:52:16 +03:00
|
|
|
assert_equal("\xBE\xBE\xB9\xBE".dup.force_encoding("UTF-8"), cgi['str'])
|
2008-09-24 18:27:53 +04:00
|
|
|
## cgi.params
|
2017-02-18 08:52:16 +03:00
|
|
|
assert_equal(["\xBE\xBE\xB9\xBE".dup.force_encoding("UTF-8")], cgi.params['str'])
|
2008-09-24 18:27:53 +04:00
|
|
|
## accept-charset error
|
2017-02-18 08:52:16 +03:00
|
|
|
assert_equal({"str"=>"\xBE\xBE\xB9\xBE".dup.force_encoding("UTF-8")},hash)
|
2008-09-24 18:27:53 +04:00
|
|
|
|
|
|
|
$stdin.rewind
|
2009-03-06 06:56:38 +03:00
|
|
|
assert_raise(CGI::InvalidEncoding) do
|
2008-09-24 18:27:53 +04:00
|
|
|
cgi = CGI.new(:accept_charset=>"UTF-8")
|
|
|
|
end
|
|
|
|
|
|
|
|
$stdin.rewind
|
|
|
|
cgi = CGI.new(:accept_charset=>"EUC-JP")
|
|
|
|
## cgi[]
|
2017-02-18 08:52:16 +03:00
|
|
|
assert_equal("\xBE\xBE\xB9\xBE".dup.force_encoding("EUC-JP"), cgi['str'])
|
2008-09-24 18:27:53 +04:00
|
|
|
## cgi.params
|
2017-02-18 08:52:16 +03:00
|
|
|
assert_equal(["\xBE\xBE\xB9\xBE".dup.force_encoding("EUC-JP")], cgi.params['str'])
|
2008-09-24 18:27:53 +04:00
|
|
|
else
|
|
|
|
assert(true)
|
|
|
|
end
|
2020-03-02 07:13:24 +03:00
|
|
|
ensure
|
|
|
|
$stdin = STDIN
|
2008-09-24 18:27:53 +04:00
|
|
|
end
|
|
|
|
|
2008-08-27 09:49:28 +04:00
|
|
|
|
|
|
|
def test_cgi_core_cookie
|
2015-03-12 17:57:33 +03:00
|
|
|
update_env(
|
2008-08-27 09:49:28 +04:00
|
|
|
'REQUEST_METHOD' => 'GET',
|
|
|
|
'QUERY_STRING' => 'id=123&id=456&id=&str=%40h+%3D%7E+%2F%5E%24%2F',
|
|
|
|
'HTTP_COOKIE' => '_session_id=12345; name1=val1&val2;',
|
|
|
|
'SERVER_SOFTWARE' => 'Apache 2.2.0',
|
|
|
|
'SERVER_PROTOCOL' => 'HTTP/1.1',
|
2015-03-12 17:57:33 +03:00
|
|
|
)
|
2008-08-27 09:49:28 +04:00
|
|
|
cgi = CGI.new
|
2008-09-24 18:43:05 +04:00
|
|
|
assert_not_equal(nil,cgi.cookies)
|
2008-08-27 09:49:28 +04:00
|
|
|
[ ['_session_id', ['12345'], ],
|
|
|
|
['name1', ['val1', 'val2'], ],
|
|
|
|
].each do |key, expected|
|
|
|
|
cookie = cgi.cookies[key]
|
|
|
|
assert_kind_of(CGI::Cookie, cookie)
|
|
|
|
assert_equal(expected, cookie.value)
|
|
|
|
assert_equal(false, cookie.secure)
|
|
|
|
assert_nil(cookie.expires)
|
|
|
|
assert_nil(cookie.domain)
|
|
|
|
assert_equal('', cookie.path)
|
|
|
|
end
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
|
|
def test_cgi_core_maxcontentlength
|
2015-03-12 17:57:33 +03:00
|
|
|
update_env(
|
2008-08-27 09:49:28 +04:00
|
|
|
'REQUEST_METHOD' => 'POST',
|
|
|
|
'CONTENT_LENGTH' => (64 * 1024 * 1024).to_s
|
2015-03-12 17:57:33 +03:00
|
|
|
)
|
2008-09-24 18:43:05 +04:00
|
|
|
ex = assert_raise(StandardError) do
|
2012-07-25 04:19:09 +04:00
|
|
|
CGI.new
|
2008-08-27 09:49:28 +04:00
|
|
|
end
|
|
|
|
assert_equal("too large post data.", ex.message)
|
|
|
|
end if CGI.const_defined?(:MAX_CONTENT_LENGTH)
|
|
|
|
|
|
|
|
|
|
|
|
def test_cgi_core_out
|
2015-03-12 17:57:33 +03:00
|
|
|
update_env(
|
2008-08-27 09:49:28 +04:00
|
|
|
'REQUEST_METHOD' => 'GET',
|
|
|
|
'QUERY_STRING' => 'id=123&id=456&id=&str=%40h+%3D%7E+%2F%5E%24%2F',
|
|
|
|
'HTTP_COOKIE' => '_session_id=12345; name1=val1&val2;',
|
|
|
|
'SERVER_SOFTWARE' => 'Apache 2.2.0',
|
|
|
|
'SERVER_PROTOCOL' => 'HTTP/1.1',
|
2015-03-12 17:57:33 +03:00
|
|
|
)
|
2008-08-27 09:49:28 +04:00
|
|
|
cgi = CGI.new
|
2014-08-09 05:19:18 +04:00
|
|
|
## euc string
|
2008-08-27 09:49:28 +04:00
|
|
|
euc_str = "\270\253\244\355\241\242\277\315\244\254\245\264\245\337\244\316\244\350\244\246\244\300"
|
|
|
|
## utf8 (not converted)
|
|
|
|
options = { 'charset'=>'utf8' }
|
|
|
|
$stdout = StringIO.new
|
|
|
|
cgi.out(options) { euc_str }
|
|
|
|
assert_nil(options['language'])
|
|
|
|
actual = $stdout.string
|
|
|
|
expected = "Content-Type: text/html; charset=utf8\r\n" +
|
|
|
|
"Content-Length: 22\r\n" +
|
|
|
|
"\r\n" +
|
|
|
|
euc_str
|
2009-12-23 03:14:48 +03:00
|
|
|
if defined?(::Encoding)
|
2008-08-27 09:49:28 +04:00
|
|
|
actual.force_encoding("ASCII-8BIT")
|
|
|
|
expected.force_encoding("ASCII-8BIT")
|
|
|
|
end
|
|
|
|
assert_equal(expected, actual)
|
|
|
|
## language is keeped
|
|
|
|
options = { 'charset'=>'Shift_JIS', 'language'=>'en' }
|
|
|
|
$stdout = StringIO.new
|
|
|
|
cgi.out(options) { euc_str }
|
|
|
|
assert_equal('en', options['language'])
|
|
|
|
## HEAD method
|
2015-03-12 17:57:33 +03:00
|
|
|
update_env('REQUEST_METHOD' => 'HEAD')
|
2008-08-27 09:49:28 +04:00
|
|
|
options = { 'charset'=>'utf8' }
|
|
|
|
$stdout = StringIO.new
|
|
|
|
cgi.out(options) { euc_str }
|
|
|
|
actual = $stdout.string
|
|
|
|
expected = "Content-Type: text/html; charset=utf8\r\n" +
|
|
|
|
"Content-Length: 22\r\n" +
|
|
|
|
"\r\n"
|
|
|
|
assert_equal(expected, actual)
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
|
|
def test_cgi_core_print
|
2015-03-12 17:57:33 +03:00
|
|
|
update_env(
|
2008-08-27 09:49:28 +04:00
|
|
|
'REQUEST_METHOD' => 'GET',
|
2015-03-12 17:57:33 +03:00
|
|
|
)
|
2008-08-27 09:49:28 +04:00
|
|
|
cgi = CGI.new
|
|
|
|
$stdout = StringIO.new
|
|
|
|
str = "foobar"
|
|
|
|
cgi.print(str)
|
|
|
|
expected = str
|
|
|
|
actual = $stdout.string
|
|
|
|
assert_equal(expected, actual)
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
|
|
def test_cgi_core_environs
|
2015-03-12 17:57:33 +03:00
|
|
|
update_env(
|
2008-08-27 09:49:28 +04:00
|
|
|
'REQUEST_METHOD' => 'GET',
|
2015-03-12 17:57:33 +03:00
|
|
|
)
|
2008-08-27 09:49:28 +04:00
|
|
|
cgi = CGI.new
|
|
|
|
##
|
|
|
|
list1 = %w[ AUTH_TYPE CONTENT_TYPE GATEWAY_INTERFACE PATH_INFO
|
|
|
|
PATH_TRANSLATED QUERY_STRING REMOTE_ADDR REMOTE_HOST
|
|
|
|
REMOTE_IDENT REMOTE_USER REQUEST_METHOD SCRIPT_NAME
|
|
|
|
SERVER_NAME SERVER_PROTOCOL SERVER_SOFTWARE
|
|
|
|
HTTP_ACCEPT HTTP_ACCEPT_CHARSET HTTP_ACCEPT_ENCODING
|
|
|
|
HTTP_ACCEPT_LANGUAGE HTTP_CACHE_CONTROL HTTP_FROM HTTP_HOST
|
|
|
|
HTTP_NEGOTIATE HTTP_PRAGMA HTTP_REFERER HTTP_USER_AGENT
|
|
|
|
]
|
2012-07-25 04:19:09 +04:00
|
|
|
# list2 = %w[ CONTENT_LENGTH SERVER_PORT ]
|
2008-08-27 09:49:28 +04:00
|
|
|
## string expected
|
|
|
|
list1.each do |name|
|
2015-03-12 17:57:33 +03:00
|
|
|
update_env(name => "**#{name}**")
|
2008-08-27 09:49:28 +04:00
|
|
|
end
|
|
|
|
list1.each do |name|
|
|
|
|
method = name.sub(/\AHTTP_/, '').downcase
|
|
|
|
actual = cgi.__send__ method
|
|
|
|
expected = "**#{name}**"
|
|
|
|
assert_equal(expected, actual)
|
|
|
|
end
|
|
|
|
## integer expected
|
2015-03-12 17:57:33 +03:00
|
|
|
update_env('CONTENT_LENGTH' => '123')
|
|
|
|
update_env('SERVER_PORT' => '8080')
|
2008-08-27 09:49:28 +04:00
|
|
|
assert_equal(123, cgi.content_length)
|
|
|
|
assert_equal(8080, cgi.server_port)
|
|
|
|
## raw cookie
|
2015-03-12 17:57:33 +03:00
|
|
|
update_env('HTTP_COOKIE' => 'name1=val1')
|
|
|
|
update_env('HTTP_COOKIE2' => 'name2=val2')
|
2008-08-27 09:49:28 +04:00
|
|
|
assert_equal('name1=val1', cgi.raw_cookie)
|
|
|
|
assert_equal('name2=val2', cgi.raw_cookie2)
|
|
|
|
end
|
|
|
|
|
|
|
|
|
2012-11-08 10:56:17 +04:00
|
|
|
def test_cgi_core_htmltype_header
|
2015-03-12 17:57:33 +03:00
|
|
|
update_env(
|
2008-08-27 09:49:28 +04:00
|
|
|
'REQUEST_METHOD' => 'GET',
|
2015-03-12 17:57:33 +03:00
|
|
|
)
|
2008-08-27 09:49:28 +04:00
|
|
|
## no htmltype
|
|
|
|
cgi = CGI.new
|
2008-09-24 18:43:05 +04:00
|
|
|
assert_raise(NoMethodError) do cgi.doctype end
|
2012-11-08 10:56:17 +04:00
|
|
|
assert_equal("Content-Type: text/html\r\n\r\n",cgi.header)
|
2008-08-27 09:49:28 +04:00
|
|
|
## html3
|
|
|
|
cgi = CGI.new('html3')
|
|
|
|
expected = '<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2 Final//EN">'
|
|
|
|
assert_equal(expected, cgi.doctype)
|
2012-11-08 10:56:17 +04:00
|
|
|
assert_equal("Content-Type: text/html\r\n\r\n",cgi.header)
|
2008-08-27 09:49:28 +04:00
|
|
|
## html4
|
|
|
|
cgi = CGI.new('html4')
|
|
|
|
expected = '<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR/html4/strict.dtd">'
|
|
|
|
assert_equal(expected, cgi.doctype)
|
2012-11-08 10:56:17 +04:00
|
|
|
assert_equal("Content-Type: text/html\r\n\r\n",cgi.header)
|
2008-08-27 09:49:28 +04:00
|
|
|
## html4 transitional
|
|
|
|
cgi = CGI.new('html4Tr')
|
|
|
|
expected = '<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">'
|
|
|
|
assert_equal(expected, cgi.doctype)
|
2012-11-08 10:56:17 +04:00
|
|
|
assert_equal("Content-Type: text/html\r\n\r\n",cgi.header)
|
2008-08-27 09:49:28 +04:00
|
|
|
## html4 frameset
|
|
|
|
cgi = CGI.new('html4Fr')
|
|
|
|
expected = '<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Frameset//EN" "http://www.w3.org/TR/html4/frameset.dtd">'
|
|
|
|
assert_equal(expected, cgi.doctype)
|
2012-11-08 10:56:17 +04:00
|
|
|
assert_equal("Content-Type: text/html\r\n\r\n",cgi.header)
|
2012-10-04 06:20:55 +04:00
|
|
|
## html5
|
|
|
|
cgi = CGI.new('html5')
|
|
|
|
expected = '<!DOCTYPE HTML>'
|
|
|
|
assert_equal(expected, cgi.doctype)
|
2012-11-08 10:56:17 +04:00
|
|
|
assert_match(/^<HEADER><\/HEADER>$/i,cgi.header)
|
2008-08-27 09:49:28 +04:00
|
|
|
end
|
|
|
|
|
|
|
|
|
|
|
|
instance_methods.each do |method|
|
|
|
|
private method if method =~ /^test_(.*)/ && $1 != ENV['TEST']
|
|
|
|
end if ENV['TEST']
|
|
|
|
|
|
|
|
end
|