instiki/vendor/rails/actionpack/test/controller/cookie_test.rb

require 'abstract_unit'

class CookieTest < Test::Unit::TestCase
  class TestController < ActionController::Base
    def authenticate
      cookies["user_name"] = "david"
    end

    def authenticate_for_fourteen_days
      cookies["user_name"] = { "value" => "david", "expires" => Time.local(2005, 10, 10) }
    end

    def authenticate_for_fourteen_days_with_symbols
      cookies[:user_name] = { :value => "david", :expires => Time.local(2005, 10, 10) }
    end

    def set_multiple_cookies
      cookies["user_name"] = { "value" => "david", "expires" => Time.local(2005, 10, 10) }
      cookies["login"]     = "XJ-122"
    end
    
    def access_frozen_cookies
      cookies["will"] = "work"
    end

    def logout
      cookies.delete("user_name")
    end

    def delete_cookie_with_path
      cookies.delete("user_name", :path => '/beaten')
      render :text => "hello world"
    end

    def authenticate_with_http_only
      cookies["user_name"] = { :value => "david", :http_only => true }
    end

    def rescue_action(e) 
      raise unless ActionView::MissingTemplate # No templates here, and we don't care about the output 
    end
  end

  def setup
    @request  = ActionController::TestRequest.new
    @response = ActionController::TestResponse.new

    @controller = TestController.new
    @request.host = "www.nextangle.com"
  end

  def test_setting_cookie
    get :authenticate
    assert_equal [ CGI::Cookie::new("name" => "user_name", "value" => "david") ], @response.headers["cookie"]
  end

  def test_setting_cookie_for_fourteen_days
    get :authenticate_for_fourteen_days
    assert_equal [ CGI::Cookie::new("name" => "user_name", "value" => "david", "expires" => Time.local(2005, 10, 10)) ], @response.headers["cookie"]
  end

  def test_setting_cookie_for_fourteen_days_with_symbols
    get :authenticate_for_fourteen_days_with_symbols
    assert_equal [ CGI::Cookie::new("name" => "user_name", "value" => "david", "expires" => Time.local(2005, 10, 10)) ], @response.headers["cookie"]
  end

  def test_setting_cookie_with_http_only
    get :authenticate_with_http_only
    assert_equal [ CGI::Cookie::new("name" => "user_name", "value" => "david", "http_only" => true) ], @response.headers["cookie"]
    assert_equal CGI::Cookie::new("name" => "user_name", "value" => "david", "path" => "/", "http_only" => true).to_s, @response.headers["cookie"][0].to_s
  end

  def test_multiple_cookies
    get :set_multiple_cookies
    assert_equal 2, @response.cookies.size
  end

  def test_setting_test_cookie
    assert_nothing_raised { get :access_frozen_cookies }
  end
  
  def test_expiring_cookie
    get :logout
    assert_equal [ CGI::Cookie::new("name" => "user_name", "value" => "", "expires" => Time.at(0)) ], @response.headers["cookie"]
    assert_equal CGI::Cookie::new("name" => "user_name", "value" => "", "expires" => Time.at(0)).value, []
  end  
  
  def test_cookiejar_accessor
    @request.cookies["user_name"] = CGI::Cookie.new("name" => "user_name", "value" => "david", "expires" => Time.local(2025, 10, 10))
    @controller.request = @request
    jar = ActionController::CookieJar.new(@controller)
    assert_equal "david", jar["user_name"]
    assert_equal nil, jar["something_else"]
  end

  def test_cookiejar_accessor_with_array_value
    a = %w{1 2 3}
    @request.cookies["pages"] = CGI::Cookie.new("name" => "pages", "value" => a, "expires" => Time.local(2025, 10, 10))
    @controller.request = @request
    jar = ActionController::CookieJar.new(@controller)
    assert_equal a, jar["pages"]
  end
  
  def test_delete_cookie_with_path
    get :delete_cookie_with_path
    assert_equal "/beaten", @response.headers["cookie"].first.path
    assert_not_equal "/", @response.headers["cookie"].first.path
  end

  def test_cookie_to_s_simple_values
    assert_equal 'myname=myvalue; path=', CGI::Cookie.new('myname', 'myvalue').to_s
  end

  def test_cookie_to_s_hash
    cookie_str = CGI::Cookie.new(
      'name' => 'myname',
      'value' => 'myvalue',
      'domain' => 'mydomain',
      'path' => 'mypath',
      'expires' => Time.utc(2007, 10, 20),
      'secure' => true,
      'http_only' => true).to_s
    assert_equal 'myname=myvalue; domain=mydomain; path=mypath; expires=Sat, 20 Oct 2007 00:00:00 GMT; secure; HttpOnly', cookie_str
  end

  def test_cookie_to_s_hash_default_not_secure_not_http_only
    cookie_str = CGI::Cookie.new(
      'name' => 'myname',
      'value' => 'myvalue',
      'domain' => 'mydomain',
      'path' => 'mypath',
      'expires' => Time.utc(2007, 10, 20))
    assert cookie_str !~ /secure/
    assert cookie_str !~ /HttpOnly/
  end

  def test_cookies_should_not_be_split_on_ampersand_values
    cookies = CGI::Cookie.parse('return_to=http://rubyonrails.org/search?term=api&scope=all&global=true')
    assert_equal({"return_to" => ["http://rubyonrails.org/search?term=api&scope=all&global=true"]}, cookies)
  end

  def test_cookies_should_not_be_split_on_values_with_newlines
    cookies = CGI::Cookie.new("name" => "val", "value" => "this\nis\na\ntest")
    assert cookies.size == 1
  end
end
Rails 2.1 RC1 Updated Instiki to Rails 2.1 RC1 (aka 2.0.991). 2008-05-18 06:22:34 +02:00			`require 'abstract_unit'`
Checkout of Instiki Trunk 1/21/2007. 2007-01-22 14:43:50 +01:00
			`class CookieTest < Test::Unit::TestCase`
			`class TestController < ActionController::Base`
			`def authenticate`
			`cookies["user_name"] = "david"`
			`end`

Upgrade to Rails 2.0.2 Upgraded to Rails 2.0.2, except that we maintain vendor/rails/actionpack/lib/action_controller/routing.rb from Rail 1.2.6 (at least for now), so that Routes don't change. We still get to enjoy Rails's many new features. Also fixed a bug in Chunk-handling: disable WikiWord processing in tags (for real this time). 2007-12-21 08:48:59 +01:00			`def authenticate_for_fourteen_days`
Checkout of Instiki Trunk 1/21/2007. 2007-01-22 14:43:50 +01:00			`cookies["user_name"] = { "value" => "david", "expires" => Time.local(2005, 10, 10) }`
			`end`

Upgrade to Rails 2.0.2 Upgraded to Rails 2.0.2, except that we maintain vendor/rails/actionpack/lib/action_controller/routing.rb from Rail 1.2.6 (at least for now), so that Routes don't change. We still get to enjoy Rails's many new features. Also fixed a bug in Chunk-handling: disable WikiWord processing in tags (for real this time). 2007-12-21 08:48:59 +01:00			`def authenticate_for_fourteen_days_with_symbols`
Checkout of Instiki Trunk 1/21/2007. 2007-01-22 14:43:50 +01:00			`cookies[:user_name] = { :value => "david", :expires => Time.local(2005, 10, 10) }`
			`end`

			`def set_multiple_cookies`
			`cookies["user_name"] = { "value" => "david", "expires" => Time.local(2005, 10, 10) }`
			`cookies["login"] = "XJ-122"`
			`end`
Upgrade to Rails 2.0.2 Upgraded to Rails 2.0.2, except that we maintain vendor/rails/actionpack/lib/action_controller/routing.rb from Rail 1.2.6 (at least for now), so that Routes don't change. We still get to enjoy Rails's many new features. Also fixed a bug in Chunk-handling: disable WikiWord processing in tags (for real this time). 2007-12-21 08:48:59 +01:00
Checkout of Instiki Trunk 1/21/2007. 2007-01-22 14:43:50 +01:00			`def access_frozen_cookies`
TeX and CSS tweaks. Sync with latest Instiki Trunk (Updates Rails to 1.2.2) 2007-02-09 09:04:31 +01:00			`cookies["will"] = "work"`
Checkout of Instiki Trunk 1/21/2007. 2007-01-22 14:43:50 +01:00			`end`

TeX and CSS tweaks. Sync with latest Instiki Trunk (Updates Rails to 1.2.2) 2007-02-09 09:04:31 +01:00			`def logout`
			`cookies.delete("user_name")`
			`end`

New Version Sync with Latest Instiki Trunk. Migrate to Rails 1.2.5. Bump version number. 2007-10-15 19:16:54 +02:00			`def delete_cookie_with_path`
			`cookies.delete("user_name", :path => '/beaten')`
Upgrade to Rails 2.0.2 Upgraded to Rails 2.0.2, except that we maintain vendor/rails/actionpack/lib/action_controller/routing.rb from Rail 1.2.6 (at least for now), so that Routes don't change. We still get to enjoy Rails's many new features. Also fixed a bug in Chunk-handling: disable WikiWord processing in tags (for real this time). 2007-12-21 08:48:59 +01:00			`render :text => "hello world"`
			`end`

			`def authenticate_with_http_only`
			`cookies["user_name"] = { :value => "david", :http_only => true }`
New Version Sync with Latest Instiki Trunk. Migrate to Rails 1.2.5. Bump version number. 2007-10-15 19:16:54 +02:00			`end`

TeX and CSS tweaks. Sync with latest Instiki Trunk (Updates Rails to 1.2.2) 2007-02-09 09:04:31 +01:00			`def rescue_action(e)`
Rails 2.1 RC1 Updated Instiki to Rails 2.1 RC1 (aka 2.0.991). 2008-05-18 06:22:34 +02:00			`raise unless ActionView::MissingTemplate # No templates here, and we don't care about the output`
TeX and CSS tweaks. Sync with latest Instiki Trunk (Updates Rails to 1.2.2) 2007-02-09 09:04:31 +01:00			`end`
Checkout of Instiki Trunk 1/21/2007. 2007-01-22 14:43:50 +01:00			`end`

			`def setup`
			`@request = ActionController::TestRequest.new`
			`@response = ActionController::TestResponse.new`

TeX and CSS tweaks. Sync with latest Instiki Trunk (Updates Rails to 1.2.2) 2007-02-09 09:04:31 +01:00			`@controller = TestController.new`
Checkout of Instiki Trunk 1/21/2007. 2007-01-22 14:43:50 +01:00			`@request.host = "www.nextangle.com"`
			`end`

			`def test_setting_cookie`
TeX and CSS tweaks. Sync with latest Instiki Trunk (Updates Rails to 1.2.2) 2007-02-09 09:04:31 +01:00			`get :authenticate`
			`assert_equal [ CGI::Cookie::new("name" => "user_name", "value" => "david") ], @response.headers["cookie"]`
Checkout of Instiki Trunk 1/21/2007. 2007-01-22 14:43:50 +01:00			`end`

			`def test_setting_cookie_for_fourteen_days`
Upgrade to Rails 2.0.2 Upgraded to Rails 2.0.2, except that we maintain vendor/rails/actionpack/lib/action_controller/routing.rb from Rail 1.2.6 (at least for now), so that Routes don't change. We still get to enjoy Rails's many new features. Also fixed a bug in Chunk-handling: disable WikiWord processing in tags (for real this time). 2007-12-21 08:48:59 +01:00			`get :authenticate_for_fourteen_days`
TeX and CSS tweaks. Sync with latest Instiki Trunk (Updates Rails to 1.2.2) 2007-02-09 09:04:31 +01:00			`assert_equal [ CGI::Cookie::new("name" => "user_name", "value" => "david", "expires" => Time.local(2005, 10, 10)) ], @response.headers["cookie"]`
Checkout of Instiki Trunk 1/21/2007. 2007-01-22 14:43:50 +01:00			`end`

			`def test_setting_cookie_for_fourteen_days_with_symbols`
Upgrade to Rails 2.2.0 As a side benefit, fix an (non-user-visible) bug in display_s5(). Also fixed a bug where removing orphaned pages did not expire cached summary pages. 2008-10-27 07:47:01 +01:00			`get :authenticate_for_fourteen_days_with_symbols`
TeX and CSS tweaks. Sync with latest Instiki Trunk (Updates Rails to 1.2.2) 2007-02-09 09:04:31 +01:00			`assert_equal [ CGI::Cookie::new("name" => "user_name", "value" => "david", "expires" => Time.local(2005, 10, 10)) ], @response.headers["cookie"]`
Checkout of Instiki Trunk 1/21/2007. 2007-01-22 14:43:50 +01:00			`end`

Upgrade to Rails 2.0.2 Upgraded to Rails 2.0.2, except that we maintain vendor/rails/actionpack/lib/action_controller/routing.rb from Rail 1.2.6 (at least for now), so that Routes don't change. We still get to enjoy Rails's many new features. Also fixed a bug in Chunk-handling: disable WikiWord processing in tags (for real this time). 2007-12-21 08:48:59 +01:00			`def test_setting_cookie_with_http_only`
			`get :authenticate_with_http_only`
			`assert_equal [ CGI::Cookie::new("name" => "user_name", "value" => "david", "http_only" => true) ], @response.headers["cookie"]`
			`assert_equal CGI::Cookie::new("name" => "user_name", "value" => "david", "path" => "/", "http_only" => true).to_s, @response.headers["cookie"][0].to_s`
			`end`

Checkout of Instiki Trunk 1/21/2007. 2007-01-22 14:43:50 +01:00			`def test_multiple_cookies`
TeX and CSS tweaks. Sync with latest Instiki Trunk (Updates Rails to 1.2.2) 2007-02-09 09:04:31 +01:00			`get :set_multiple_cookies`
			`assert_equal 2, @response.cookies.size`
Checkout of Instiki Trunk 1/21/2007. 2007-01-22 14:43:50 +01:00			`end`

			`def test_setting_test_cookie`
TeX and CSS tweaks. Sync with latest Instiki Trunk (Updates Rails to 1.2.2) 2007-02-09 09:04:31 +01:00			`assert_nothing_raised { get :access_frozen_cookies }`
			`end`

			`def test_expiring_cookie`
			`get :logout`
			`assert_equal [ CGI::Cookie::new("name" => "user_name", "value" => "", "expires" => Time.at(0)) ], @response.headers["cookie"]`
Rails 2.1 Update to Rails 2.1 final. 2008-06-02 08:35:38 +02:00			`assert_equal CGI::Cookie::new("name" => "user_name", "value" => "", "expires" => Time.at(0)).value, []`
TeX and CSS tweaks. Sync with latest Instiki Trunk (Updates Rails to 1.2.2) 2007-02-09 09:04:31 +01:00			`end`

			`def test_cookiejar_accessor`
			`@request.cookies["user_name"] = CGI::Cookie.new("name" => "user_name", "value" => "david", "expires" => Time.local(2025, 10, 10))`
			`@controller.request = @request`
			`jar = ActionController::CookieJar.new(@controller)`
			`assert_equal "david", jar["user_name"]`
			`assert_equal nil, jar["something_else"]`
Checkout of Instiki Trunk 1/21/2007. 2007-01-22 14:43:50 +01:00			`end`
New Version Sync with Latest Instiki Trunk. Migrate to Rails 1.2.5. Bump version number. 2007-10-15 19:16:54 +02:00
Upgrade to Rails 2.0.2 Upgraded to Rails 2.0.2, except that we maintain vendor/rails/actionpack/lib/action_controller/routing.rb from Rail 1.2.6 (at least for now), so that Routes don't change. We still get to enjoy Rails's many new features. Also fixed a bug in Chunk-handling: disable WikiWord processing in tags (for real this time). 2007-12-21 08:48:59 +01:00			`def test_cookiejar_accessor_with_array_value`
			`a = %w{1 2 3}`
			`@request.cookies["pages"] = CGI::Cookie.new("name" => "pages", "value" => a, "expires" => Time.local(2025, 10, 10))`
			`@controller.request = @request`
			`jar = ActionController::CookieJar.new(@controller)`
			`assert_equal a, jar["pages"]`
			`end`

New Version Sync with Latest Instiki Trunk. Migrate to Rails 1.2.5. Bump version number. 2007-10-15 19:16:54 +02:00			`def test_delete_cookie_with_path`
			`get :delete_cookie_with_path`
			`assert_equal "/beaten", @response.headers["cookie"].first.path`
			`assert_not_equal "/", @response.headers["cookie"].first.path`
			`end`
Upgrade to Rails 2.0.2 Upgraded to Rails 2.0.2, except that we maintain vendor/rails/actionpack/lib/action_controller/routing.rb from Rail 1.2.6 (at least for now), so that Routes don't change. We still get to enjoy Rails's many new features. Also fixed a bug in Chunk-handling: disable WikiWord processing in tags (for real this time). 2007-12-21 08:48:59 +01:00
			`def test_cookie_to_s_simple_values`
			`assert_equal 'myname=myvalue; path=', CGI::Cookie.new('myname', 'myvalue').to_s`
			`end`

			`def test_cookie_to_s_hash`
			`cookie_str = CGI::Cookie.new(`
			`'name' => 'myname',`
			`'value' => 'myvalue',`
			`'domain' => 'mydomain',`
			`'path' => 'mypath',`
			`'expires' => Time.utc(2007, 10, 20),`
			`'secure' => true,`
			`'http_only' => true).to_s`
			`assert_equal 'myname=myvalue; domain=mydomain; path=mypath; expires=Sat, 20 Oct 2007 00:00:00 GMT; secure; HttpOnly', cookie_str`
			`end`

			`def test_cookie_to_s_hash_default_not_secure_not_http_only`
			`cookie_str = CGI::Cookie.new(`
			`'name' => 'myname',`
			`'value' => 'myvalue',`
			`'domain' => 'mydomain',`
			`'path' => 'mypath',`
			`'expires' => Time.utc(2007, 10, 20))`
			`assert cookie_str !~ /secure/`
			`assert cookie_str !~ /HttpOnly/`
			`end`
Rails 2.1 RC1 Updated Instiki to Rails 2.1 RC1 (aka 2.0.991). 2008-05-18 06:22:34 +02:00
			`def test_cookies_should_not_be_split_on_ampersand_values`
			`cookies = CGI::Cookie.parse('return_to=http://rubyonrails.org/search?term=api&scope=all&global=true')`
			`assert_equal({"return_to" => ["http://rubyonrails.org/search?term=api&scope=all&global=true"]}, cookies)`
			`end`
Rails 2.1 Update to Rails 2.1 final. 2008-06-02 08:35:38 +02:00
			`def test_cookies_should_not_be_split_on_values_with_newlines`
			`cookies = CGI::Cookie.new("name" => "val", "value" => "this\nis\na\ntest")`
			`assert cookies.size == 1`
			`end`
Checkout of Instiki Trunk 1/21/2007. 2007-01-22 14:43:50 +01:00			`end`