instiki/vendor/rails/actionpack/test/controller/cookie_test.rb

require 'abstract_unit'

class CookieTest < ActionController::TestCase
  class TestController < ActionController::Base
    def authenticate
      cookies["user_name"] = "david"
    end

    def set_with_with_escapable_characters
      cookies["that & guy"] = "foo & bar => baz"
    end

    def authenticate_for_fourteen_days
      cookies["user_name"] = { "value" => "david", "expires" => Time.utc(2005, 10, 10,5) }
    end

    def authenticate_for_fourteen_days_with_symbols
      cookies[:user_name] = { :value => "david", :expires => Time.utc(2005, 10, 10,5) }
    end

    def set_multiple_cookies
      cookies["user_name"] = { "value" => "david", "expires" => Time.utc(2005, 10, 10,5) }
      cookies["login"]     = "XJ-122"
    end

    def access_frozen_cookies
      cookies["will"] = "work"
    end

    def logout
      cookies.delete("user_name")
    end

    def delete_cookie_with_path
      cookies.delete("user_name", :path => '/beaten')
      render :text => "hello world"
    end

    def authenticate_with_http_only
      cookies["user_name"] = { :value => "david", :httponly => true }
    end

    def rescue_action(e)
      raise unless ActionView::MissingTemplate # No templates here, and we don't care about the output
    end
  end

  tests TestController

  def setup
    @request.host = "www.nextangle.com"
  end

  def test_setting_cookie
    get :authenticate
    assert_equal ["user_name=david; path=/"], @response.headers["Set-Cookie"]
    assert_equal({"user_name" => "david"}, @response.cookies)
  end

  def test_setting_with_escapable_characters
    get :set_with_with_escapable_characters
    assert_equal ["that+%26+guy=foo+%26+bar+%3D%3E+baz; path=/"], @response.headers["Set-Cookie"]
    assert_equal({"that & guy" => "foo & bar => baz"}, @response.cookies)
  end

  def test_setting_cookie_for_fourteen_days
    get :authenticate_for_fourteen_days
    assert_equal ["user_name=david; path=/; expires=Mon, 10-Oct-2005 05:00:00 GMT"], @response.headers["Set-Cookie"]
    assert_equal({"user_name" => "david"}, @response.cookies)
  end

  def test_setting_cookie_for_fourteen_days_with_symbols
    get :authenticate_for_fourteen_days_with_symbols
    assert_equal ["user_name=david; path=/; expires=Mon, 10-Oct-2005 05:00:00 GMT"], @response.headers["Set-Cookie"]
    assert_equal({"user_name" => "david"}, @response.cookies)
  end

  def test_setting_cookie_with_http_only
    get :authenticate_with_http_only
    assert_equal ["user_name=david; path=/; HttpOnly"], @response.headers["Set-Cookie"]
    assert_equal({"user_name" => "david"}, @response.cookies)
  end

  def test_multiple_cookies
    get :set_multiple_cookies
    assert_equal 2, @response.cookies.size
    assert_equal "user_name=david; path=/; expires=Mon, 10-Oct-2005 05:00:00 GMT", @response.headers["Set-Cookie"][0]
    assert_equal "login=XJ-122; path=/", @response.headers["Set-Cookie"][1]
    assert_equal({"login" => "XJ-122", "user_name" => "david"}, @response.cookies)
  end

  def test_setting_test_cookie
    assert_nothing_raised { get :access_frozen_cookies }
  end

  def test_expiring_cookie
    get :logout
    assert_equal ["user_name=; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT"], @response.headers["Set-Cookie"]
    assert_equal({"user_name" => nil}, @response.cookies)
  end

  def test_cookiejar_accessor
    @request.cookies["user_name"] = "david"
    @controller.request = @request
    jar = ActionController::CookieJar.new(@controller)
    assert_equal "david", jar["user_name"]
    assert_equal nil, jar["something_else"]
  end

  def test_cookiejar_accessor_with_array_value
    @request.cookies["pages"] = %w{1 2 3}
    @controller.request = @request
    jar = ActionController::CookieJar.new(@controller)
    assert_equal %w{1 2 3}, jar["pages"]
  end

  def test_cookiejar_delete_removes_item_and_returns_its_value
    @request.cookies["user_name"] = "david"
    @controller.response = @response
    jar = ActionController::CookieJar.new(@controller)
    assert_equal "david", jar.delete("user_name")
  end

  def test_delete_cookie_with_path
    get :delete_cookie_with_path
    assert_equal ["user_name=; path=/beaten; expires=Thu, 01-Jan-1970 00:00:00 GMT"], @response.headers["Set-Cookie"]
  end

  def test_cookies_persist_throughout_request
    get :authenticate
    cookies = @controller.send(:cookies)
    assert_equal 'david', cookies['user_name']
  end
end
Rails 2.1 RC1 Updated Instiki to Rails 2.1 RC1 (aka 2.0.991). 2008-05-18 06:22:34 +02:00			`require 'abstract_unit'`
Checkout of Instiki Trunk 1/21/2007. 2007-01-22 14:43:50 +01:00
Instiki 0.16.3: Rails 2.3.0 Instiki now runs on the Rails 2.3.0 Candidate Release. Among other improvements, this means that it now automagically selects between WEBrick and Mongrel. Just run ./instiki --daemon 2009-02-04 21:26:08 +01:00			`class CookieTest < ActionController::TestCase`
Checkout of Instiki Trunk 1/21/2007. 2007-01-22 14:43:50 +01:00			`class TestController < ActionController::Base`
			`def authenticate`
			`cookies["user_name"] = "david"`
			`end`

Rails 2.3.3.1 Update to latest Rails. A little bit of jiggery-pokery is involved, since they neglected to re-include vendored Rack in this release. 2009-08-04 17:16:03 +02:00			`def set_with_with_escapable_characters`
			`cookies["that & guy"] = "foo & bar => baz"`
			`end`

Upgrade to Rails 2.0.2 Upgraded to Rails 2.0.2, except that we maintain vendor/rails/actionpack/lib/action_controller/routing.rb from Rail 1.2.6 (at least for now), so that Routes don't change. We still get to enjoy Rails's many new features. Also fixed a bug in Chunk-handling: disable WikiWord processing in tags (for real this time). 2007-12-21 08:48:59 +01:00			`def authenticate_for_fourteen_days`
Instiki 0.16.3: Rails 2.3.0 Instiki now runs on the Rails 2.3.0 Candidate Release. Among other improvements, this means that it now automagically selects between WEBrick and Mongrel. Just run ./instiki --daemon 2009-02-04 21:26:08 +01:00			`cookies["user_name"] = { "value" => "david", "expires" => Time.utc(2005, 10, 10,5) }`
Checkout of Instiki Trunk 1/21/2007. 2007-01-22 14:43:50 +01:00			`end`

Upgrade to Rails 2.0.2 Upgraded to Rails 2.0.2, except that we maintain vendor/rails/actionpack/lib/action_controller/routing.rb from Rail 1.2.6 (at least for now), so that Routes don't change. We still get to enjoy Rails's many new features. Also fixed a bug in Chunk-handling: disable WikiWord processing in tags (for real this time). 2007-12-21 08:48:59 +01:00			`def authenticate_for_fourteen_days_with_symbols`
Instiki 0.16.3: Rails 2.3.0 Instiki now runs on the Rails 2.3.0 Candidate Release. Among other improvements, this means that it now automagically selects between WEBrick and Mongrel. Just run ./instiki --daemon 2009-02-04 21:26:08 +01:00			`cookies[:user_name] = { :value => "david", :expires => Time.utc(2005, 10, 10,5) }`
Checkout of Instiki Trunk 1/21/2007. 2007-01-22 14:43:50 +01:00			`end`

			`def set_multiple_cookies`
Instiki 0.16.3: Rails 2.3.0 Instiki now runs on the Rails 2.3.0 Candidate Release. Among other improvements, this means that it now automagically selects between WEBrick and Mongrel. Just run ./instiki --daemon 2009-02-04 21:26:08 +01:00			`cookies["user_name"] = { "value" => "david", "expires" => Time.utc(2005, 10, 10,5) }`
Checkout of Instiki Trunk 1/21/2007. 2007-01-22 14:43:50 +01:00			`cookies["login"] = "XJ-122"`
			`end`
Instiki 0.16.3: Rails 2.3.0 Instiki now runs on the Rails 2.3.0 Candidate Release. Among other improvements, this means that it now automagically selects between WEBrick and Mongrel. Just run ./instiki --daemon 2009-02-04 21:26:08 +01:00
Checkout of Instiki Trunk 1/21/2007. 2007-01-22 14:43:50 +01:00			`def access_frozen_cookies`
TeX and CSS tweaks. Sync with latest Instiki Trunk (Updates Rails to 1.2.2) 2007-02-09 09:04:31 +01:00			`cookies["will"] = "work"`
Checkout of Instiki Trunk 1/21/2007. 2007-01-22 14:43:50 +01:00			`end`

TeX and CSS tweaks. Sync with latest Instiki Trunk (Updates Rails to 1.2.2) 2007-02-09 09:04:31 +01:00			`def logout`
			`cookies.delete("user_name")`
			`end`

New Version Sync with Latest Instiki Trunk. Migrate to Rails 1.2.5. Bump version number. 2007-10-15 19:16:54 +02:00			`def delete_cookie_with_path`
			`cookies.delete("user_name", :path => '/beaten')`
Upgrade to Rails 2.0.2 Upgraded to Rails 2.0.2, except that we maintain vendor/rails/actionpack/lib/action_controller/routing.rb from Rail 1.2.6 (at least for now), so that Routes don't change. We still get to enjoy Rails's many new features. Also fixed a bug in Chunk-handling: disable WikiWord processing in tags (for real this time). 2007-12-21 08:48:59 +01:00			`render :text => "hello world"`
			`end`

			`def authenticate_with_http_only`
Bugfixes and Rails Edge Update to Rails 2.3.1. (Actually, not quite. Doesn't look like 2.3.1 will be released today, but I REALLY want to push these bugfixes out.) Removed bundled Rack (Rails 2.3.1 comes bundled with Rack 1.0). Add config.action_view.cache_template_loading = true to production environment. Fix FastCGI bug (http://rubyforge.org/tracker/index.php?func=detail&aid=24191&group_id=186&atid=783). Fix WikiWords bug (http://rubyforge.org/pipermail/instiki-users/2009-February/001181.html). 2009-02-28 02:23:00 +01:00			`cookies["user_name"] = { :value => "david", :httponly => true }`
New Version Sync with Latest Instiki Trunk. Migrate to Rails 1.2.5. Bump version number. 2007-10-15 19:16:54 +02:00			`end`

Instiki 0.16.3: Rails 2.3.0 Instiki now runs on the Rails 2.3.0 Candidate Release. Among other improvements, this means that it now automagically selects between WEBrick and Mongrel. Just run ./instiki --daemon 2009-02-04 21:26:08 +01:00			`def rescue_action(e)`
			`raise unless ActionView::MissingTemplate # No templates here, and we don't care about the output`
TeX and CSS tweaks. Sync with latest Instiki Trunk (Updates Rails to 1.2.2) 2007-02-09 09:04:31 +01:00			`end`
Checkout of Instiki Trunk 1/21/2007. 2007-01-22 14:43:50 +01:00			`end`

Instiki 0.16.3: Rails 2.3.0 Instiki now runs on the Rails 2.3.0 Candidate Release. Among other improvements, this means that it now automagically selects between WEBrick and Mongrel. Just run ./instiki --daemon 2009-02-04 21:26:08 +01:00			`tests TestController`
Checkout of Instiki Trunk 1/21/2007. 2007-01-22 14:43:50 +01:00
Instiki 0.16.3: Rails 2.3.0 Instiki now runs on the Rails 2.3.0 Candidate Release. Among other improvements, this means that it now automagically selects between WEBrick and Mongrel. Just run ./instiki --daemon 2009-02-04 21:26:08 +01:00			`def setup`
Checkout of Instiki Trunk 1/21/2007. 2007-01-22 14:43:50 +01:00			`@request.host = "www.nextangle.com"`
			`end`

			`def test_setting_cookie`
TeX and CSS tweaks. Sync with latest Instiki Trunk (Updates Rails to 1.2.2) 2007-02-09 09:04:31 +01:00			`get :authenticate`
Instiki 0.16.3: Rails 2.3.0 Instiki now runs on the Rails 2.3.0 Candidate Release. Among other improvements, this means that it now automagically selects between WEBrick and Mongrel. Just run ./instiki --daemon 2009-02-04 21:26:08 +01:00			`assert_equal ["user_name=david; path=/"], @response.headers["Set-Cookie"]`
			`assert_equal({"user_name" => "david"}, @response.cookies)`
Checkout of Instiki Trunk 1/21/2007. 2007-01-22 14:43:50 +01:00			`end`

Rails 2.3.3.1 Update to latest Rails. A little bit of jiggery-pokery is involved, since they neglected to re-include vendored Rack in this release. 2009-08-04 17:16:03 +02:00			`def test_setting_with_escapable_characters`
			`get :set_with_with_escapable_characters`
			`assert_equal ["that+%26+guy=foo+%26+bar+%3D%3E+baz; path=/"], @response.headers["Set-Cookie"]`
			`assert_equal({"that & guy" => "foo & bar => baz"}, @response.cookies)`
			`end`

Checkout of Instiki Trunk 1/21/2007. 2007-01-22 14:43:50 +01:00			`def test_setting_cookie_for_fourteen_days`
Upgrade to Rails 2.0.2 Upgraded to Rails 2.0.2, except that we maintain vendor/rails/actionpack/lib/action_controller/routing.rb from Rail 1.2.6 (at least for now), so that Routes don't change. We still get to enjoy Rails's many new features. Also fixed a bug in Chunk-handling: disable WikiWord processing in tags (for real this time). 2007-12-21 08:48:59 +01:00			`get :authenticate_for_fourteen_days`
Instiki 0.16.3: Rails 2.3.0 Instiki now runs on the Rails 2.3.0 Candidate Release. Among other improvements, this means that it now automagically selects between WEBrick and Mongrel. Just run ./instiki --daemon 2009-02-04 21:26:08 +01:00			`assert_equal ["user_name=david; path=/; expires=Mon, 10-Oct-2005 05:00:00 GMT"], @response.headers["Set-Cookie"]`
			`assert_equal({"user_name" => "david"}, @response.cookies)`
Checkout of Instiki Trunk 1/21/2007. 2007-01-22 14:43:50 +01:00			`end`

			`def test_setting_cookie_for_fourteen_days_with_symbols`
Upgrade to Rails 2.2.0 As a side benefit, fix an (non-user-visible) bug in display_s5(). Also fixed a bug where removing orphaned pages did not expire cached summary pages. 2008-10-27 07:47:01 +01:00			`get :authenticate_for_fourteen_days_with_symbols`
Instiki 0.16.3: Rails 2.3.0 Instiki now runs on the Rails 2.3.0 Candidate Release. Among other improvements, this means that it now automagically selects between WEBrick and Mongrel. Just run ./instiki --daemon 2009-02-04 21:26:08 +01:00			`assert_equal ["user_name=david; path=/; expires=Mon, 10-Oct-2005 05:00:00 GMT"], @response.headers["Set-Cookie"]`
			`assert_equal({"user_name" => "david"}, @response.cookies)`
Checkout of Instiki Trunk 1/21/2007. 2007-01-22 14:43:50 +01:00			`end`

Upgrade to Rails 2.0.2 Upgraded to Rails 2.0.2, except that we maintain vendor/rails/actionpack/lib/action_controller/routing.rb from Rail 1.2.6 (at least for now), so that Routes don't change. We still get to enjoy Rails's many new features. Also fixed a bug in Chunk-handling: disable WikiWord processing in tags (for real this time). 2007-12-21 08:48:59 +01:00			`def test_setting_cookie_with_http_only`
			`get :authenticate_with_http_only`
Instiki 0.16.3: Rails 2.3.0 Instiki now runs on the Rails 2.3.0 Candidate Release. Among other improvements, this means that it now automagically selects between WEBrick and Mongrel. Just run ./instiki --daemon 2009-02-04 21:26:08 +01:00			`assert_equal ["user_name=david; path=/; HttpOnly"], @response.headers["Set-Cookie"]`
			`assert_equal({"user_name" => "david"}, @response.cookies)`
Upgrade to Rails 2.0.2 Upgraded to Rails 2.0.2, except that we maintain vendor/rails/actionpack/lib/action_controller/routing.rb from Rail 1.2.6 (at least for now), so that Routes don't change. We still get to enjoy Rails's many new features. Also fixed a bug in Chunk-handling: disable WikiWord processing in tags (for real this time). 2007-12-21 08:48:59 +01:00			`end`

Checkout of Instiki Trunk 1/21/2007. 2007-01-22 14:43:50 +01:00			`def test_multiple_cookies`
TeX and CSS tweaks. Sync with latest Instiki Trunk (Updates Rails to 1.2.2) 2007-02-09 09:04:31 +01:00			`get :set_multiple_cookies`
			`assert_equal 2, @response.cookies.size`
Instiki 0.16.3: Rails 2.3.0 Instiki now runs on the Rails 2.3.0 Candidate Release. Among other improvements, this means that it now automagically selects between WEBrick and Mongrel. Just run ./instiki --daemon 2009-02-04 21:26:08 +01:00			`assert_equal "user_name=david; path=/; expires=Mon, 10-Oct-2005 05:00:00 GMT", @response.headers["Set-Cookie"][0]`
			`assert_equal "login=XJ-122; path=/", @response.headers["Set-Cookie"][1]`
			`assert_equal({"login" => "XJ-122", "user_name" => "david"}, @response.cookies)`
Checkout of Instiki Trunk 1/21/2007. 2007-01-22 14:43:50 +01:00			`end`

			`def test_setting_test_cookie`
TeX and CSS tweaks. Sync with latest Instiki Trunk (Updates Rails to 1.2.2) 2007-02-09 09:04:31 +01:00			`assert_nothing_raised { get :access_frozen_cookies }`
			`end`
Instiki 0.16.3: Rails 2.3.0 Instiki now runs on the Rails 2.3.0 Candidate Release. Among other improvements, this means that it now automagically selects between WEBrick and Mongrel. Just run ./instiki --daemon 2009-02-04 21:26:08 +01:00
TeX and CSS tweaks. Sync with latest Instiki Trunk (Updates Rails to 1.2.2) 2007-02-09 09:04:31 +01:00			`def test_expiring_cookie`
			`get :logout`
Instiki 0.16.3: Rails 2.3.0 Instiki now runs on the Rails 2.3.0 Candidate Release. Among other improvements, this means that it now automagically selects between WEBrick and Mongrel. Just run ./instiki --daemon 2009-02-04 21:26:08 +01:00			`assert_equal ["user_name=; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT"], @response.headers["Set-Cookie"]`
			`assert_equal({"user_name" => nil}, @response.cookies)`
			`end`

TeX and CSS tweaks. Sync with latest Instiki Trunk (Updates Rails to 1.2.2) 2007-02-09 09:04:31 +01:00			`def test_cookiejar_accessor`
Instiki 0.16.3: Rails 2.3.0 Instiki now runs on the Rails 2.3.0 Candidate Release. Among other improvements, this means that it now automagically selects between WEBrick and Mongrel. Just run ./instiki --daemon 2009-02-04 21:26:08 +01:00			`@request.cookies["user_name"] = "david"`
TeX and CSS tweaks. Sync with latest Instiki Trunk (Updates Rails to 1.2.2) 2007-02-09 09:04:31 +01:00			`@controller.request = @request`
			`jar = ActionController::CookieJar.new(@controller)`
			`assert_equal "david", jar["user_name"]`
			`assert_equal nil, jar["something_else"]`
Checkout of Instiki Trunk 1/21/2007. 2007-01-22 14:43:50 +01:00			`end`
New Version Sync with Latest Instiki Trunk. Migrate to Rails 1.2.5. Bump version number. 2007-10-15 19:16:54 +02:00
Upgrade to Rails 2.0.2 Upgraded to Rails 2.0.2, except that we maintain vendor/rails/actionpack/lib/action_controller/routing.rb from Rail 1.2.6 (at least for now), so that Routes don't change. We still get to enjoy Rails's many new features. Also fixed a bug in Chunk-handling: disable WikiWord processing in tags (for real this time). 2007-12-21 08:48:59 +01:00			`def test_cookiejar_accessor_with_array_value`
Instiki 0.16.3: Rails 2.3.0 Instiki now runs on the Rails 2.3.0 Candidate Release. Among other improvements, this means that it now automagically selects between WEBrick and Mongrel. Just run ./instiki --daemon 2009-02-04 21:26:08 +01:00			`@request.cookies["pages"] = %w{1 2 3}`
Upgrade to Rails 2.0.2 Upgraded to Rails 2.0.2, except that we maintain vendor/rails/actionpack/lib/action_controller/routing.rb from Rail 1.2.6 (at least for now), so that Routes don't change. We still get to enjoy Rails's many new features. Also fixed a bug in Chunk-handling: disable WikiWord processing in tags (for real this time). 2007-12-21 08:48:59 +01:00			`@controller.request = @request`
			`jar = ActionController::CookieJar.new(@controller)`
Instiki 0.16.3: Rails 2.3.0 Instiki now runs on the Rails 2.3.0 Candidate Release. Among other improvements, this means that it now automagically selects between WEBrick and Mongrel. Just run ./instiki --daemon 2009-02-04 21:26:08 +01:00			`assert_equal %w{1 2 3}, jar["pages"]`
Upgrade to Rails 2.0.2 Upgraded to Rails 2.0.2, except that we maintain vendor/rails/actionpack/lib/action_controller/routing.rb from Rail 1.2.6 (at least for now), so that Routes don't change. We still get to enjoy Rails's many new features. Also fixed a bug in Chunk-handling: disable WikiWord processing in tags (for real this time). 2007-12-21 08:48:59 +01:00			`end`
Instiki 0.16.3: Rails 2.3.0 Instiki now runs on the Rails 2.3.0 Candidate Release. Among other improvements, this means that it now automagically selects between WEBrick and Mongrel. Just run ./instiki --daemon 2009-02-04 21:26:08 +01:00
Rails 2.3.5 Upgrade to Rails 2.3.5. Also work around this bug: https://rails.lighthouseapp.com/projects/8994/tickets/3524 created by the aforementioned Rails release. 2009-12-01 02:38:34 +01:00			`def test_cookiejar_delete_removes_item_and_returns_its_value`
			`@request.cookies["user_name"] = "david"`
			`@controller.response = @response`
			`jar = ActionController::CookieJar.new(@controller)`
			`assert_equal "david", jar.delete("user_name")`
			`end`

New Version Sync with Latest Instiki Trunk. Migrate to Rails 1.2.5. Bump version number. 2007-10-15 19:16:54 +02:00			`def test_delete_cookie_with_path`
			`get :delete_cookie_with_path`
Instiki 0.16.3: Rails 2.3.0 Instiki now runs on the Rails 2.3.0 Candidate Release. Among other improvements, this means that it now automagically selects between WEBrick and Mongrel. Just run ./instiki --daemon 2009-02-04 21:26:08 +01:00			`assert_equal ["user_name=; path=/beaten; expires=Thu, 01-Jan-1970 00:00:00 GMT"], @response.headers["Set-Cookie"]`
Rails 2.1 Update to Rails 2.1 final. 2008-06-02 08:35:38 +02:00			`end`
Instiki 0.17.2: Security Release This release upgrades Instiki to Rails 2.3.4, which patches two security holes in Rails. See http://weblog.rubyonrails.org/2009/9/4/ruby-on-rails-2-3-4 There are also some new features, and the usual boatload of bugfixes. See the CHANGELOG for details. 2009-09-05 09:01:46 +02:00
			`def test_cookies_persist_throughout_request`
			`get :authenticate`
			`cookies = @controller.send(:cookies)`
			`assert_equal 'david', cookies['user_name']`
			`end`
Checkout of Instiki Trunk 1/21/2007. 2007-01-22 14:43:50 +01:00			`end`