source-git / libsoup

Clone
Source Code
GIT

Blame tests/cookies-test.c

c8 c8s master
  1.   c8s
  2.   tests
  3.   cookies-test.c
Blob History Raw
Packit Service ca3877 
/* -*- Mode: C; tab-width: 8; indent-tabs-mode: t; c-basic-offset: 8 -*- */
Packit Service ca3877 
/*
Packit Service ca3877 
 * Copyright (C) 2010 Igalia S.L.
Packit Service ca3877 
 */
Packit Service ca3877
Packit Service ca3877 
#include "test-utils.h"
Packit Service ca3877
Packit Service ca3877 
SoupServer *server;
Packit Service ca3877 
SoupURI *first_party_uri, *third_party_uri;
Packit Service ca3877 
const char *first_party = "http://127.0.0.1/";
Packit Service ca3877 
const char *third_party = "http://localhost/";
Packit Service ca3877
Packit Service ca3877 
static void
Packit Service ca3877 
server_callback (SoupServer *server, SoupMessage *msg,
Packit Service ca3877 
		 const char *path, GHashTable *query,
Packit Service ca3877 
		 SoupClientContext *context, gpointer data)
Packit Service ca3877 
{
Packit Service ca3877 
	if (g_str_equal (path, "/index.html")) {
Packit Service ca3877 
		soup_message_headers_replace (msg->response_headers,
Packit Service ca3877 
					      "Set-Cookie",
Packit Service ca3877 
					      "foo=bar");
Packit Service ca3877 
	} else if (g_str_equal (path, "/foo.jpg")) {
Packit Service ca3877 
		soup_message_headers_replace (msg->response_headers,
Packit Service ca3877 
					      "Set-Cookie",
Packit Service ca3877 
					      "baz=qux");
Packit Service ca3877 
	} else if (soup_message_headers_get_one (msg->request_headers,
Packit Service ca3877 
						 "Echo-Set-Cookie")) {
Packit Service ca3877 
		soup_message_headers_replace (msg->response_headers,
Packit Service ca3877 
					      "Set-Cookie",
Packit Service ca3877 
					      soup_message_headers_get_one (msg->request_headers,
Packit Service ca3877 
									    "Echo-Set-Cookie"));
Packit Service ca3877 
	}
Packit Service ca3877
Packit Service ca3877 
	soup_message_set_status (msg, SOUP_STATUS_OK);
Packit Service ca3877 
}
Packit Service ca3877
Packit Service ca3877 
typedef struct {
Packit Service ca3877 
	SoupCookieJarAcceptPolicy policy;
Packit Service ca3877 
	int n_cookies;
Packit Service ca3877 
} CookiesForPolicy;
Packit Service ca3877
Packit Service ca3877 
static const CookiesForPolicy validResults[] = {
Packit Service ca3877 
	{ SOUP_COOKIE_JAR_ACCEPT_ALWAYS, 2 },
Packit Service ca3877 
	{ SOUP_COOKIE_JAR_ACCEPT_NEVER, 0 },
Packit Service ca3877 
	{ SOUP_COOKIE_JAR_ACCEPT_NO_THIRD_PARTY, 1 }
Packit Service ca3877 
};
Packit Service ca3877
Packit Service ca3877 
static void
Packit Service ca3877 
do_cookies_accept_policy_test (void)
Packit Service ca3877 
{
Packit Service ca3877 
	SoupSession *session;
Packit Service ca3877 
	SoupMessage *msg;
Packit Service ca3877 
	SoupURI *uri;
Packit Service ca3877 
	SoupCookieJar *jar;
Packit Service ca3877 
	GSList *l, *p;
Packit Service ca3877 
	int i;
Packit Service ca3877
Packit Service ca3877 
	session = soup_test_session_new (SOUP_TYPE_SESSION_ASYNC, NULL);
Packit Service ca3877 
	soup_session_add_feature_by_type (session, SOUP_TYPE_COOKIE_JAR);
Packit Service ca3877 
	jar = SOUP_COOKIE_JAR (soup_session_get_feature (session, SOUP_TYPE_COOKIE_JAR));
Packit Service ca3877
Packit Service ca3877 
	for (i = 0; i < G_N_ELEMENTS (validResults); i++) {
Packit Service ca3877 
		soup_cookie_jar_set_accept_policy (jar, validResults[i].policy);
Packit Service ca3877
Packit Service ca3877 
		uri = soup_uri_new_with_base (first_party_uri, "/index.html");
Packit Service ca3877 
		msg = soup_message_new_from_uri ("GET", uri);
Packit Service ca3877 
		soup_message_set_first_party (msg, first_party_uri);
Packit Service ca3877 
		soup_session_send_message (session, msg);
Packit Service ca3877 
		soup_uri_free (uri);
Packit Service ca3877 
		g_object_unref (msg);
Packit Service ca3877
Packit Service ca3877 
		/* We can't use two servers due to limitations in
Packit Service ca3877 
		 * test_server, so let's swap first and third party here
Packit Service ca3877 
		 * to simulate a cookie coming from a third party.
Packit Service ca3877 
		 */
Packit Service ca3877 
		uri = soup_uri_new_with_base (first_party_uri, "/foo.jpg");
Packit Service ca3877 
		msg = soup_message_new_from_uri ("GET", uri);
Packit Service ca3877 
		soup_message_set_first_party (msg, third_party_uri);
Packit Service ca3877 
		soup_session_send_message (session, msg);
Packit Service ca3877 
		soup_uri_free (uri);
Packit Service ca3877 
		g_object_unref (msg);
Packit Service ca3877
Packit Service ca3877 
		l = soup_cookie_jar_all_cookies (jar);
Packit Service ca3877 
		g_assert_cmpint (g_slist_length (l), ==, validResults[i].n_cookies);
Packit Service ca3877
Packit Service ca3877 
		for (p = l; p; p = p->next) {
Packit Service ca3877 
			soup_cookie_jar_delete_cookie (jar, p->data);
Packit Service ca3877 
			soup_cookie_free (p->data);
Packit Service ca3877 
		}
Packit Service ca3877
Packit Service ca3877 
		g_slist_free (l);
Packit Service ca3877 
	}
Packit Service ca3877
Packit Service ca3877 
	soup_test_session_abort_unref (session);
Packit Service ca3877 
}
Packit Service ca3877
Packit Service ca3877 
static void
Packit Service ca3877 
do_cookies_subdomain_policy_test (void)
Packit Service ca3877 
{
Packit Service ca3877 
	SoupCookieJar *jar;
Packit Service ca3877 
	GSList *cookies;
Packit Service ca3877 
	SoupURI *uri1;
Packit Service ca3877 
	SoupURI *uri2;
Packit Service ca3877 
	SoupURI *uri3;
Packit Service ca3877
Packit Service ca3877 
	g_test_bug ("792130");
Packit Service ca3877
Packit Service ca3877 
	/* Only the base domain should be considered when deciding
Packit Service ca3877 
	 * whether a cookie is a third-party cookie.
Packit Service ca3877 
	 */
Packit Service ca3877 
	uri1 = soup_uri_new ("https://www.gnome.org");
Packit Service ca3877 
	uri2 = soup_uri_new ("https://foundation.gnome.org");
Packit Service ca3877 
	uri3 = soup_uri_new ("https://www.gnome.org.");
Packit Service ca3877
Packit Service ca3877 
	/* We can't check subdomains with a test server running on
Packit Service ca3877 
	 * localhost, so we'll just check the cookie jar API itself.
Packit Service ca3877 
	 */
Packit Service ca3877
Packit Service ca3877 
	/* Cookie should be accepted. One cookie in the jar. */
Packit Service ca3877 
	jar = soup_cookie_jar_new ();
Packit Service ca3877 
	soup_cookie_jar_set_accept_policy (jar, SOUP_COOKIE_JAR_ACCEPT_NO_THIRD_PARTY);
Packit Service ca3877 
	soup_cookie_jar_set_cookie_with_first_party (jar, uri1, uri2, "1=foo");
Packit Service ca3877 
	cookies = soup_cookie_jar_all_cookies (jar);
Packit Service ca3877 
	g_assert_cmpint (g_slist_length (cookies), ==, 1);
Packit Service ca3877 
	g_slist_free_full (cookies, (GDestroyNotify)soup_cookie_free);
Packit Service ca3877
Packit Service ca3877 
	/* Cookie should be accepted. Two cookies in the jar. */
Packit Service ca3877 
	soup_cookie_jar_set_cookie_with_first_party (jar, uri2, uri1, "2=foo");
Packit Service ca3877 
	cookies = soup_cookie_jar_all_cookies (jar);
Packit Service ca3877 
	g_assert_cmpint (g_slist_length (cookies), ==, 2);
Packit Service ca3877 
	g_slist_free_full (cookies, (GDestroyNotify)soup_cookie_free);
Packit Service ca3877
Packit Service ca3877 
	/* Third-party cookie should be rejected, so there are still
Packit Service ca3877 
	 * only two cookies in the jar.
Packit Service ca3877 
	 */
Packit Service ca3877 
	soup_cookie_jar_set_cookie_with_first_party (jar, third_party_uri, uri1, "3=foo");
Packit Service ca3877 
	cookies = soup_cookie_jar_all_cookies (jar);
Packit Service ca3877 
	g_assert_cmpint (g_slist_length (cookies), ==, 2);
Packit Service ca3877 
	g_slist_free_full (cookies, (GDestroyNotify)soup_cookie_free);
Packit Service ca3877
Packit Service ca3877 
	/* Now some Domain attribute tests.*/
Packit Service ca3877 
	soup_cookie_jar_set_accept_policy (jar, SOUP_COOKIE_JAR_ACCEPT_ALWAYS);
Packit Service ca3877
Packit Service ca3877 
	/* The cookie must be rejected if the Domain is not an appropriate
Packit Service ca3877 
	 * match for the URI. Still two cookies in the jar.
Packit Service ca3877 
	 */
Packit Service ca3877 
	soup_cookie_jar_set_cookie (jar, uri1, "4=foo; Domain=gitlab.gnome.org");
Packit Service ca3877 
	cookies = soup_cookie_jar_all_cookies (jar);
Packit Service ca3877 
	g_assert_cmpint (g_slist_length (cookies), ==, 2);
Packit Service ca3877 
	g_slist_free_full (cookies, (GDestroyNotify)soup_cookie_free);
Packit Service ca3877
Packit Service ca3877 
	/* Now the Domain is an appropriate match. Three cookies in the jar. */
Packit Service ca3877 
	soup_cookie_jar_set_cookie (jar, uri1, "5=foo; Domain=gnome.org");
Packit Service ca3877 
	cookies = soup_cookie_jar_all_cookies (jar);
Packit Service ca3877 
	g_assert_cmpint (g_slist_length (cookies), ==, 3);
Packit Service ca3877 
	g_slist_free_full (cookies, (GDestroyNotify)soup_cookie_free);
Packit Service ca3877
Packit Service ca3877 
	/* A leading dot in the domain property should not affect things.
Packit Service ca3877 
	 * This cookie should be accepted. Four cookies in the jar.
Packit Service ca3877 
	 */
Packit Service ca3877 
	soup_cookie_jar_set_cookie (jar, uri1, "6=foo; Domain=.www.gnome.org");
Packit Service ca3877 
	cookies = soup_cookie_jar_all_cookies (jar);
Packit Service ca3877 
	g_assert_cmpint (g_slist_length (cookies), ==, 4);
Packit Service ca3877 
	g_slist_free_full (cookies, (GDestroyNotify)soup_cookie_free);
Packit Service ca3877
Packit Service ca3877 
	/* The cookie must be rejected if the Domain ends in a trailing dot
Packit Service ca3877 
	 * but the uri doesn't.
Packit Service ca3877 
	 */
Packit Service ca3877 
	soup_cookie_jar_set_cookie (jar, uri1, "7=foo; Domain=www.gnome.org.");
Packit Service ca3877 
	cookies = soup_cookie_jar_all_cookies (jar);
Packit Service ca3877 
	g_assert_cmpint (g_slist_length (cookies), ==, 4);
Packit Service ca3877 
	g_slist_free_full (cookies, (GDestroyNotify)soup_cookie_free);
Packit Service ca3877
Packit Service ca3877 
	/* The cookie should be accepted if both Domain and URI end with a trailing
Packit Service ca3877 
	 * dot and they are a match. Five cookies in the jar.
Packit Service ca3877 
	 */
Packit Service ca3877 
	soup_cookie_jar_set_cookie (jar, uri3, "8=foo; Domain=gnome.org.");
Packit Service ca3877 
	cookies = soup_cookie_jar_all_cookies (jar);
Packit Service ca3877 
	g_assert_cmpint (g_slist_length (cookies), ==, 5);
Packit Service ca3877 
	g_slist_free_full (cookies, (GDestroyNotify)soup_cookie_free);
Packit Service ca3877
Packit Service ca3877 
	/* The cookie should be rejected if URI has trailing dot but Domain doesn't.
Packit Service ca3877 
	 * Five cookies in the jar.
Packit Service ca3877 
	 */
Packit Service ca3877 
	soup_cookie_jar_set_cookie (jar, uri3, "9=foo; Domain=gnome.org");
Packit Service ca3877 
	cookies = soup_cookie_jar_all_cookies (jar);
Packit Service ca3877 
	g_assert_cmpint (g_slist_length (cookies), ==, 5);
Packit Service ca3877 
	g_slist_free_full (cookies, (GDestroyNotify)soup_cookie_free);
Packit Service ca3877
Packit Service ca3877 
	/* It should not be possible to set a cookie for a TLD. Still five
Packit Service ca3877 
	 * cookies in the jar.
Packit Service ca3877 
	 */
Packit Service ca3877 
	soup_cookie_jar_set_cookie (jar, uri1, "10=foo; Domain=.org");
Packit Service ca3877 
	cookies = soup_cookie_jar_all_cookies (jar);
Packit Service ca3877 
	g_assert_cmpint (g_slist_length (cookies), ==, 5);
Packit Service ca3877 
	g_slist_free_full (cookies, (GDestroyNotify)soup_cookie_free);
Packit Service ca3877
Packit Service ca3877 
	/* It should still not be possible to set a cookie for a TLD, even if
Packit Service ca3877 
	 * we are tricksy and have a trailing dot. Still only five cookies.
Packit Service ca3877 
	 */
Packit Service ca3877 
	soup_cookie_jar_set_cookie (jar, uri3, "11=foo; Domain=.org.");
Packit Service ca3877 
	cookies = soup_cookie_jar_all_cookies (jar);
Packit Service ca3877 
	g_assert_cmpint (g_slist_length (cookies), ==, 5);
Packit Service ca3877 
	g_slist_free_full (cookies, (GDestroyNotify)soup_cookie_free);
Packit Service ca3877
Packit Service ca3877 
	soup_uri_free (uri1);
Packit Service ca3877 
	soup_uri_free (uri2);
Packit Service ca3877 
	soup_uri_free (uri3);
Packit Service ca3877 
	g_object_unref (jar);
Packit Service ca3877 
}
Packit Service ca3877
Packit Service ca3877 
/* FIXME: moar tests! */
Packit Service ca3877 
static void
Packit Service ca3877 
do_cookies_parsing_test (void)
Packit Service ca3877 
{
Packit Service ca3877 
	SoupSession *session;
Packit Service ca3877 
	SoupMessage *msg;
Packit Service ca3877 
	SoupCookieJar *jar;
Packit Service ca3877 
	GSList *cookies, *iter;
Packit Service ca3877 
	SoupCookie *cookie;
Packit Service ca3877 
	gboolean got1, got2, got3;
Packit Service ca3877
Packit Service ca3877 
	g_test_bug ("678753");
Packit Service ca3877
Packit Service ca3877 
	session = soup_test_session_new (SOUP_TYPE_SESSION_ASYNC, NULL);
Packit Service ca3877 
	soup_session_add_feature_by_type (session, SOUP_TYPE_COOKIE_JAR);
Packit Service ca3877 
	jar = SOUP_COOKIE_JAR (soup_session_get_feature (session, SOUP_TYPE_COOKIE_JAR));
Packit Service ca3877
Packit Service ca3877 
	/* "httponly" is case-insensitive, and its value (if any) is ignored */
Packit Service ca3877 
	msg = soup_message_new_from_uri ("GET", first_party_uri);
Packit Service ca3877 
	soup_message_headers_append (msg->request_headers, "Echo-Set-Cookie",
Packit Service ca3877 
				     "one=1; httponly; max-age=100");
Packit Service ca3877 
	soup_session_send_message (session, msg);
Packit Service ca3877 
	g_object_unref (msg);
Packit Service ca3877
Packit Service ca3877 
	msg = soup_message_new_from_uri ("GET", first_party_uri);
Packit Service ca3877 
	soup_message_headers_append (msg->request_headers, "Echo-Set-Cookie",
Packit Service ca3877 
				     "two=2; HttpOnly; max-age=100");
Packit Service ca3877 
	soup_session_send_message (session, msg);
Packit Service ca3877 
	g_object_unref (msg);
Packit Service ca3877
Packit Service ca3877 
	msg = soup_message_new_from_uri ("GET", first_party_uri);
Packit Service ca3877 
	soup_message_headers_append (msg->request_headers, "Echo-Set-Cookie",
Packit Service ca3877 
				     "three=3; httpONLY=Wednesday; max-age=100");
Packit Service ca3877 
	soup_session_send_message (session, msg);
Packit Service ca3877 
	g_object_unref (msg);
Packit Service ca3877
Packit Service ca3877 
	cookies = soup_cookie_jar_get_cookie_list (jar, first_party_uri, TRUE);
Packit Service ca3877 
	got1 = got2 = got3 = FALSE;
Packit Service ca3877
Packit Service ca3877 
	for (iter = cookies; iter; iter = iter->next) {
Packit Service ca3877 
		cookie = iter->data;
Packit Service ca3877
Packit Service ca3877 
		if (!strcmp (soup_cookie_get_name (cookie), "one")) {
Packit Service ca3877 
			got1 = TRUE;
Packit Service ca3877 
			g_assert_true (soup_cookie_get_http_only (cookie));
Packit Service ca3877 
			g_assert_true (soup_cookie_get_expires (cookie) != NULL);
Packit Service ca3877 
		} else if (!strcmp (soup_cookie_get_name (cookie), "two")) {
Packit Service ca3877 
			got2 = TRUE;
Packit Service ca3877 
			g_assert_true (soup_cookie_get_http_only (cookie));
Packit Service ca3877 
			g_assert_true (soup_cookie_get_expires (cookie) != NULL);
Packit Service ca3877 
		} else if (!strcmp (soup_cookie_get_name (cookie), "three")) {
Packit Service ca3877 
			got3 = TRUE;
Packit Service ca3877 
			g_assert_true (soup_cookie_get_http_only (cookie));
Packit Service ca3877 
			g_assert_true (soup_cookie_get_expires (cookie) != NULL);
Packit Service ca3877 
		} else {
Packit Service ca3877 
			soup_test_assert (FALSE, "got unexpected cookie '%s'",
Packit Service ca3877 
					  soup_cookie_get_name (cookie));
Packit Service ca3877 
		}
Packit Service ca3877
Packit Service ca3877 
		soup_cookie_free (cookie);
Packit Service ca3877 
	}
Packit Service ca3877 
	g_slist_free (cookies);
Packit Service ca3877
Packit Service ca3877 
	g_assert_true (got1);
Packit Service ca3877 
	g_assert_true (got2);
Packit Service ca3877 
	g_assert_true (got3);
Packit Service ca3877
Packit Service ca3877 
	soup_test_session_abort_unref (session);
Packit Service ca3877 
}
Packit Service ca3877
Packit Service ca3877 
static void
Packit Service ca3877 
do_cookies_parsing_nopath_nullorigin (void)
Packit Service ca3877 
{
Packit Service ca3877 
	SoupCookie *cookie = soup_cookie_parse ("NAME=Value", NULL);
Packit Service ca3877 
	g_assert_nonnull (cookie);
Packit Service ca3877 
	g_assert_cmpstr ("/", ==, soup_cookie_get_path (cookie));
Packit Service ca3877 
	soup_cookie_free (cookie);
Packit Service ca3877 
}
Packit Service ca3877
Packit Service ca3877 
int
Packit Service ca3877 
main (int argc, char **argv)
Packit Service ca3877 
{
Packit Service ca3877 
	SoupURI *server_uri;
Packit Service ca3877 
	int ret;
Packit Service ca3877
Packit Service ca3877 
	test_init (argc, argv, NULL);
Packit Service ca3877
Packit Service ca3877 
	server = soup_test_server_new (SOUP_TEST_SERVER_IN_THREAD);
Packit Service ca3877 
	soup_server_add_handler (server, NULL, server_callback, NULL, NULL);
Packit Service ca3877 
	server_uri = soup_test_server_get_uri (server, "http", NULL);
Packit Service ca3877
Packit Service ca3877 
	first_party_uri = soup_uri_new (first_party);
Packit Service ca3877 
	third_party_uri = soup_uri_new (third_party);
Packit Service ca3877 
	soup_uri_set_port (first_party_uri, server_uri->port);
Packit Service ca3877 
	soup_uri_set_port (third_party_uri, server_uri->port);
Packit Service ca3877
Packit Service ca3877 
	g_test_add_func ("/cookies/accept-policy", do_cookies_accept_policy_test);
Packit Service ca3877 
	g_test_add_func ("/cookies/accept-policy-subdomains", do_cookies_subdomain_policy_test);
Packit Service ca3877 
	g_test_add_func ("/cookies/parsing", do_cookies_parsing_test);
Packit Service ca3877 
	g_test_add_func ("/cookies/parsing/no-path-null-origin", do_cookies_parsing_nopath_nullorigin);
Packit Service ca3877
Packit Service ca3877 
	ret = g_test_run ();
Packit Service ca3877
Packit Service ca3877 
	soup_uri_free (first_party_uri);
Packit Service ca3877 
	soup_uri_free (third_party_uri);
Packit Service ca3877 
	soup_uri_free (server_uri);
Packit Service ca3877 
	soup_test_server_quit_unref (server);
Packit Service ca3877
Packit Service ca3877 
	test_cleanup ();
Packit Service ca3877 
	return ret;
Packit Service ca3877 
}

Powered by Pagure 5.13.3

SSH Hostkey/Fingerprint | Documentation