221 lines
4.8 KiB
Rust
221 lines
4.8 KiB
Rust
// Copyright 2015-2017 Parity Technologies (UK) Ltd.
|
|
// This file is part of Parity.
|
|
|
|
// Parity is free software: you can redistribute it and/or modify
|
|
// it under the terms of the GNU General Public License as published by
|
|
// the Free Software Foundation, either version 3 of the License, or
|
|
// (at your option) any later version.
|
|
|
|
// Parity is distributed in the hope that it will be useful,
|
|
// but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
// GNU General Public License for more details.
|
|
|
|
// You should have received a copy of the GNU General Public License
|
|
// along with Parity. If not, see <http://www.gnu.org/licenses/>.
|
|
|
|
use tests::helpers::{serve, serve_with_registrar, serve_extra_cors, request, assert_security_headers};
|
|
|
|
#[test]
|
|
fn should_return_error() {
|
|
// given
|
|
let server = serve();
|
|
|
|
// when
|
|
let response = request(server,
|
|
"\
|
|
GET /api/empty HTTP/1.1\r\n\
|
|
Host: 127.0.0.1:8080\r\n\
|
|
Connection: close\r\n\
|
|
\r\n\
|
|
{}
|
|
"
|
|
);
|
|
|
|
// then
|
|
response.assert_status("HTTP/1.1 404 Not Found");
|
|
response.assert_header("Content-Type", "application/json");
|
|
assert_eq!(response.body, format!("58\n{}\n0\n\n", r#"{"code":"404","title":"Not Found","detail":"Resource you requested has not been found."}"#));
|
|
assert_security_headers(&response.headers);
|
|
}
|
|
|
|
#[test]
|
|
fn should_serve_apps() {
|
|
// given
|
|
let server = serve();
|
|
|
|
// when
|
|
let response = request(server,
|
|
"\
|
|
GET /api/apps HTTP/1.1\r\n\
|
|
Host: 127.0.0.1:8080\r\n\
|
|
Connection: close\r\n\
|
|
\r\n\
|
|
{}
|
|
"
|
|
);
|
|
|
|
// then
|
|
response.assert_status("HTTP/1.1 200 OK");
|
|
response.assert_header("Content-Type", "application/json");
|
|
assert!(response.body.contains("Parity UI"), response.body);
|
|
assert_security_headers(&response.headers);
|
|
}
|
|
|
|
#[test]
|
|
fn should_handle_ping() {
|
|
// given
|
|
let server = serve();
|
|
|
|
// when
|
|
let response = request(server,
|
|
"\
|
|
POST /api/ping HTTP/1.1\r\n\
|
|
Host: home.parity\r\n\
|
|
Connection: close\r\n\
|
|
\r\n\
|
|
{}
|
|
"
|
|
);
|
|
|
|
// then
|
|
response.assert_status("HTTP/1.1 200 OK");
|
|
response.assert_header("Content-Type", "application/json");
|
|
assert_eq!(response.body, "0\n\n".to_owned());
|
|
assert_security_headers(&response.headers);
|
|
}
|
|
|
|
|
|
#[test]
|
|
fn should_try_to_resolve_dapp() {
|
|
// given
|
|
let (server, registrar) = serve_with_registrar();
|
|
|
|
// when
|
|
let response = request(server,
|
|
"\
|
|
GET /api/content/1472a9e190620cdf6b31f383373e45efcfe869a820c91f9ccd7eb9fb45e4985d HTTP/1.1\r\n\
|
|
Host: home.parity\r\n\
|
|
Connection: close\r\n\
|
|
\r\n\
|
|
"
|
|
);
|
|
|
|
// then
|
|
response.assert_status("HTTP/1.1 404 Not Found");
|
|
assert_eq!(registrar.calls.lock().len(), 2);
|
|
assert_security_headers(&response.headers);
|
|
}
|
|
|
|
#[test]
|
|
fn should_return_signer_port_cors_headers() {
|
|
// given
|
|
let server = serve();
|
|
|
|
// when
|
|
let response = request(server,
|
|
"\
|
|
POST /api/ping HTTP/1.1\r\n\
|
|
Host: localhost:8080\r\n\
|
|
Origin: http://127.0.0.1:18180\r\n\
|
|
Connection: close\r\n\
|
|
\r\n\
|
|
{}
|
|
"
|
|
);
|
|
|
|
// then
|
|
response.assert_status("HTTP/1.1 200 OK");
|
|
response.assert_header("Access-Control-Allow-Origin", "http://127.0.0.1:18180");
|
|
}
|
|
|
|
#[test]
|
|
fn should_return_signer_port_cors_headers_for_home_parity() {
|
|
// given
|
|
let server = serve();
|
|
|
|
// when
|
|
let response = request(server,
|
|
"\
|
|
POST /api/ping HTTP/1.1\r\n\
|
|
Host: localhost:8080\r\n\
|
|
Origin: http://parity.web3.site\r\n\
|
|
Connection: close\r\n\
|
|
\r\n\
|
|
{}
|
|
"
|
|
);
|
|
|
|
// then
|
|
response.assert_status("HTTP/1.1 200 OK");
|
|
response.assert_header("Access-Control-Allow-Origin", "http://parity.web3.site");
|
|
}
|
|
|
|
|
|
#[test]
|
|
fn should_return_signer_port_cors_headers_for_home_parity_with_https() {
|
|
// given
|
|
let server = serve();
|
|
|
|
// when
|
|
let response = request(server,
|
|
"\
|
|
POST /api/ping HTTP/1.1\r\n\
|
|
Host: localhost:8080\r\n\
|
|
Origin: https://parity.web3.site\r\n\
|
|
Connection: close\r\n\
|
|
\r\n\
|
|
{}
|
|
"
|
|
);
|
|
|
|
// then
|
|
response.assert_status("HTTP/1.1 200 OK");
|
|
response.assert_header("Access-Control-Allow-Origin", "https://parity.web3.site");
|
|
}
|
|
|
|
#[test]
|
|
fn should_return_signer_port_cors_headers_for_home_parity_with_port() {
|
|
// given
|
|
let server = serve();
|
|
|
|
// when
|
|
let response = request(server,
|
|
"\
|
|
POST /api/ping HTTP/1.1\r\n\
|
|
Host: localhost:8080\r\n\
|
|
Origin: http://parity.web3.site:18180\r\n\
|
|
Connection: close\r\n\
|
|
\r\n\
|
|
{}
|
|
"
|
|
);
|
|
|
|
// then
|
|
response.assert_status("HTTP/1.1 200 OK");
|
|
response.assert_header("Access-Control-Allow-Origin", "http://parity.web3.site:18180");
|
|
}
|
|
|
|
#[test]
|
|
fn should_return_extra_cors_headers() {
|
|
// given
|
|
let server = serve_extra_cors(Some(vec!["all".to_owned()]));
|
|
|
|
// when
|
|
let response = request(server,
|
|
"\
|
|
POST /api/ping HTTP/1.1\r\n\
|
|
Host: localhost:8080\r\n\
|
|
Origin: http://somedomain.io\r\n\
|
|
Connection: close\r\n\
|
|
\r\n\
|
|
{}
|
|
"
|
|
);
|
|
|
|
// then
|
|
response.assert_status("HTTP/1.1 200 OK");
|
|
response.assert_header("Access-Control-Allow-Origin", "http://somedomain.io");
|
|
}
|
|
|