net/http/url_security_manager_unittest.cc - chromium/src.git - Git at Google

 // Copyright 2010 The Chromium Authors
 // Use of this source code is governed by a BSD-style license that can be
 // found in the LICENSE file.

 #include "net/http/url_security_manager.h"

 #include <utility>

 #include "net/base/net_errors.h"
 #include "net/http/http_auth_filter.h"
 #include "testing/gtest/include/gtest/gtest.h"
 #include "url/gurl.h"
 #include "url/scheme_host_port.h"

 namespace net {

 namespace {

 struct TestData {
   const char* const scheme_host_port;
   bool succeds_in_windows_default;
   bool succeeds_in_allowlist;
 };

 const char kTestAuthAllowlist[] = "*example.com,*foobar.com,baz";

 // Under Windows the following will be allowed by default:
 //    localhost
 //    host names without a period.
 // In Posix systems (or on Windows if an allowlist is specified explicitly),
 // everything depends on the allowlist.
 const TestData kTestDataList[] = {
   { "http://localhost", true, false },
   { "http://bat", true, false },
   { "http://www.example.com", false, true },
   { "http://example.com", false, true },
   { "http://foobar.com", false, true },
   { "http://boo.foobar.com", false, true },
   { "http://baz", true, true },
   { "http://www.exampl.com", false, false },
   { "http://example.org", false, false },
   { "http://foobar.net", false, false },
   { "http://boo.fubar.com", false, false },
 };

 }  // namespace

 TEST(URLSecurityManager, UseDefaultCredentials) {
   auto auth_filter =
       std::make_unique<HttpAuthFilterAllowlist>(kTestAuthAllowlist);
   ASSERT_TRUE(auth_filter);
   // The URL security manager takes ownership of |auth_filter|.
   std::unique_ptr<URLSecurityManager> url_security_manager(
       URLSecurityManager::Create());
   url_security_manager->SetDefaultAllowlist(std::move(auth_filter));
   ASSERT_TRUE(url_security_manager.get());

   for (size_t i = 0; i < std::size(kTestDataList); ++i) {
     url::SchemeHostPort scheme_host_port(
         GURL(kTestDataList[i].scheme_host_port));
     bool can_use_default =
         url_security_manager->CanUseDefaultCredentials(scheme_host_port);

     EXPECT_EQ(kTestDataList[i].succeeds_in_allowlist, can_use_default)
         << " Run: " << i << " scheme_host_port: '"
         << scheme_host_port.Serialize() << "'";
   }
 }

 TEST(URLSecurityManager, CanDelegate) {
   auto auth_filter =
       std::make_unique<HttpAuthFilterAllowlist>(kTestAuthAllowlist);
   ASSERT_TRUE(auth_filter);
   // The URL security manager takes ownership of |auth_filter|.
   std::unique_ptr<URLSecurityManager> url_security_manager(
       URLSecurityManager::Create());
   url_security_manager->SetDelegateAllowlist(std::move(auth_filter));
   ASSERT_TRUE(url_security_manager.get());

   for (size_t i = 0; i < std::size(kTestDataList); ++i) {
     url::SchemeHostPort scheme_host_port(
         GURL(kTestDataList[i].scheme_host_port));
     bool can_delegate = url_security_manager->CanDelegate(scheme_host_port);
     EXPECT_EQ(kTestDataList[i].succeeds_in_allowlist, can_delegate)
         << " Run: " << i << " scheme_host_port: '"
         << scheme_host_port.Serialize() << "'";
   }
 }

 TEST(URLSecurityManager, CanDelegate_NoAllowlist) {
   // Nothing can delegate in this case.
   std::unique_ptr<URLSecurityManager> url_security_manager(
       URLSecurityManager::Create());
   ASSERT_TRUE(url_security_manager.get());

   for (const auto& test : kTestDataList) {
     url::SchemeHostPort scheme_host_port(GURL(test.scheme_host_port));
     bool can_delegate = url_security_manager->CanDelegate(scheme_host_port);
     EXPECT_FALSE(can_delegate);
   }
 }

 }  // namespace net
	// Copyright 2010 The Chromium Authors
	// Use of this source code is governed by a BSD-style license that can be
	// found in the LICENSE file.

	#include "net/http/url_security_manager.h"

	#include <utility>

	#include "net/base/net_errors.h"
	#include "net/http/http_auth_filter.h"
	#include "testing/gtest/include/gtest/gtest.h"
	#include "url/gurl.h"
	#include "url/scheme_host_port.h"

	namespace net {

	namespace {

	struct TestData {
	const char* const scheme_host_port;
	bool succeds_in_windows_default;
	bool succeeds_in_allowlist;
	};

	const char kTestAuthAllowlist[] = "example.com,foobar.com,baz";

	// Under Windows the following will be allowed by default:
	// localhost
	// host names without a period.
	// In Posix systems (or on Windows if an allowlist is specified explicitly),
	// everything depends on the allowlist.
	const TestData kTestDataList[] = {
	{ "http://localhost", true, false },
	{ "http://bat", true, false },
	{ "http://www.example.com", false, true },
	{ "http://example.com", false, true },
	{ "http://foobar.com", false, true },
	{ "http://boo.foobar.com", false, true },
	{ "http://baz", true, true },
	{ "http://www.exampl.com", false, false },
	{ "http://example.org", false, false },
	{ "http://foobar.net", false, false },
	{ "http://boo.fubar.com", false, false },
	};

	} // namespace

	TEST(URLSecurityManager, UseDefaultCredentials) {
	auto auth_filter =
	std::make_unique<HttpAuthFilterAllowlist>(kTestAuthAllowlist);
	ASSERT_TRUE(auth_filter);
	// The URL security manager takes ownership of \|auth_filter\|.
	std::unique_ptr<URLSecurityManager> url_security_manager(
	URLSecurityManager::Create());
	url_security_manager->SetDefaultAllowlist(std::move(auth_filter));
	ASSERT_TRUE(url_security_manager.get());

	for (size_t i = 0; i < std::size(kTestDataList); ++i) {
	url::SchemeHostPort scheme_host_port(
	GURL(kTestDataList[i].scheme_host_port));
	bool can_use_default =
	url_security_manager->CanUseDefaultCredentials(scheme_host_port);

	EXPECT_EQ(kTestDataList[i].succeeds_in_allowlist, can_use_default)
	<< " Run: " << i << " scheme_host_port: '"
	<< scheme_host_port.Serialize() << "'";
	}
	}

	TEST(URLSecurityManager, CanDelegate) {
	auto auth_filter =
	std::make_unique<HttpAuthFilterAllowlist>(kTestAuthAllowlist);
	ASSERT_TRUE(auth_filter);
	// The URL security manager takes ownership of \|auth_filter\|.
	std::unique_ptr<URLSecurityManager> url_security_manager(
	URLSecurityManager::Create());
	url_security_manager->SetDelegateAllowlist(std::move(auth_filter));
	ASSERT_TRUE(url_security_manager.get());

	for (size_t i = 0; i < std::size(kTestDataList); ++i) {
	url::SchemeHostPort scheme_host_port(
	GURL(kTestDataList[i].scheme_host_port));
	bool can_delegate = url_security_manager->CanDelegate(scheme_host_port);
	EXPECT_EQ(kTestDataList[i].succeeds_in_allowlist, can_delegate)
	<< " Run: " << i << " scheme_host_port: '"
	<< scheme_host_port.Serialize() << "'";
	}
	}

	TEST(URLSecurityManager, CanDelegate_NoAllowlist) {
	// Nothing can delegate in this case.
	std::unique_ptr<URLSecurityManager> url_security_manager(
	URLSecurityManager::Create());
	ASSERT_TRUE(url_security_manager.get());

	for (const auto& test : kTestDataList) {
	url::SchemeHostPort scheme_host_port(GURL(test.scheme_host_port));
	bool can_delegate = url_security_manager->CanDelegate(scheme_host_port);
	EXPECT_FALSE(can_delegate);
	}
	}

	} // namespace net