Merge pull request #8855 from Rob--W/fetch-withCredentials-fix-default
Add test for withCredentials option
This commit is contained in:
Yury Delendik
GitHub
commit
47789b51c3
@ -858,6 +858,85 @@ describe('api', function() {
|
|||||||
done.fail(reason);
|
done.fail(reason);
|
||||||
});
|
});
|
||||||
});
|
});
|
||||||
|
|
||||||
|
describe('Cross-origin', function() {
|
||||||
|
var loadingTask;
|
||||||
|
function _checkCanLoad(expectSuccess, filename, options) {
|
||||||
|
if (isNodeJS()) {
|
||||||
|
pending('Cannot simulate cross-origin requests in Node.js');
|
||||||
|
}
|
||||||
|
var params = buildGetDocumentParams(filename, options);
|
||||||
|
var url = new URL(params.url);
|
||||||
|
if (url.hostname === 'localhost') {
|
||||||
|
url.hostname = '127.0.0.1';
|
||||||
|
} else if (params.url.hostname === '127.0.0.1') {
|
||||||
|
url.hostname = 'localhost';
|
||||||
|
} else {
|
||||||
|
pending('Can only run cross-origin test on localhost!');
|
||||||
|
}
|
||||||
|
params.url = url.href;
|
||||||
|
loadingTask = getDocument(params);
|
||||||
|
return loadingTask.promise.then(function(pdf) {
|
||||||
|
return pdf.destroy();
|
||||||
|
}).then(function() {
|
||||||
|
expect(expectSuccess).toEqual(true);
|
||||||
|
}, function(error) {
|
||||||
|
if (expectSuccess) {
|
||||||
|
// For ease of debugging.
|
||||||
|
expect(error).toEqual('There should not be any error');
|
||||||
|
}
|
||||||
|
expect(expectSuccess).toEqual(false);
|
||||||
|
});
|
||||||
|
}
|
||||||
|
function testCanLoad(filename, options) {
|
||||||
|
return _checkCanLoad(true, filename, options);
|
||||||
|
}
|
||||||
|
function testCannotLoad(filename, options) {
|
||||||
|
return _checkCanLoad(false, filename, options);
|
||||||
|
}
|
||||||
|
afterEach(function(done) {
|
||||||
|
if (loadingTask) {
|
||||||
|
loadingTask.destroy().then(done);
|
||||||
|
} else {
|
||||||
|
done();
|
||||||
|
}
|
||||||
|
});
|
||||||
|
it('server disallows cors', function(done) {
|
||||||
|
testCannotLoad('basicapi.pdf').then(done);
|
||||||
|
});
|
||||||
|
it('server allows cors without credentials, default withCredentials',
|
||||||
|
function(done) {
|
||||||
|
testCanLoad('basicapi.pdf?cors=withoutCredentials').then(done);
|
||||||
|
});
|
||||||
|
it('server allows cors without credentials, and withCredentials=false',
|
||||||
|
function(done) {
|
||||||
|
testCanLoad('basicapi.pdf?cors=withoutCredentials', {
|
||||||
|
withCredentials: false,
|
||||||
|
}).then(done);
|
||||||
|
});
|
||||||
|
it('server allows cors without credentials, but withCredentials=true',
|
||||||
|
function(done) {
|
||||||
|
testCannotLoad('basicapi.pdf?cors=withoutCredentials', {
|
||||||
|
withCredentials: true,
|
||||||
|
}).then(done);
|
||||||
|
});
|
||||||
|
it('server allows cors with credentials, and withCredentials=true',
|
||||||
|
function(done) {
|
||||||
|
testCanLoad('basicapi.pdf?cors=withCredentials', {
|
||||||
|
withCredentials: true,
|
||||||
|
}).then(done);
|
||||||
|
});
|
||||||
|
it('server allows cors with credentials, and withCredentials=false',
|
||||||
|
function(done) {
|
||||||
|
// The server supports even more than we need, so if the previous tests
|
||||||
|
// pass, then this should pass for sure.
|
||||||
|
// The only case where this test fails is when the server does not reply
|
||||||
|
// with the Access-Control-Allow-Origin header.
|
||||||
|
testCanLoad('basicapi.pdf?cors=withCredentials', {
|
||||||
|
withCredentials: false,
|
||||||
|
}).then(done);
|
||||||
|
});
|
||||||
|
});
|
||||||
});
|
});
|
||||||
describe('Page', function() {
|
describe('Page', function() {
|
||||||
var loadingTask;
|
var loadingTask;
|
||||||
|
|||||||
@ -48,7 +48,7 @@ function WebServer() {
|
|||||||
this.cacheExpirationTime = 0;
|
this.cacheExpirationTime = 0;
|
||||||
this.disableRangeRequests = false;
|
this.disableRangeRequests = false;
|
||||||
this.hooks = {
|
this.hooks = {
|
||||||
'GET': [],
|
'GET': [crossOriginHandler],
|
||||||
'POST': [],
|
'POST': [],
|
||||||
};
|
};
|
||||||
}
|
}
|
||||||
@ -295,4 +295,18 @@ WebServer.prototype = {
|
|||||||
},
|
},
|
||||||
};
|
};
|
||||||
|
|
||||||
|
// This supports the "Cross-origin" test in test/unit/api_spec.js
|
||||||
|
// It is here instead of test.js so that when the test will still complete as
|
||||||
|
// expected if the user does "gulp server" and then visits
|
||||||
|
// http://localhost:8888/test/unit/unit_test.html?spec=Cross-origin
|
||||||
|
function crossOriginHandler(req, res) {
|
||||||
|
if (req.url === '/test/pdfs/basicapi.pdf?cors=withCredentials') {
|
||||||
|
res.setHeader('Access-Control-Allow-Origin', req.headers['origin']);
|
||||||
|
res.setHeader('Access-Control-Allow-Credentials', 'true');
|
||||||
|
}
|
||||||
|
if (req.url === '/test/pdfs/basicapi.pdf?cors=withoutCredentials') {
|
||||||
|
res.setHeader('Access-Control-Allow-Origin', req.headers['origin']);
|
||||||
|
}
|
||||||
|
}
|
||||||
|
|
||||||
exports.WebServer = WebServer;
|
exports.WebServer = WebServer;
|
||||||
|
|||||||
Loading…
x
Reference in New Issue
Block a user