Chris@1115: # Redmine - project management software Chris@1494: # Copyright (C) 2006-2014 Jean-Philippe Lang Chris@1115: # Chris@1115: # This program is free software; you can redistribute it and/or Chris@1115: # modify it under the terms of the GNU General Public License Chris@1115: # as published by the Free Software Foundation; either version 2 Chris@1115: # of the License, or (at your option) any later version. Chris@1115: # Chris@1115: # This program is distributed in the hope that it will be useful, Chris@1115: # but WITHOUT ANY WARRANTY; without even the implied warranty of Chris@1115: # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the Chris@1115: # GNU General Public License for more details. Chris@1115: # Chris@1115: # You should have received a copy of the GNU General Public License Chris@1115: # along with this program; if not, write to the Free Software Chris@1115: # Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA. Chris@1115: Chris@1115: require File.expand_path('../../../test_helper', __FILE__) Chris@1115: Chris@1464: class Redmine::ApiTest::JsonpTest < Redmine::ApiTest::Base Chris@1115: fixtures :trackers Chris@1115: Chris@1464: def test_should_ignore_jsonp_callback_with_jsonp_disabled Chris@1464: with_settings :jsonp_enabled => '0' do Chris@1464: get '/trackers.json?jsonp=handler' Chris@1464: end Chris@1464: Chris@1464: assert_response :success Chris@1464: assert_match %r{^\{"trackers":.+\}$}, response.body Chris@1464: assert_equal 'application/json; charset=utf-8', response.headers['Content-Type'] Chris@1464: end Chris@1464: Chris@1115: def test_jsonp_should_accept_callback_param Chris@1464: with_settings :jsonp_enabled => '1' do Chris@1464: get '/trackers.json?callback=handler' Chris@1464: end Chris@1115: Chris@1115: assert_response :success Chris@1115: assert_match %r{^handler\(\{"trackers":.+\}\)$}, response.body Chris@1115: assert_equal 'application/javascript; charset=utf-8', response.headers['Content-Type'] Chris@1115: end Chris@1115: Chris@1115: def test_jsonp_should_accept_jsonp_param Chris@1464: with_settings :jsonp_enabled => '1' do Chris@1464: get '/trackers.json?jsonp=handler' Chris@1464: end Chris@1115: Chris@1115: assert_response :success Chris@1115: assert_match %r{^handler\(\{"trackers":.+\}\)$}, response.body Chris@1115: assert_equal 'application/javascript; charset=utf-8', response.headers['Content-Type'] Chris@1115: end Chris@1115: Chris@1115: def test_jsonp_should_strip_invalid_characters_from_callback Chris@1464: with_settings :jsonp_enabled => '1' do Chris@1464: get '/trackers.json?callback=+-aA$1_' Chris@1464: end Chris@1115: Chris@1115: assert_response :success Chris@1115: assert_match %r{^aA1_\(\{"trackers":.+\}\)$}, response.body Chris@1115: assert_equal 'application/javascript; charset=utf-8', response.headers['Content-Type'] Chris@1115: end Chris@1115: Chris@1115: def test_jsonp_without_callback_should_return_json Chris@1464: with_settings :jsonp_enabled => '1' do Chris@1464: get '/trackers.json?callback=' Chris@1464: end Chris@1115: Chris@1115: assert_response :success Chris@1115: assert_match %r{^\{"trackers":.+\}$}, response.body Chris@1115: assert_equal 'application/json; charset=utf-8', response.headers['Content-Type'] Chris@1115: end Chris@1115: end