Chris@1494: # Redmine - project management software Chris@1494: # Copyright (C) 2006-2014 Jean-Philippe Lang Chris@1494: # Chris@1494: # This program is free software; you can redistribute it and/or Chris@1494: # modify it under the terms of the GNU General Public License Chris@1494: # as published by the Free Software Foundation; either version 2 Chris@1494: # of the License, or (at your option) any later version. Chris@1494: # Chris@1494: # This program is distributed in the hope that it will be useful, Chris@1494: # but WITHOUT ANY WARRANTY; without even the implied warranty of Chris@1494: # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the Chris@1494: # GNU General Public License for more details. Chris@1494: # Chris@1494: # You should have received a copy of the GNU General Public License Chris@1494: # along with this program; if not, write to the Free Software Chris@1494: # Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA. Chris@1494: Chris@1494: require File.expand_path('../../../test_helper', __FILE__) Chris@1494: Chris@1494: class Redmine::ApiTest::JsonpTest < Redmine::ApiTest::Base Chris@1494: fixtures :trackers Chris@1494: Chris@1494: def test_should_ignore_jsonp_callback_with_jsonp_disabled Chris@1494: with_settings :jsonp_enabled => '0' do Chris@1494: get '/trackers.json?jsonp=handler' Chris@1494: end Chris@1494: Chris@1494: assert_response :success Chris@1494: assert_match %r{^\{"trackers":.+\}$}, response.body Chris@1494: assert_equal 'application/json; charset=utf-8', response.headers['Content-Type'] Chris@1494: end Chris@1494: Chris@1494: def test_jsonp_should_accept_callback_param Chris@1494: with_settings :jsonp_enabled => '1' do Chris@1494: get '/trackers.json?callback=handler' Chris@1494: end Chris@1494: Chris@1494: assert_response :success Chris@1494: assert_match %r{^handler\(\{"trackers":.+\}\)$}, response.body Chris@1494: assert_equal 'application/javascript; charset=utf-8', response.headers['Content-Type'] Chris@1494: end Chris@1494: Chris@1494: def test_jsonp_should_accept_jsonp_param Chris@1494: with_settings :jsonp_enabled => '1' do Chris@1494: get '/trackers.json?jsonp=handler' Chris@1494: end Chris@1494: Chris@1494: assert_response :success Chris@1494: assert_match %r{^handler\(\{"trackers":.+\}\)$}, response.body Chris@1494: assert_equal 'application/javascript; charset=utf-8', response.headers['Content-Type'] Chris@1494: end Chris@1494: Chris@1494: def test_jsonp_should_strip_invalid_characters_from_callback Chris@1494: with_settings :jsonp_enabled => '1' do Chris@1494: get '/trackers.json?callback=+-aA$1_' Chris@1494: end Chris@1494: Chris@1494: assert_response :success Chris@1494: assert_match %r{^aA1_\(\{"trackers":.+\}\)$}, response.body Chris@1494: assert_equal 'application/javascript; charset=utf-8', response.headers['Content-Type'] Chris@1494: end Chris@1494: Chris@1494: def test_jsonp_without_callback_should_return_json Chris@1494: with_settings :jsonp_enabled => '1' do Chris@1494: get '/trackers.json?callback=' Chris@1494: end Chris@1494: Chris@1494: assert_response :success Chris@1494: assert_match %r{^\{"trackers":.+\}$}, response.body Chris@1494: assert_equal 'application/json; charset=utf-8', response.headers['Content-Type'] Chris@1494: end Chris@1494: end