mirror of
https://github.com/kanidm/kanidm.git
synced 2025-02-24 13:07:00 +01:00
40 lines
1.3 KiB
Rust
40 lines
1.3 KiB
Rust
|
use kanidm_client::KanidmClient;
|
||
|
|
|
||
|
|
#[kanidmd_testkit::test]
|
||
|
|
async fn test_https_middleware_headers(rsclient: KanidmClient) {
|
||
|
|
// We need to do manual reqwests here.
|
||
|
|
let addr = rsclient.get_url();
|
||
|
|
|
||
|
|
// here we test the /ui/ endpoint which should have the headers
|
||
|
|
let response = match reqwest::get(format!("{}/ui/", &addr)).await {
|
||
|
|
Ok(value) => value,
|
||
|
|
Err(error) => {
|
||
|
|
panic!("Failed to query {:?} : {:#?}", addr, error);
|
||
|
|
}
|
||
|
|
};
|
||
|
|
eprintln!("response: {:#?}", response);
|
||
|
|
assert_eq!(response.status(), 200);
|
||
|
|
|
||
|
|
eprintln!(
|
||
|
|
"csp headers: {:#?}",
|
||
|
|
response.headers().get("content-security-policy")
|
||
|
|
);
|
||
|
|
assert_ne!(response.headers().get("content-security-policy"), None);
|
||
|
|
|
||
|
|
// here we test the /pkg/ endpoint which shouldn't have the headers
|
||
|
|
let response =
|
||
|
|
match reqwest::get(format!("{}/pkg/external/bootstrap.bundle.min.js", &addr)).await {
|
||
|
|
Ok(value) => value,
|
||
|
|
Err(error) => {
|
||
|
|
panic!("Failed to query {:?} : {:#?}", addr, error);
|
||
|
|
}
|
||
|
|
};
|
||
|
|
eprintln!("response: {:#?}", response);
|
||
|
|
assert_eq!(response.status(), 200);
|
||
|
|
eprintln!(
|
||
|
|
"csp headers: {:#?}",
|
||
|
|
response.headers().get("content-security-policy")
|
||
|
|
);
|
||
|
|
assert_eq!(response.headers().get("content-security-policy"), None);
|
||
|
|
}
|