public virtual void TestDisallowedMethod()
{
// Setup the configuration settings of the server
IDictionary <string, string> conf = new Dictionary <string, string>();
conf[CrossOriginFilter.AllowedOrigins] = "example.com";
FilterConfig filterConfig = new TestCrossOriginFilter.FilterConfigTest(conf);
// Origin is not specified for same origin requests
HttpServletRequest mockReq = Org.Mockito.Mockito.Mock <HttpServletRequest>();
Org.Mockito.Mockito.When(mockReq.GetHeader(CrossOriginFilter.Origin)).ThenReturn(
"example.com");
Org.Mockito.Mockito.When(mockReq.GetHeader(CrossOriginFilter.AccessControlRequestMethod
)).ThenReturn("DISALLOWED_METHOD");
// Objects to verify interactions based on request
HttpServletResponse mockRes = Org.Mockito.Mockito.Mock <HttpServletResponse>();
FilterChain mockChain = Org.Mockito.Mockito.Mock <FilterChain>();
// Object under test
CrossOriginFilter filter = new CrossOriginFilter();
filter.Init(filterConfig);
filter.DoFilter(mockReq, mockRes, mockChain);
Org.Mockito.Mockito.VerifyZeroInteractions(mockRes);
Org.Mockito.Mockito.Verify(mockChain).DoFilter(mockReq, mockRes);
}
public virtual void TestCrossOriginFilter()
{
// Setup the configuration settings of the server
IDictionary <string, string> conf = new Dictionary <string, string>();
conf[CrossOriginFilter.AllowedOrigins] = "example.com";
FilterConfig filterConfig = new TestCrossOriginFilter.FilterConfigTest(conf);
// Origin is not specified for same origin requests
HttpServletRequest mockReq = Org.Mockito.Mockito.Mock <HttpServletRequest>();
Org.Mockito.Mockito.When(mockReq.GetHeader(CrossOriginFilter.Origin)).ThenReturn(
"example.com");
Org.Mockito.Mockito.When(mockReq.GetHeader(CrossOriginFilter.AccessControlRequestMethod
)).ThenReturn("GET");
Org.Mockito.Mockito.When(mockReq.GetHeader(CrossOriginFilter.AccessControlRequestHeaders
)).ThenReturn("X-Requested-With");
// Objects to verify interactions based on request
HttpServletResponse mockRes = Org.Mockito.Mockito.Mock <HttpServletResponse>();
FilterChain mockChain = Org.Mockito.Mockito.Mock <FilterChain>();
// Object under test
CrossOriginFilter filter = new CrossOriginFilter();
filter.Init(filterConfig);
filter.DoFilter(mockReq, mockRes, mockChain);
Org.Mockito.Mockito.Verify(mockRes).SetHeader(CrossOriginFilter.AccessControlAllowOrigin
, "example.com");
Org.Mockito.Mockito.Verify(mockRes).SetHeader(CrossOriginFilter.AccessControlAllowCredentials
, true.ToString());
Org.Mockito.Mockito.Verify(mockRes).SetHeader(CrossOriginFilter.AccessControlAllowMethods
, filter.GetAllowedMethodsHeader());
Org.Mockito.Mockito.Verify(mockRes).SetHeader(CrossOriginFilter.AccessControlAllowHeaders
, filter.GetAllowedHeadersHeader());
Org.Mockito.Mockito.Verify(mockChain).DoFilter(mockReq, mockRes);
}
public virtual void TestSameOrigin()
{
// Setup the configuration settings of the server
IDictionary <string, string> conf = new Dictionary <string, string>();
conf[CrossOriginFilter.AllowedOrigins] = string.Empty;
FilterConfig filterConfig = new TestCrossOriginFilter.FilterConfigTest(conf);
// Origin is not specified for same origin requests
HttpServletRequest mockReq = Org.Mockito.Mockito.Mock <HttpServletRequest>();
Org.Mockito.Mockito.When(mockReq.GetHeader(CrossOriginFilter.Origin)).ThenReturn(
null);
// Objects to verify interactions based on request
HttpServletResponse mockRes = Org.Mockito.Mockito.Mock <HttpServletResponse>();
FilterChain mockChain = Org.Mockito.Mockito.Mock <FilterChain>();
// Object under test
CrossOriginFilter filter = new CrossOriginFilter();
filter.Init(filterConfig);
filter.DoFilter(mockReq, mockRes, mockChain);
Org.Mockito.Mockito.VerifyZeroInteractions(mockRes);
Org.Mockito.Mockito.Verify(mockChain).DoFilter(mockReq, mockRes);
}
