if (!areOriginsAllowed(originsList)) { if(LOG.isDebugEnabled()) { LOG.debug("Header origins '" + originsList + "' not allowed. Returning");
if (!areOriginsAllowed(originsList)) { if(LOG.isDebugEnabled()) { LOG.debug("Header origins '" + originsList + "' not allowed. Returning");
if (!areOriginsAllowed(originsList)) { if(LOG.isDebugEnabled()) { LOG.debug("Header origins '" + originsList + "' not allowed. Returning");
if (!areOriginsAllowed(originsList)) { if(LOG.isDebugEnabled()) { LOG.debug("Header origins '" + originsList + "' not allowed. Returning");
@Test public void testPatternMatchingOrigins() throws ServletException, IOException { // Setup the configuration settings of the server Map<String, String> conf = new HashMap<String, String>(); conf.put(CrossOriginFilter.ALLOWED_ORIGINS, "*.example.com"); FilterConfig filterConfig = new FilterConfigTest(conf); // Object under test CrossOriginFilter filter = new CrossOriginFilter(); filter.init(filterConfig); // match multiple sub-domains Assert.assertFalse(filter.areOriginsAllowed("example.com")); Assert.assertFalse(filter.areOriginsAllowed("foo:example.com")); Assert.assertTrue(filter.areOriginsAllowed("foo.example.com")); Assert.assertTrue(filter.areOriginsAllowed("foo.bar.example.com")); // First origin is allowed Assert.assertTrue(filter.areOriginsAllowed("foo.example.com foo.nomatch.com")); // Second origin is allowed Assert.assertTrue(filter.areOriginsAllowed("foo.nomatch.com foo.example.com")); // No origin in list is allowed Assert.assertFalse(filter.areOriginsAllowed("foo.nomatch1.com foo.nomatch2.com")); }
@Test public void testPatternMatchingOrigins() throws ServletException, IOException { // Setup the configuration settings of the server Map<String, String> conf = new HashMap<String, String>(); conf.put(CrossOriginFilter.ALLOWED_ORIGINS, "*.example.com"); FilterConfig filterConfig = new FilterConfigTest(conf); // Object under test CrossOriginFilter filter = new CrossOriginFilter(); filter.init(filterConfig); // match multiple sub-domains Assert.assertFalse(filter.areOriginsAllowed("example.com")); Assert.assertFalse(filter.areOriginsAllowed("foo:example.com")); Assert.assertTrue(filter.areOriginsAllowed("foo.example.com")); Assert.assertTrue(filter.areOriginsAllowed("foo.bar.example.com")); // First origin is allowed Assert.assertTrue(filter.areOriginsAllowed("foo.example.com foo.nomatch.com")); // Second origin is allowed Assert.assertTrue(filter.areOriginsAllowed("foo.nomatch.com foo.example.com")); // No origin in list is allowed Assert.assertFalse(filter.areOriginsAllowed("foo.nomatch1.com foo.nomatch2.com")); }
@Test public void testAllowAllOrigins() throws ServletException, IOException { // Setup the configuration settings of the server Map<String, String> conf = new HashMap<String, String>(); conf.put(CrossOriginFilter.ALLOWED_ORIGINS, "*"); FilterConfig filterConfig = new FilterConfigTest(conf); // Object under test CrossOriginFilter filter = new CrossOriginFilter(); filter.init(filterConfig); Assert.assertTrue(filter.areOriginsAllowed("example.com")); }
if (!areOriginsAllowed(originsList)) { if(LOG.isDebugEnabled()) { LOG.debug("Header origins '" + originsList + "' not allowed. Returning");
@Test public void testAllowAllOrigins() throws ServletException, IOException { // Setup the configuration settings of the server Map<String, String> conf = new HashMap<String, String>(); conf.put(CrossOriginFilter.ALLOWED_ORIGINS, "*"); FilterConfig filterConfig = new FilterConfigTest(conf); // Object under test CrossOriginFilter filter = new CrossOriginFilter(); filter.init(filterConfig); Assert.assertTrue(filter.areOriginsAllowed("example.com")); }
filter.getAllowedMethodsHeader() .compareTo("GET,POST") == 0); Assert.assertTrue(filter.areOriginsAllowed("example.com")); filter.getAllowedMethodsHeader() .compareTo("GET,HEAD") == 0); Assert.assertTrue(filter.areOriginsAllowed("newexample.com"));
filter.getAllowedMethodsHeader() .compareTo("GET,POST") == 0); Assert.assertTrue(filter.areOriginsAllowed("example.com")); filter.getAllowedMethodsHeader() .compareTo("GET,HEAD") == 0); Assert.assertTrue(filter.areOriginsAllowed("newexample.com"));