open-vault/http/custom_header_test.go
2022-01-27 10:06:34 -08:00

128 lines
3.8 KiB
Go

package http
import (
"testing"
"github.com/hashicorp/vault/vault"
)
var defaultCustomHeaders = map[string]string{
"Strict-Transport-Security": "max-age=1; domains",
"Content-Security-Policy": "default-src 'others'",
"X-Custom-Header": "Custom header value default",
"X-Frame-Options": "Deny",
"X-Content-Type-Options": "nosniff",
"Content-Type": "application/json",
"X-XSS-Protection": "1; mode=block",
}
var customHeader2xx = map[string]string{
"X-Custom-Header": "Custom header value 2xx",
}
var customHeader200 = map[string]string{
"Someheader-200": "200",
"X-Custom-Header": "Custom header value 200",
}
var customHeader4xx = map[string]string{
"Someheader-4xx": "4xx",
}
var customHeader400 = map[string]string{
"Someheader-400": "400",
}
var customHeader405 = map[string]string{
"Someheader-405": "405",
}
var CustomResponseHeaders = map[string]map[string]string{
"default": defaultCustomHeaders,
"307": {"X-Custom-Header": "Custom header value 307"},
"3xx": {
"X-Custom-Header": "Custom header value 3xx",
"X-Vault-Ignored-3xx": "Ignored 3xx",
},
"200": customHeader200,
"2xx": customHeader2xx,
"400": customHeader400,
"405": customHeader405,
"4xx": customHeader4xx,
}
func TestCustomResponseHeaders(t *testing.T) {
core, _, token := vault.TestCoreWithCustomResponseHeaderAndUI(t, CustomResponseHeaders, true)
ln, addr := TestServer(t, core)
defer ln.Close()
TestServerAuth(t, addr, token)
resp := testHttpGet(t, token, addr+"/v1/sys/raw/")
testResponseStatus(t, resp, 404)
testResponseHeader(t, resp, defaultCustomHeaders)
testResponseHeader(t, resp, customHeader4xx)
resp = testHttpGet(t, token, addr+"/v1/sys/seal")
testResponseStatus(t, resp, 405)
testResponseHeader(t, resp, defaultCustomHeaders)
testResponseHeader(t, resp, customHeader4xx)
testResponseHeader(t, resp, customHeader405)
resp = testHttpGet(t, token, addr+"/v1/sys/leader")
testResponseStatus(t, resp, 200)
testResponseHeader(t, resp, customHeader200)
resp = testHttpGet(t, token, addr+"/v1/sys/health")
testResponseStatus(t, resp, 200)
testResponseHeader(t, resp, customHeader200)
resp = testHttpGet(t, token, addr+"/v1/sys/generate-root/attempt")
testResponseStatus(t, resp, 200)
testResponseHeader(t, resp, customHeader200)
resp = testHttpGet(t, token, addr+"/v1/sys/generate-root/update")
testResponseStatus(t, resp, 400)
testResponseHeader(t, resp, defaultCustomHeaders)
testResponseHeader(t, resp, customHeader4xx)
testResponseHeader(t, resp, customHeader400)
resp = testHttpGet(t, token, addr+"/v1/sys/")
testResponseStatus(t, resp, 404)
testResponseHeader(t, resp, defaultCustomHeaders)
testResponseHeader(t, resp, customHeader4xx)
resp = testHttpGet(t, token, addr+"/v1/sys")
testResponseStatus(t, resp, 404)
testResponseHeader(t, resp, defaultCustomHeaders)
testResponseHeader(t, resp, customHeader4xx)
resp = testHttpGet(t, token, addr+"/v1/")
testResponseStatus(t, resp, 404)
testResponseHeader(t, resp, defaultCustomHeaders)
testResponseHeader(t, resp, customHeader4xx)
resp = testHttpGet(t, token, addr+"/v1")
testResponseStatus(t, resp, 404)
testResponseHeader(t, resp, defaultCustomHeaders)
testResponseHeader(t, resp, customHeader4xx)
resp = testHttpGet(t, token, addr+"/")
testResponseStatus(t, resp, 200)
testResponseHeader(t, resp, customHeader200)
resp = testHttpGet(t, token, addr+"/ui")
testResponseStatus(t, resp, 200)
testResponseHeader(t, resp, customHeader200)
resp = testHttpGet(t, token, addr+"/ui/")
testResponseStatus(t, resp, 200)
testResponseHeader(t, resp, customHeader200)
resp = testHttpPost(t, token, addr+"/v1/sys/auth/foo", map[string]interface{}{
"type": "noop",
"description": "foo",
})
testResponseStatus(t, resp, 204)
testResponseHeader(t, resp, customHeader2xx)
}