/
HeaderSecurityTest.php
105 lines (95 loc) · 3.19 KB
/
HeaderSecurityTest.php
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
<?php
declare(strict_types=1);
namespace LaminasTest\Diactoros;
use InvalidArgumentException;
use Laminas\Diactoros\HeaderSecurity;
use PHPUnit\Framework\TestCase;
final class HeaderSecurityTest extends TestCase
{
/**
* Data for filter value
*
* @return non-empty-list<array{non-empty-string, non-empty-string}>
*/
public function getFilterValues(): array
{
return [
["This is a\n test", "This is a test"],
["This is a\r test", "This is a test"],
["This is a\n\r test", "This is a test"],
["This is a\r\n test", "This is a\r\n test"],
["This is a \r\ntest", "This is a test"],
["This is a \r\n\n test", "This is a test"],
["This is a\n\n test", "This is a test"],
["This is a\r\r test", "This is a test"],
["This is a \r\r\n test", "This is a \r\n test"],
["This is a \r\n\r\ntest", "This is a test"],
["This is a \r\n\n\r\n test", "This is a \r\n test"],
];
}
/**
* @dataProvider getFilterValues
* @group ZF2015-04
* @param non-empty-string $value
* @param non-empty-string $expected
*/
public function testFiltersValuesPerRfc7230(string $value, string $expected): void
{
$this->assertSame($expected, HeaderSecurity::filter($value));
}
/** @return non-empty-list<array{non-empty-string, bool}> */
public function validateValues(): array
{
return [
["This is a\n test", false],
["This is a\r test", false],
["This is a\n\r test", false],
["This is a\r\n test", true],
["This is a \r\ntest", false],
["This is a \r\n\n test", false],
["This is a\n\n test", false],
["This is a\r\r test", false],
["This is a \r\r\n test", false],
["This is a \r\n\r\ntest", false],
["This is a \r\n\n\r\n test", false],
["This is a \xFF test", false],
["This is a \x7F test", false],
["This is a \x7E test", true],
];
}
/**
* @dataProvider validateValues
* @group ZF2015-04
* @param non-empty-string $value
*/
public function testValidatesValuesPerRfc7230(string $value, bool $expected): void
{
self::assertSame($expected, HeaderSecurity::isValid($value));
}
/** @return non-empty-list<array{non-empty-string}> */
public function assertValues(): array
{
return [
["This is a\n test"],
["This is a\r test"],
["This is a\n\r test"],
["This is a \r\ntest"],
["This is a \r\n\n test"],
["This is a\n\n test"],
["This is a\r\r test"],
["This is a \r\r\n test"],
["This is a \r\n\r\ntest"],
["This is a \r\n\n\r\n test"],
];
}
/**
* @dataProvider assertValues
* @group ZF2015-04
* @param non-empty-string $value
*/
public function testAssertValidRaisesExceptionForInvalidValue(string $value): void
{
$this->expectException(InvalidArgumentException::class);
HeaderSecurity::assertValid($value);
}
}