wiki.techinc.nl/tests/phpunit/includes/HttpTest.php

<?php
/**
 * @group Broken
 */
class HttpTest extends MediaWikiTestCase {
	/**
	 * @dataProvider cookieDomains
	 */
	function testValidateCookieDomain( $expected, $domain, $origin = null ) {
		if ( $origin ) {
			$ok = Cookie::validateCookieDomain( $domain, $origin );
			$msg = "$domain against origin $origin";
		} else {
			$ok = Cookie::validateCookieDomain( $domain );
			$msg = "$domain";
		}
		$this->assertEquals( $expected, $ok, $msg );
	}

	function cookieDomains() {
		return array(
			array( false, "org"),
			array( false, ".org"),
			array( true, "wikipedia.org"),
			array( true, ".wikipedia.org"),
			array( false, "co.uk" ),
			array( false, ".co.uk" ),
			array( false, "gov.uk" ),
			array( false, ".gov.uk" ),
			array( true, "supermarket.uk" ),
			array( false, "uk" ),
			array( false, ".uk" ),
			array( false, "127.0.0." ),
			array( false, "127." ),
			array( false, "127.0.0.1." ),
			array( true, "127.0.0.1" ),
			array( false, "333.0.0.1" ),
			array( true, "example.com" ),
			array( false, "example.com." ),
			array( true, ".example.com" ),

			array( true, ".example.com", "www.example.com" ),
			array( false, "example.com", "www.example.com" ),
			array( true, "127.0.0.1", "127.0.0.1" ),
			array( false, "127.0.0.1", "localhost" ),
		);
	}

	/**
	 * Test Http::isValidURI()
	 * @bug 27854 : Http::isValidURI is too lax
	 * @dataProvider provideURI
	 */
	function testIsValidUri( $expect, $URI, $message = '' ) {
		$this->assertEquals(
			$expect,
			(bool) Http::isValidURI( $URI ),
			$message
		);
	}

	/**
	 * Feeds URI to test a long regular expression in Http::isValidURI
	 */
	function provideURI() {
		/** Format: 'boolean expectation', 'URI to test', 'Optional message' */
		return array(
			array( false, '¿non sens before!! http://a', 'Allow anything before URI' ),

			# (http|https) - only two schemes allowed
			array( true,  'http://www.example.org/' ),
			array( true,  'https://www.example.org/' ),
			array( true,  'http://www.example.org', 'URI without directory' ),
			array( true,  'http://a', 'Short name' ),
			array( true, 'http://étoile', 'Allow UTF-8 in hostname' ),  # 'étoile' is french for 'star'
			array( false, '\\host\directory', 'CIFS share' ),
			array( false, 'gopher://host/dir', 'Reject gopher scheme' ),
			array( false, 'telnet://host', 'Reject telnet scheme' ),

			# :\/\/ - double slashes
			array( false,  'http//example.org', 'Reject missing colon in protocol' ),
			array( false,  'http:/example.org', 'Reject missing slash in protocol' ),
			array( false,  'http:example.org', 'Must have two slashes' ),
			# Following fail since hostname can be made of anything
			array( false,  'http:///example.org', 'Must have exactly two slashes, not three' ),

			# (\w+:{0,1}\w*@)? - optional user:pass
			array( true,  'http://user@host', 'Username provided' ),
			array( true,  'http://user:@host', 'Username provided, no password' ),
			array( true,  'http://user:pass@host', 'Username and password provided' ),

			# (\S+) - host part is made of anything not whitespaces
			array( false, 'http://!"èèè¿¿¿~~\'', 'hostname is made of any non whitespace' ),
			array( false, 'http://exam:ple.org/', 'hostname can not use colons!' ),

			# (:[0-9]+)? - port number
			array( true, 'http://example.org:80/' ),
			array( true, 'https://example.org:80/' ),
			array( true, 'http://example.org:443/' ),
			array( true, 'https://example.org:443/' ),

			# Part after the hostname is / or / with something else
			array( true, 'http://example/#' ),
			array( true, 'http://example/!' ),
			array( true, 'http://example/:' ),
			array( true, 'http://example/.' ),
			array( true, 'http://example/?' ),
			array( true, 'http://example/+' ),
			array( true, 'http://example/=' ),
			array( true, 'http://example/&' ),
			array( true, 'http://example/%' ),
			array( true, 'http://example/@' ),
			array( true, 'http://example/-' ),
			array( true, 'http://example//' ),
			array( true, 'http://example/&' ),

			# Fragment
			array( true, 'http://exam#ple.org', ),  # This one is valid, really!
			array( true, 'http://example.org:80#anchor' ),
			array( true, 'http://example.org/?id#anchor' ),
			array( true, 'http://example.org/?#anchor' ),

			array( false, 'http://a ¿non !!sens after', 'Allow anything after URI' ),
		);
	}

}
Per wikitech-l discussion: Move tests from maintenance/tests/ to tests/. They're not strictly maintenance scripts, and some people want to do a selective checkout that doesn't include the tests. There's still debate on whether we should include these in the release downloads, but we had a pretty firm consensus to move this. 2010-12-14 16:26:35 +00:00			`<?php`
			`/**`
			`* @group Broken`
			`*/`
* verbose and color default output from phpunit * Make a bunch of tests subclass MediaWikiTestCase * Parser tests and ResourceLoaderTest can't subclass it yet due to various issues 2010-12-28 18:17:16 +00:00			`class HttpTest extends MediaWikiTestCase {`
Refactor validateCookieDomain test cases to use a data provider and report which bit's being tested so we can identify failures (there is still one failure in this set) 2011-06-01 22:13:47 +00:00			`/**`
			`* @dataProvider cookieDomains`
			`*/`
Gut anything from HttpTest that involves making external requests and setting cookies - the way we do this suite needs to be completely rethought. Chalk this up as an example of how not to write unit tests. Still have 5 failures :( 2011-09-08 14:04:36 +00:00			`function testValidateCookieDomain( $expected, $domain, $origin = null ) {`
Refactor validateCookieDomain test cases to use a data provider and report which bit's being tested so we can identify failures (there is still one failure in this set) 2011-06-01 22:13:47 +00:00			`if ( $origin ) {`
			`$ok = Cookie::validateCookieDomain( $domain, $origin );`
			`$msg = "$domain against origin $origin";`
			`} else {`
			`$ok = Cookie::validateCookieDomain( $domain );`
			`$msg = "$domain";`
			`}`
			`$this->assertEquals( $expected, $ok, $msg );`
			`}`
Gut anything from HttpTest that involves making external requests and setting cookies - the way we do this suite needs to be completely rethought. Chalk this up as an example of how not to write unit tests. Still have 5 failures :( 2011-09-08 14:04:36 +00:00
Refactor validateCookieDomain test cases to use a data provider and report which bit's being tested so we can identify failures (there is still one failure in this set) 2011-06-01 22:13:47 +00:00			`function cookieDomains() {`
			`return array(`
Add more super-cookie test cases to HttpTest; things like org & .org aren't being handled correctly either. Not super high prio but... should probably mark these tests broken if can't be fixed easily yet. 2011-06-01 22:27:24 +00:00			`array( false, "org"),`
			`array( false, ".org"),`
			`array( true, "wikipedia.org"),`
			`array( true, ".wikipedia.org"),`
Refactor validateCookieDomain test cases to use a data provider and report which bit's being tested so we can identify failures (there is still one failure in this set) 2011-06-01 22:13:47 +00:00			`array( false, "co.uk" ),`
			`array( false, ".co.uk" ),`
			`array( false, "gov.uk" ),`
			`array( false, ".gov.uk" ),`
			`array( true, "supermarket.uk" ),`
			`array( false, "uk" ),`
			`array( false, ".uk" ),`
			`array( false, "127.0.0." ),`
			`array( false, "127." ),`
			`array( false, "127.0.0.1." ),`
			`array( true, "127.0.0.1" ),`
			`array( false, "333.0.0.1" ),`
			`array( true, "example.com" ),`
			`array( false, "example.com." ),`
			`array( true, ".example.com" ),`

			`array( true, ".example.com", "www.example.com" ),`
			`array( false, "example.com", "www.example.com" ),`
			`array( true, "127.0.0.1", "127.0.0.1" ),`
			`array( false, "127.0.0.1", "localhost" ),`
			`);`
Per wikitech-l discussion: Move tests from maintenance/tests/ to tests/. They're not strictly maintenance scripts, and some people want to do a selective checkout that doesn't include the tests. There's still debate on whether we should include these in the release downloads, but we had a pretty firm consensus to move this. 2010-12-14 16:26:35 +00:00			`}`

Tests for bug 27854 - Http::isValidURI is to lax Those tests are made to help someone fix bug 27854. You might want to add some more. Please note we want this function to only validate curl supported URI, hence the hardcoded protocols http,https and ftp. Some of those tests currently fail because of bug 27854. 2011-03-05 16:15:39 +00:00			`/**`
			`* Test Http::isValidURI()`
More documentation! 2011-10-26 04:15:09 +00:00			`* @bug 27854 : Http::isValidURI is too lax`
Gut anything from HttpTest that involves making external requests and setting cookies - the way we do this suite needs to be completely rethought. Chalk this up as an example of how not to write unit tests. Still have 5 failures :( 2011-09-08 14:04:36 +00:00			`* @dataProvider provideURI`
			`*/`
Tests for bug 27854 - Http::isValidURI is to lax Those tests are made to help someone fix bug 27854. You might want to add some more. Please note we want this function to only validate curl supported URI, hence the hardcoded protocols http,https and ftp. Some of those tests currently fail because of bug 27854. 2011-03-05 16:15:39 +00:00			`function testIsValidUri( $expect, $URI, $message = '' ) {`
			`$this->assertEquals(`
			`$expect,`
			`(bool) Http::isValidURI( $URI ),`
			`$message`
			`);`
			`}`

			`/**`
			`* Feeds URI to test a long regular expression in Http::isValidURI`
			`*/`
			`function provideURI() {`
			`/** Format: 'boolean expectation', 'URI to test', 'Optional message' */`
			`return array(`
			`array( false, '¿non sens before!! http://a', 'Allow anything before URI' ),`

grumble grumble stupid fime on r90192 2011-06-21 21:38:29 +00:00			`# (http\|https) - only two schemes allowed`
Tests for bug 27854 - Http::isValidURI is to lax Those tests are made to help someone fix bug 27854. You might want to add some more. Please note we want this function to only validate curl supported URI, hence the hardcoded protocols http,https and ftp. Some of those tests currently fail because of bug 27854. 2011-03-05 16:15:39 +00:00			`array( true, 'http://www.example.org/' ),`
			`array( true, 'https://www.example.org/' ),`
			`array( true, 'http://www.example.org', 'URI without directory' ),`
			`array( true, 'http://a', 'Short name' ),`
			`array( true, 'http://étoile', 'Allow UTF-8 in hostname' ), # 'étoile' is french for 'star'`
			`array( false, '\\host\directory', 'CIFS share' ),`
			`array( false, 'gopher://host/dir', 'Reject gopher scheme' ),`
			`array( false, 'telnet://host', 'Reject telnet scheme' ),`
More documentation! 2011-10-26 04:15:09 +00:00
Tests for bug 27854 - Http::isValidURI is to lax Those tests are made to help someone fix bug 27854. You might want to add some more. Please note we want this function to only validate curl supported URI, hence the hardcoded protocols http,https and ftp. Some of those tests currently fail because of bug 27854. 2011-03-05 16:15:39 +00:00			`# :\/\/ - double slashes`
switch 'column' for 'colon' I always thought the colon and semicolon punctuation marks were named after their architectural equivalent: column. At least, to me, it made more sens than using a term relating to thedigestive system. Per Nikerabbit r83296 2011-03-08 07:27:18 +00:00			`array( false, 'http//example.org', 'Reject missing colon in protocol' ),`
Tests for bug 27854 - Http::isValidURI is to lax Those tests are made to help someone fix bug 27854. You might want to add some more. Please note we want this function to only validate curl supported URI, hence the hardcoded protocols http,https and ftp. Some of those tests currently fail because of bug 27854. 2011-03-05 16:15:39 +00:00			`array( false, 'http:/example.org', 'Reject missing slash in protocol' ),`
			`array( false, 'http:example.org', 'Must have two slashes' ),`
			`# Following fail since hostname can be made of anything`
			`array( false, 'http:///example.org', 'Must have exactly two slashes, not three' ),`

			`# (\w+:{0,1}\w*@)? - optional user:pass`
			`array( true, 'http://user@host', 'Username provided' ),`
			`array( true, 'http://user:@host', 'Username provided, no password' ),`
			`array( true, 'http://user:pass@host', 'Username and password provided' ),`

			`# (\S+) - host part is made of anything not whitespaces`
			`array( false, 'http://!"èèè¿¿¿~~\'', 'hostname is made of any non whitespace' ),`
switch 'column' for 'colon' I always thought the colon and semicolon punctuation marks were named after their architectural equivalent: column. At least, to me, it made more sens than using a term relating to thedigestive system. Per Nikerabbit r83296 2011-03-08 07:27:18 +00:00			`array( false, 'http://exam:ple.org/', 'hostname can not use colons!' ),`
Tests for bug 27854 - Http::isValidURI is to lax Those tests are made to help someone fix bug 27854. You might want to add some more. Please note we want this function to only validate curl supported URI, hence the hardcoded protocols http,https and ftp. Some of those tests currently fail because of bug 27854. 2011-03-05 16:15:39 +00:00
			`# (:[0-9]+)? - port number`
			`array( true, 'http://example.org:80/' ),`
			`array( true, 'https://example.org:80/' ),`
			`array( true, 'http://example.org:443/' ),`
			`array( true, 'https://example.org:443/' ),`

			`# Part after the hostname is / or / with something else`
			`array( true, 'http://example/#' ),`
			`array( true, 'http://example/!' ),`
			`array( true, 'http://example/:' ),`
			`array( true, 'http://example/.' ),`
			`array( true, 'http://example/?' ),`
			`array( true, 'http://example/+' ),`
			`array( true, 'http://example/=' ),`
			`array( true, 'http://example/&' ),`
			`array( true, 'http://example/%' ),`
			`array( true, 'http://example/@' ),`
			`array( true, 'http://example/-' ),`
			`array( true, 'http://example//' ),`
			`array( true, 'http://example/&' ),`

			`# Fragment`
			`array( true, 'http://exam#ple.org', ), # This one is valid, really!`
			`array( true, 'http://example.org:80#anchor' ),`
			`array( true, 'http://example.org/?id#anchor' ),`
			`array( true, 'http://example.org/?#anchor' ),`

			`array( false, 'http://a ¿non !!sens after', 'Allow anything after URI' ),`
			`);`
			`}`

Per wikitech-l discussion: Move tests from maintenance/tests/ to tests/. They're not strictly maintenance scripts, and some people want to do a selective checkout that doesn't include the tests. There's still debate on whether we should include these in the release downloads, but we had a pretty firm consensus to move this. 2010-12-14 16:26:35 +00:00			`}`