angular_rails_csrf 4.3.0 → 4.4.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/lib/angular_rails_csrf/concern.rb +1 -1
- data/lib/angular_rails_csrf/version.rb +1 -1
- data/test/angular_rails_csrf_skip_test.rb +14 -0
- data/test/dummy/app/controllers/api_controller.rb +7 -0
- data/test/dummy/config.ru +1 -1
- data/test/dummy/config/routes.rb +2 -0
- data/test/dummy/log/test.log +315 -0
- metadata +9 -5
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA256:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: f310f1cd6d8278d5b0a669bb7123a802b68cfdcda1ec443de09b85a757c10eb3
|
4
|
+
data.tar.gz: 4eaec5f2dcf567dd0b8cf2c7374a0a1b95c965f3226204b729cfff7aa765f6ea
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: e44c7ab3ebfefe2dbcbe184243d03ba5f0eac7aa7b0b760aaf7cbd878468394cc519e7433bf72ef2dfd8ffcf3e0e099a18290035b86760e5143bf11a3236f42f
|
7
|
+
data.tar.gz: 57ce6512718fd75d5fbeb82e54577314b448b3c1b9e4714ad9b8b1021033501bc481e2d70a4f1b3c930727aa020a827535a357319e7a8928ba10e158d6ce8478
|
@@ -9,7 +9,7 @@ module AngularRailsCsrf
|
|
9
9
|
end
|
10
10
|
|
11
11
|
def set_xsrf_token_cookie
|
12
|
-
return unless protect_against_forgery? && !respond_to?(:__exclude_xsrf_token_cookie?)
|
12
|
+
return unless defined?(protect_against_forgery?) && protect_against_forgery? && !respond_to?(:__exclude_xsrf_token_cookie?)
|
13
13
|
|
14
14
|
config = Rails.application.config
|
15
15
|
|
@@ -0,0 +1,14 @@
|
|
1
|
+
# frozen_string_literal: true
|
2
|
+
|
3
|
+
require 'test_helper'
|
4
|
+
|
5
|
+
class AngularRailsCsrfSkipTest < ActionController::TestCase
|
6
|
+
tests ApiController
|
7
|
+
|
8
|
+
test 'csrf-cookie is not set and no error if protect_against_forgery? is not defined' do
|
9
|
+
refute @controller.respond_to?(:protect_against_forgery?)
|
10
|
+
get :index
|
11
|
+
assert_nil cookies['XSRF-TOKEN']
|
12
|
+
assert_response :success
|
13
|
+
end
|
14
|
+
end
|
data/test/dummy/config.ru
CHANGED
data/test/dummy/config/routes.rb
CHANGED
data/test/dummy/log/test.log
CHANGED
@@ -1619,3 +1619,318 @@ AngularRailsCsrfExceptionTest: test_a_get_does_not_set_the_XSRF-TOKEN_cookie
|
|
1619
1619
|
----------------------------------------------------------------------------
|
1620
1620
|
Processing by ExclusionsController#index as HTML
|
1621
1621
|
Completed 200 OK in 0ms (Allocations: 71)
|
1622
|
+
-------------------------------------------------------------------------
|
1623
|
+
AngularRailsCsrfTest: test_csrf-cookie_is_not_set_if_exclusion_is_enabled
|
1624
|
+
-------------------------------------------------------------------------
|
1625
|
+
Processing by ApplicationController#index as HTML
|
1626
|
+
Completed 200 OK in 0ms (Allocations: 132)
|
1627
|
+
-----------------------------------------------------------------------------------------------------
|
1628
|
+
AngularRailsCsrfTest: test_a_post_raises_an_error_with_the_X-XSRF-TOKEN_header_set_to_the_wrong_value
|
1629
|
+
-----------------------------------------------------------------------------------------------------
|
1630
|
+
Processing by ApplicationController#create as HTML
|
1631
|
+
Can't verify CSRF token authenticity.
|
1632
|
+
Completed 422 Unprocessable Entity in 0ms (Allocations: 116)
|
1633
|
+
-------------------------------------------------------------
|
1634
|
+
AngularRailsCsrfTest: test_same_site_is_set_to_Lax_by_default
|
1635
|
+
-------------------------------------------------------------
|
1636
|
+
Processing by ApplicationController#index as HTML
|
1637
|
+
Completed 200 OK in 0ms (Allocations: 121)
|
1638
|
+
------------------------------------------------------------------------------------
|
1639
|
+
AngularRailsCsrfTest: test_secure_is_set_automatically_when_same_site_is_set_to_none
|
1640
|
+
------------------------------------------------------------------------------------
|
1641
|
+
Processing by ApplicationController#index as HTML
|
1642
|
+
Completed 200 OK in 0ms (Allocations: 108)
|
1643
|
+
-------------------------------------------------------------------------------------
|
1644
|
+
AngularRailsCsrfTest: test_a_post_raises_an_error_without_the_X-XSRF-TOKEN_header_set
|
1645
|
+
-------------------------------------------------------------------------------------
|
1646
|
+
Processing by ApplicationController#create as HTML
|
1647
|
+
Can't verify CSRF token authenticity.
|
1648
|
+
Completed 422 Unprocessable Entity in 0ms (Allocations: 98)
|
1649
|
+
---------------------------------------------------------------
|
1650
|
+
AngularRailsCsrfTest: test_the_secure_flag_is_set_if_configured
|
1651
|
+
---------------------------------------------------------------
|
1652
|
+
Processing by ApplicationController#index as HTML
|
1653
|
+
Completed 200 OK in 0ms (Allocations: 108)
|
1654
|
+
-----------------------------------------------------------------------------
|
1655
|
+
AngularRailsCsrfTest: test_a_post_is_accepted_if_X-XSRF-TOKEN_is_set_properly
|
1656
|
+
-----------------------------------------------------------------------------
|
1657
|
+
Processing by ApplicationController#create as HTML
|
1658
|
+
Completed 200 OK in 0ms (Allocations: 129)
|
1659
|
+
------------------------------------------------------
|
1660
|
+
AngularRailsCsrfTest: test_same_site_can_be_configured
|
1661
|
+
------------------------------------------------------
|
1662
|
+
Processing by ApplicationController#index as HTML
|
1663
|
+
Completed 200 OK in 0ms (Allocations: 108)
|
1664
|
+
-----------------------------------------------------------
|
1665
|
+
AngularRailsCsrfTest: test_a_custom_name_is_used_if_present
|
1666
|
+
-----------------------------------------------------------
|
1667
|
+
Processing by ApplicationController#index as HTML
|
1668
|
+
Completed 200 OK in 0ms (Allocations: 108)
|
1669
|
+
--------------------------------------------------------------------------------------------------------
|
1670
|
+
AngularRailsCsrfTest: test_a_get_sets_the_XSRF-TOKEN_cookie_but_does_not_require_the_X-XSRF-TOKEN_header
|
1671
|
+
--------------------------------------------------------------------------------------------------------
|
1672
|
+
Processing by ApplicationController#index as HTML
|
1673
|
+
Completed 200 OK in 0ms (Allocations: 108)
|
1674
|
+
--------------------------------------------------------
|
1675
|
+
AngularRailsCsrfTest: test_the_domain_is_used_if_present
|
1676
|
+
--------------------------------------------------------
|
1677
|
+
Processing by ApplicationController#index as HTML
|
1678
|
+
Completed 200 OK in 0ms (Allocations: 119)
|
1679
|
+
----------------------------------------------------------------------------
|
1680
|
+
AngularRailsCsrfExceptionTest: test_a_get_does_not_set_the_XSRF-TOKEN_cookie
|
1681
|
+
----------------------------------------------------------------------------
|
1682
|
+
Processing by ExclusionsController#index as HTML
|
1683
|
+
Completed 200 OK in 0ms (Allocations: 71)
|
1684
|
+
-----------------------------------------------------------------------------------------------------
|
1685
|
+
AngularRailsCsrfTest: test_a_post_raises_an_error_with_the_X-XSRF-TOKEN_header_set_to_the_wrong_value
|
1686
|
+
-----------------------------------------------------------------------------------------------------
|
1687
|
+
Processing by ApplicationController#create as HTML
|
1688
|
+
Can't verify CSRF token authenticity.
|
1689
|
+
Completed 422 Unprocessable Entity in 0ms (Allocations: 162)
|
1690
|
+
-----------------------------------------------------------------------------
|
1691
|
+
AngularRailsCsrfTest: test_a_post_is_accepted_if_X-XSRF-TOKEN_is_set_properly
|
1692
|
+
-----------------------------------------------------------------------------
|
1693
|
+
Processing by ApplicationController#create as HTML
|
1694
|
+
Completed 200 OK in 0ms (Allocations: 148)
|
1695
|
+
--------------------------------------------------------
|
1696
|
+
AngularRailsCsrfTest: test_the_domain_is_used_if_present
|
1697
|
+
--------------------------------------------------------
|
1698
|
+
Processing by ApplicationController#index as HTML
|
1699
|
+
Completed 200 OK in 0ms (Allocations: 120)
|
1700
|
+
-------------------------------------------------------------------------
|
1701
|
+
AngularRailsCsrfTest: test_csrf-cookie_is_not_set_if_exclusion_is_enabled
|
1702
|
+
-------------------------------------------------------------------------
|
1703
|
+
Processing by ApplicationController#index as HTML
|
1704
|
+
Completed 200 OK in 0ms (Allocations: 74)
|
1705
|
+
-------------------------------------------------------------
|
1706
|
+
AngularRailsCsrfTest: test_same_site_is_set_to_Lax_by_default
|
1707
|
+
-------------------------------------------------------------
|
1708
|
+
Processing by ApplicationController#index as HTML
|
1709
|
+
Completed 200 OK in 0ms (Allocations: 108)
|
1710
|
+
-----------------------------------------------------------
|
1711
|
+
AngularRailsCsrfTest: test_a_custom_name_is_used_if_present
|
1712
|
+
-----------------------------------------------------------
|
1713
|
+
Processing by ApplicationController#index as HTML
|
1714
|
+
Completed 200 OK in 0ms (Allocations: 108)
|
1715
|
+
--------------------------------------------------------------------------------------------------------
|
1716
|
+
AngularRailsCsrfTest: test_a_get_sets_the_XSRF-TOKEN_cookie_but_does_not_require_the_X-XSRF-TOKEN_header
|
1717
|
+
--------------------------------------------------------------------------------------------------------
|
1718
|
+
Processing by ApplicationController#index as HTML
|
1719
|
+
Completed 200 OK in 0ms (Allocations: 108)
|
1720
|
+
------------------------------------------------------------------------------------
|
1721
|
+
AngularRailsCsrfTest: test_secure_is_set_automatically_when_same_site_is_set_to_none
|
1722
|
+
------------------------------------------------------------------------------------
|
1723
|
+
Processing by ApplicationController#index as HTML
|
1724
|
+
Completed 200 OK in 0ms (Allocations: 108)
|
1725
|
+
-------------------------------------------------------------------------------------
|
1726
|
+
AngularRailsCsrfTest: test_a_post_raises_an_error_without_the_X-XSRF-TOKEN_header_set
|
1727
|
+
-------------------------------------------------------------------------------------
|
1728
|
+
Processing by ApplicationController#create as HTML
|
1729
|
+
Can't verify CSRF token authenticity.
|
1730
|
+
Completed 422 Unprocessable Entity in 0ms (Allocations: 98)
|
1731
|
+
------------------------------------------------------
|
1732
|
+
AngularRailsCsrfTest: test_same_site_can_be_configured
|
1733
|
+
------------------------------------------------------
|
1734
|
+
Processing by ApplicationController#index as HTML
|
1735
|
+
Completed 200 OK in 0ms (Allocations: 108)
|
1736
|
+
---------------------------------------------------------------
|
1737
|
+
AngularRailsCsrfTest: test_the_secure_flag_is_set_if_configured
|
1738
|
+
---------------------------------------------------------------
|
1739
|
+
Processing by ApplicationController#index as HTML
|
1740
|
+
Completed 200 OK in 0ms (Allocations: 108)
|
1741
|
+
----------------------------------------------------------------------------
|
1742
|
+
AngularRailsCsrfExceptionTest: test_a_get_does_not_set_the_XSRF-TOKEN_cookie
|
1743
|
+
----------------------------------------------------------------------------
|
1744
|
+
Processing by ExclusionsController#index as HTML
|
1745
|
+
Completed 200 OK in 0ms (Allocations: 71)
|
1746
|
+
----------------------------------------------------------------------------
|
1747
|
+
AngularRailsCsrfExceptionTest: test_a_get_does_not_set_the_XSRF-TOKEN_cookie
|
1748
|
+
----------------------------------------------------------------------------
|
1749
|
+
Processing by ExclusionsController#index as HTML
|
1750
|
+
Completed 200 OK in 0ms (Allocations: 128)
|
1751
|
+
-------------------------------------------------------------
|
1752
|
+
AngularRailsCsrfTest: test_same_site_is_set_to_Lax_by_default
|
1753
|
+
-------------------------------------------------------------
|
1754
|
+
Processing by ApplicationController#index as HTML
|
1755
|
+
Completed 200 OK in 0ms (Allocations: 109)
|
1756
|
+
------------------------------------------------------------------------------------
|
1757
|
+
AngularRailsCsrfTest: test_secure_is_set_automatically_when_same_site_is_set_to_none
|
1758
|
+
------------------------------------------------------------------------------------
|
1759
|
+
Processing by ApplicationController#index as HTML
|
1760
|
+
Completed 200 OK in 0ms (Allocations: 104)
|
1761
|
+
---------------------------------------------------------------
|
1762
|
+
AngularRailsCsrfTest: test_the_secure_flag_is_set_if_configured
|
1763
|
+
---------------------------------------------------------------
|
1764
|
+
Processing by ApplicationController#index as HTML
|
1765
|
+
Completed 200 OK in 0ms (Allocations: 104)
|
1766
|
+
--------------------------------------------------------
|
1767
|
+
AngularRailsCsrfTest: test_the_domain_is_used_if_present
|
1768
|
+
--------------------------------------------------------
|
1769
|
+
Processing by ApplicationController#index as HTML
|
1770
|
+
Completed 200 OK in 0ms (Allocations: 115)
|
1771
|
+
-------------------------------------------------------------------------
|
1772
|
+
AngularRailsCsrfTest: test_csrf-cookie_is_not_set_if_exclusion_is_enabled
|
1773
|
+
-------------------------------------------------------------------------
|
1774
|
+
Processing by ApplicationController#index as HTML
|
1775
|
+
Completed 200 OK in 0ms (Allocations: 74)
|
1776
|
+
-----------------------------------------------------------------------------
|
1777
|
+
AngularRailsCsrfTest: test_a_post_is_accepted_if_X-XSRF-TOKEN_is_set_properly
|
1778
|
+
-----------------------------------------------------------------------------
|
1779
|
+
Processing by ApplicationController#create as HTML
|
1780
|
+
Completed 200 OK in 0ms (Allocations: 131)
|
1781
|
+
--------------------------------------------------------------------------------------------------------
|
1782
|
+
AngularRailsCsrfTest: test_a_get_sets_the_XSRF-TOKEN_cookie_but_does_not_require_the_X-XSRF-TOKEN_header
|
1783
|
+
--------------------------------------------------------------------------------------------------------
|
1784
|
+
Processing by ApplicationController#index as HTML
|
1785
|
+
Completed 200 OK in 0ms (Allocations: 104)
|
1786
|
+
-----------------------------------------------------------
|
1787
|
+
AngularRailsCsrfTest: test_a_custom_name_is_used_if_present
|
1788
|
+
-----------------------------------------------------------
|
1789
|
+
Processing by ApplicationController#index as HTML
|
1790
|
+
Completed 200 OK in 0ms (Allocations: 104)
|
1791
|
+
-----------------------------------------------------------------------------------------------------
|
1792
|
+
AngularRailsCsrfTest: test_a_post_raises_an_error_with_the_X-XSRF-TOKEN_header_set_to_the_wrong_value
|
1793
|
+
-----------------------------------------------------------------------------------------------------
|
1794
|
+
Processing by ApplicationController#create as HTML
|
1795
|
+
Can't verify CSRF token authenticity.
|
1796
|
+
Completed 422 Unprocessable Entity in 0ms (Allocations: 110)
|
1797
|
+
-------------------------------------------------------------------------------------
|
1798
|
+
AngularRailsCsrfTest: test_a_post_raises_an_error_without_the_X-XSRF-TOKEN_header_set
|
1799
|
+
-------------------------------------------------------------------------------------
|
1800
|
+
Processing by ApplicationController#create as HTML
|
1801
|
+
Can't verify CSRF token authenticity.
|
1802
|
+
Completed 422 Unprocessable Entity in 0ms (Allocations: 98)
|
1803
|
+
------------------------------------------------------
|
1804
|
+
AngularRailsCsrfTest: test_same_site_can_be_configured
|
1805
|
+
------------------------------------------------------
|
1806
|
+
Processing by ApplicationController#index as HTML
|
1807
|
+
Completed 200 OK in 0ms (Allocations: 104)
|
1808
|
+
----------------------------------------------------------------------------
|
1809
|
+
AngularRailsCsrfExceptionTest: test_a_get_does_not_set_the_XSRF-TOKEN_cookie
|
1810
|
+
----------------------------------------------------------------------------
|
1811
|
+
Processing by ExclusionsController#index as HTML
|
1812
|
+
Completed 200 OK in 0ms (Allocations: 128)
|
1813
|
+
-------------------------------------------------------------------------
|
1814
|
+
AngularRailsCsrfTest: test_csrf-cookie_is_not_set_if_exclusion_is_enabled
|
1815
|
+
-------------------------------------------------------------------------
|
1816
|
+
Processing by ApplicationController#index as HTML
|
1817
|
+
Completed 200 OK in 0ms (Allocations: 74)
|
1818
|
+
-------------------------------------------------------------
|
1819
|
+
AngularRailsCsrfTest: test_same_site_is_set_to_Lax_by_default
|
1820
|
+
-------------------------------------------------------------
|
1821
|
+
Processing by ApplicationController#index as HTML
|
1822
|
+
Completed 200 OK in 0ms (Allocations: 109)
|
1823
|
+
-----------------------------------------------------------------------------------------------------
|
1824
|
+
AngularRailsCsrfTest: test_a_post_raises_an_error_with_the_X-XSRF-TOKEN_header_set_to_the_wrong_value
|
1825
|
+
-----------------------------------------------------------------------------------------------------
|
1826
|
+
Processing by ApplicationController#create as HTML
|
1827
|
+
Can't verify CSRF token authenticity.
|
1828
|
+
Completed 422 Unprocessable Entity in 0ms (Allocations: 116)
|
1829
|
+
------------------------------------------------------
|
1830
|
+
AngularRailsCsrfTest: test_same_site_can_be_configured
|
1831
|
+
------------------------------------------------------
|
1832
|
+
Processing by ApplicationController#index as HTML
|
1833
|
+
Completed 200 OK in 0ms (Allocations: 104)
|
1834
|
+
-------------------------------------------------------------------------------------
|
1835
|
+
AngularRailsCsrfTest: test_a_post_raises_an_error_without_the_X-XSRF-TOKEN_header_set
|
1836
|
+
-------------------------------------------------------------------------------------
|
1837
|
+
Processing by ApplicationController#create as HTML
|
1838
|
+
Can't verify CSRF token authenticity.
|
1839
|
+
Completed 422 Unprocessable Entity in 0ms (Allocations: 98)
|
1840
|
+
---------------------------------------------------------------
|
1841
|
+
AngularRailsCsrfTest: test_the_secure_flag_is_set_if_configured
|
1842
|
+
---------------------------------------------------------------
|
1843
|
+
Processing by ApplicationController#index as HTML
|
1844
|
+
Completed 200 OK in 0ms (Allocations: 104)
|
1845
|
+
-----------------------------------------------------------
|
1846
|
+
AngularRailsCsrfTest: test_a_custom_name_is_used_if_present
|
1847
|
+
-----------------------------------------------------------
|
1848
|
+
Processing by ApplicationController#index as HTML
|
1849
|
+
Completed 200 OK in 0ms (Allocations: 104)
|
1850
|
+
------------------------------------------------------------------------------------
|
1851
|
+
AngularRailsCsrfTest: test_secure_is_set_automatically_when_same_site_is_set_to_none
|
1852
|
+
------------------------------------------------------------------------------------
|
1853
|
+
Processing by ApplicationController#index as HTML
|
1854
|
+
Completed 200 OK in 0ms (Allocations: 104)
|
1855
|
+
-----------------------------------------------------------------------------
|
1856
|
+
AngularRailsCsrfTest: test_a_post_is_accepted_if_X-XSRF-TOKEN_is_set_properly
|
1857
|
+
-----------------------------------------------------------------------------
|
1858
|
+
Processing by ApplicationController#create as HTML
|
1859
|
+
Completed 200 OK in 0ms (Allocations: 125)
|
1860
|
+
--------------------------------------------------------
|
1861
|
+
AngularRailsCsrfTest: test_the_domain_is_used_if_present
|
1862
|
+
--------------------------------------------------------
|
1863
|
+
Processing by ApplicationController#index as HTML
|
1864
|
+
Completed 200 OK in 0ms (Allocations: 115)
|
1865
|
+
--------------------------------------------------------------------------------------------------------
|
1866
|
+
AngularRailsCsrfTest: test_a_get_sets_the_XSRF-TOKEN_cookie_but_does_not_require_the_X-XSRF-TOKEN_header
|
1867
|
+
--------------------------------------------------------------------------------------------------------
|
1868
|
+
Processing by ApplicationController#index as HTML
|
1869
|
+
Completed 200 OK in 0ms (Allocations: 104)
|
1870
|
+
----------------------------------------------------------------------------
|
1871
|
+
AngularRailsCsrfExceptionTest: test_a_get_does_not_set_the_XSRF-TOKEN_cookie
|
1872
|
+
----------------------------------------------------------------------------
|
1873
|
+
Processing by ExclusionsController#index as HTML
|
1874
|
+
Completed 200 OK in 0ms (Allocations: 128)
|
1875
|
+
--------------------------------------------------------
|
1876
|
+
AngularRailsCsrfTest: test_the_domain_is_used_if_present
|
1877
|
+
--------------------------------------------------------
|
1878
|
+
Processing by ApplicationController#index as HTML
|
1879
|
+
Completed 200 OK in 0ms (Allocations: 120)
|
1880
|
+
-------------------------------------------------------------------------------------
|
1881
|
+
AngularRailsCsrfTest: test_a_post_raises_an_error_without_the_X-XSRF-TOKEN_header_set
|
1882
|
+
-------------------------------------------------------------------------------------
|
1883
|
+
Processing by ApplicationController#create as HTML
|
1884
|
+
Can't verify CSRF token authenticity.
|
1885
|
+
Completed 422 Unprocessable Entity in 0ms (Allocations: 111)
|
1886
|
+
------------------------------------------------------
|
1887
|
+
AngularRailsCsrfTest: test_same_site_can_be_configured
|
1888
|
+
------------------------------------------------------
|
1889
|
+
Processing by ApplicationController#index as HTML
|
1890
|
+
Completed 200 OK in 0ms (Allocations: 104)
|
1891
|
+
---------------------------------------------------------------
|
1892
|
+
AngularRailsCsrfTest: test_the_secure_flag_is_set_if_configured
|
1893
|
+
---------------------------------------------------------------
|
1894
|
+
Processing by ApplicationController#index as HTML
|
1895
|
+
Completed 200 OK in 0ms (Allocations: 104)
|
1896
|
+
------------------------------------------------------------------------------------
|
1897
|
+
AngularRailsCsrfTest: test_secure_is_set_automatically_when_same_site_is_set_to_none
|
1898
|
+
------------------------------------------------------------------------------------
|
1899
|
+
Processing by ApplicationController#index as HTML
|
1900
|
+
Completed 200 OK in 0ms (Allocations: 104)
|
1901
|
+
-------------------------------------------------------------------------
|
1902
|
+
AngularRailsCsrfTest: test_csrf-cookie_is_not_set_if_exclusion_is_enabled
|
1903
|
+
-------------------------------------------------------------------------
|
1904
|
+
Processing by ApplicationController#index as HTML
|
1905
|
+
Completed 200 OK in 0ms (Allocations: 74)
|
1906
|
+
-----------------------------------------------------------------------------
|
1907
|
+
AngularRailsCsrfTest: test_a_post_is_accepted_if_X-XSRF-TOKEN_is_set_properly
|
1908
|
+
-----------------------------------------------------------------------------
|
1909
|
+
Processing by ApplicationController#create as HTML
|
1910
|
+
Completed 200 OK in 0ms (Allocations: 125)
|
1911
|
+
-------------------------------------------------------------
|
1912
|
+
AngularRailsCsrfTest: test_same_site_is_set_to_Lax_by_default
|
1913
|
+
-------------------------------------------------------------
|
1914
|
+
Processing by ApplicationController#index as HTML
|
1915
|
+
Completed 200 OK in 0ms (Allocations: 104)
|
1916
|
+
--------------------------------------------------------------------------------------------------------
|
1917
|
+
AngularRailsCsrfTest: test_a_get_sets_the_XSRF-TOKEN_cookie_but_does_not_require_the_X-XSRF-TOKEN_header
|
1918
|
+
--------------------------------------------------------------------------------------------------------
|
1919
|
+
Processing by ApplicationController#index as HTML
|
1920
|
+
Completed 200 OK in 0ms (Allocations: 104)
|
1921
|
+
-----------------------------------------------------------
|
1922
|
+
AngularRailsCsrfTest: test_a_custom_name_is_used_if_present
|
1923
|
+
-----------------------------------------------------------
|
1924
|
+
Processing by ApplicationController#index as HTML
|
1925
|
+
Completed 200 OK in 0ms (Allocations: 104)
|
1926
|
+
-----------------------------------------------------------------------------------------------------
|
1927
|
+
AngularRailsCsrfTest: test_a_post_raises_an_error_with_the_X-XSRF-TOKEN_header_set_to_the_wrong_value
|
1928
|
+
-----------------------------------------------------------------------------------------------------
|
1929
|
+
Processing by ApplicationController#create as HTML
|
1930
|
+
Can't verify CSRF token authenticity.
|
1931
|
+
Completed 422 Unprocessable Entity in 0ms (Allocations: 103)
|
1932
|
+
-------------------------------------------------------------------------------------------------------------
|
1933
|
+
AngularRailsCsrfSkipTest: test_csrf-cookie_is_not_set_and_no_error_if_protect_against_forgery?_is_not_defined
|
1934
|
+
-------------------------------------------------------------------------------------------------------------
|
1935
|
+
Processing by ApiController#index as HTML
|
1936
|
+
Completed 200 OK in 0ms (Allocations: 84)
|
metadata
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: angular_rails_csrf
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 4.
|
4
|
+
version: 4.4.0
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- James Sanders
|
@@ -9,7 +9,7 @@ authors:
|
|
9
9
|
autorequire:
|
10
10
|
bindir: bin
|
11
11
|
cert_chain: []
|
12
|
-
date: 2020-
|
12
|
+
date: 2020-08-04 00:00:00.000000000 Z
|
13
13
|
dependencies:
|
14
14
|
- !ruby/object:Gem::Dependency
|
15
15
|
name: rake
|
@@ -45,14 +45,14 @@ dependencies:
|
|
45
45
|
requirements:
|
46
46
|
- - '='
|
47
47
|
- !ruby/object:Gem::Version
|
48
|
-
version: 6.0.3
|
48
|
+
version: 6.0.3.2
|
49
49
|
type: :development
|
50
50
|
prerelease: false
|
51
51
|
version_requirements: !ruby/object:Gem::Requirement
|
52
52
|
requirements:
|
53
53
|
- - '='
|
54
54
|
- !ruby/object:Gem::Version
|
55
|
-
version: 6.0.3
|
55
|
+
version: 6.0.3.2
|
56
56
|
- !ruby/object:Gem::Dependency
|
57
57
|
name: railties
|
58
58
|
requirement: !ruby/object:Gem::Requirement
|
@@ -144,8 +144,10 @@ files:
|
|
144
144
|
- lib/angular_rails_csrf/railtie.rb
|
145
145
|
- lib/angular_rails_csrf/version.rb
|
146
146
|
- test/angular_rails_csrf_exception_test.rb
|
147
|
+
- test/angular_rails_csrf_skip_test.rb
|
147
148
|
- test/angular_rails_csrf_test.rb
|
148
149
|
- test/dummy/app/assets/config/manifest.js
|
150
|
+
- test/dummy/app/controllers/api_controller.rb
|
149
151
|
- test/dummy/app/controllers/application_controller.rb
|
150
152
|
- test/dummy/app/controllers/exclusions_controller.rb
|
151
153
|
- test/dummy/config.ru
|
@@ -174,14 +176,16 @@ required_rubygems_version: !ruby/object:Gem::Requirement
|
|
174
176
|
- !ruby/object:Gem::Version
|
175
177
|
version: '0'
|
176
178
|
requirements: []
|
177
|
-
rubygems_version: 3.1.
|
179
|
+
rubygems_version: 3.1.4
|
178
180
|
signing_key:
|
179
181
|
specification_version: 4
|
180
182
|
summary: Support for AngularJS $http service style CSRF protection in Rails
|
181
183
|
test_files:
|
182
184
|
- test/angular_rails_csrf_exception_test.rb
|
185
|
+
- test/angular_rails_csrf_skip_test.rb
|
183
186
|
- test/angular_rails_csrf_test.rb
|
184
187
|
- test/dummy/app/assets/config/manifest.js
|
188
|
+
- test/dummy/app/controllers/api_controller.rb
|
185
189
|
- test/dummy/app/controllers/application_controller.rb
|
186
190
|
- test/dummy/app/controllers/exclusions_controller.rb
|
187
191
|
- test/dummy/config/application.rb
|