devver-rack-contrib 0.9.3

data/test/spec_rack_access.rb

@@ -0,0 +1,154 @@
+require 'test/spec'
+require 'rack/mock'
+require 'rack/contrib/access'
+
+context "Rack::Access" do
+
+  setup do
+    @app = lambda { |env| [200, { 'Content-Type' => 'text/plain' }, 'hello'] }
+    @mock_addr_1 = '111.111.111.111'
+    @mock_addr_2 = '192.168.1.222'
+    @mock_addr_localhost = '127.0.0.1'
+    @mock_addr_range = '192.168.1.0/24'
+  end
+
+  def mock_env(remote_addr, path = '/')
+    Rack::MockRequest.env_for(path, { 'REMOTE_ADDR' => remote_addr })
+  end
+
+  def middleware(options = {})
+    Rack::Access.new(@app, options)
+  end
+
+  specify "default configuration should deny non-local requests" do
+    app = middleware
+    status, headers, body = app.call(mock_env(@mock_addr_1))
+    status.should.equal 403
+    body.should.equal ''
+  end
+
+  specify "default configuration should allow requests from 127.0.0.1" do
+    app = middleware
+    status, headers, body = app.call(mock_env(@mock_addr_localhost))
+    status.should.equal 200
+    body.should.equal 'hello'
+  end
+
+  specify "should allow remote addresses in allow_ipmasking" do
+    app = middleware('/' => [@mock_addr_1])
+    status, headers, body = app.call(mock_env(@mock_addr_1))
+    status.should.equal 200
+    body.should.equal 'hello'
+  end
+
+  specify "should deny remote addresses not in allow_ipmasks" do
+    app = middleware('/' => [@mock_addr_1])
+    status, headers, body = app.call(mock_env(@mock_addr_2))
+    status.should.equal 403
+    body.should.equal ''
+  end
+
+  specify "should allow remote addresses in allow_ipmasks range" do
+    app = middleware('/' => [@mock_addr_range])
+    status, headers, body = app.call(mock_env(@mock_addr_2))
+    status.should.equal 200
+    body.should.equal 'hello'
+  end
+
+  specify "should deny remote addresses not in allow_ipmasks range" do
+    app = middleware('/' => [@mock_addr_range])
+    status, headers, body = app.call(mock_env(@mock_addr_1))
+    status.should.equal 403
+    body.should.equal ''
+  end
+
+  specify "should allow remote addresses in one of allow_ipmasking" do
+    app = middleware('/' => [@mock_addr_range, @mock_addr_localhost])
+
+    status, headers, body = app.call(mock_env(@mock_addr_2))
+    status.should.equal 200
+    body.should.equal 'hello'
+
+    status, headers, body = app.call(mock_env(@mock_addr_localhost))
+    status.should.equal 200
+    body.should.equal 'hello'
+  end
+
+  specify "should deny remote addresses not in one of allow_ipmasks" do
+    app = middleware('/' => [@mock_addr_range, @mock_addr_localhost])
+    status, headers, body = app.call(mock_env(@mock_addr_1))
+    status.should.equal 403
+    body.should.equal ''
+  end
+
+  specify "handles paths correctly" do
+    app = middleware({
+      'http://foo.org/bar' => [@mock_addr_localhost],
+      '/foo' => [@mock_addr_localhost],
+      '/foo/bar' => [@mock_addr_range, @mock_addr_localhost]
+    })
+
+    status, headers, body = app.call(mock_env(@mock_addr_1, "/"))
+    status.should.equal 200
+    body.should.equal 'hello'
+
+    status, headers, body = app.call(mock_env(@mock_addr_1, "/qux"))
+    status.should.equal 200
+    body.should.equal 'hello'
+
+    status, headers, body = app.call(mock_env(@mock_addr_1, "/foo"))
+    status.should.equal 403
+    body.should.equal ''
+    status, headers, body = app.call(mock_env(@mock_addr_localhost, "/foo"))
+    status.should.equal 200
+    body.should.equal 'hello'
+
+    status, headers, body = app.call(mock_env(@mock_addr_1, "/foo/"))
+    status.should.equal 403
+    body.should.equal ''
+    status, headers, body = app.call(mock_env(@mock_addr_localhost, "/foo/"))
+    status.should.equal 200
+    body.should.equal 'hello'
+
+    status, headers, body = app.call(mock_env(@mock_addr_1, "/foo/bar"))
+    status.should.equal 403
+    body.should.equal ''
+    status, headers, body = app.call(mock_env(@mock_addr_localhost, "/foo/bar"))
+    status.should.equal 200
+    body.should.equal 'hello'
+    status, headers, body = app.call(mock_env(@mock_addr_2, "/foo/bar"))
+    status.should.equal 200
+    body.should.equal 'hello'
+
+    status, headers, body = app.call(mock_env(@mock_addr_1, "/foo/bar/"))
+    status.should.equal 403
+    body.should.equal ''
+    status, headers, body = app.call(mock_env(@mock_addr_localhost, "/foo/bar/"))
+    status.should.equal 200
+    body.should.equal 'hello'
+
+    status, headers, body = app.call(mock_env(@mock_addr_1, "/foo///bar//quux"))
+    status.should.equal 403
+    body.should.equal ''
+    status, headers, body = app.call(mock_env(@mock_addr_localhost, "/foo///bar//quux"))
+    status.should.equal 200
+    body.should.equal 'hello'
+
+    status, headers, body = app.call(mock_env(@mock_addr_1, "/foo/quux"))
+    status.should.equal 403
+    body.should.equal ''
+    status, headers, body = app.call(mock_env(@mock_addr_localhost, "/foo/quux"))
+    status.should.equal 200
+    body.should.equal 'hello'
+
+    status, headers, body = app.call(mock_env(@mock_addr_1, "/bar"))
+    status.should.equal 200
+    body.should.equal 'hello'
+    status, headers, body = app.call(mock_env(@mock_addr_1, "/bar").merge('HTTP_HOST' => 'foo.org'))
+    status.should.equal 403
+    body.should.equal ''
+    status, headers, body = app.call(mock_env(@mock_addr_localhost, "/bar").merge('HTTP_HOST' => 'foo.org'))
+    status.should.equal 200
+    body.should.equal 'hello'
+  end
+end

data/test/spec_rack_backstage.rb

@@ -0,0 +1,26 @@
+require 'test/spec'
+require 'rack/builder'
+require 'rack/mock'
+require 'rack/contrib/backstage'
+
+context "Rack::Backstage" do
+  specify "shows maintenances page if present" do
+    app = Rack::Builder.new do
+      use Rack::Backstage, 'test/Maintenance.html'
+      run lambda { |env| [200, {'Content-Type' => 'text/plain'}, ["Hello, World!"]] }
+    end
+    response = Rack::MockRequest.new(app).get('/')
+    response.body.should.equal('Under maintenance.')
+    response.status.should.equal(503)
+  end
+
+  specify "passes on request if page is not present" do
+    app = Rack::Builder.new do
+      use Rack::Backstage, 'test/Nonsense.html'
+      run lambda { |env| [200, {'Content-Type' => 'text/plain'}, ["Hello, World!"]] }
+    end
+    response = Rack::MockRequest.new(app).get('/')
+    response.body.should.equal('Hello, World!')
+    response.status.should.equal(200)
+  end
+end

data/test/spec_rack_callbacks.rb

@@ -0,0 +1,65 @@
+require 'test/spec'
+require 'rack/mock'
+
+class Flame
+  def call(env)
+    env['flame'] = 'F Lifo..'
+  end
+end
+
+class Pacify
+  def initialize(with)
+    @with = with
+  end
+
+  def call(env)
+    env['peace'] = @with
+  end
+end
+
+class Finale
+  def call(response)
+    status, headers, body = response
+
+    headers['last'] = 'Finale'
+    $old_status = status
+
+    [201, headers, body]
+  end
+end
+
+class TheEnd
+  def call(response)
+    status, headers, body = response
+
+    headers['last'] = 'TheEnd'
+    [201, headers, body]
+  end
+end
+
+context "Rack::Callbacks" do
+  specify "works for love and small stack trace" do
+    callback_app = Rack::Callbacks.new do
+      before Flame
+      before Pacify, "with love"
+
+      run lambda {|env| [200, {}, [env['flame'], env['peace']]] }
+
+      after Finale
+      after TheEnd
+    end
+
+    app = Rack::Builder.new do
+      run callback_app
+    end.to_app
+
+    response = Rack::MockRequest.new(app).get("/")
+
+    response.body.should.equal 'F Lifo..with love'
+
+    $old_status.should.equal 200
+    response.status.should.equal 201
+
+    response.headers['last'].should.equal 'TheEnd'
+  end
+end

data/test/spec_rack_config.rb

@@ -0,0 +1,22 @@
+require 'test/spec'
+require 'rack/mock'
+require 'rack/contrib/config'
+
+context "Rack::Config" do
+
+  specify "should accept a block that modifies the environment" do
+    app = Rack::Builder.new do
+      use Rack::Lint
+      use Rack::ContentLength
+      use Rack::Config do |env|
+        env['greeting'] = 'hello'
+      end
+      run lambda { |env|
+        [200, {'Content-Type' => 'text/plain'}, [env['greeting'] || '']]
+      }
+    end
+    response = Rack::MockRequest.new(app).get('/')
+    response.body.should.equal('hello')
+  end
+
+end

data/test/spec_rack_contrib.rb

@@ -0,0 +1,8 @@
+require 'test/spec'
+require 'rack/contrib'
+
+context "Rack::Contrib" do
+  specify "should expose release" do
+    Rack::Contrib.should.respond_to :release
+  end
+end

data/test/spec_rack_csshttprequest.rb

@@ -0,0 +1,66 @@
+require 'test/spec'
+require 'rack/mock'
+
+begin
+  require 'csshttprequest'
+  require 'rack/contrib/csshttprequest'
+
+  context "Rack::CSSHTTPRequest" do
+
+    before(:each) do
+      @test_body = '{"bar":"foo"}'
+      @test_headers = {'Content-Type' => 'text/plain'}
+      @encoded_body = CSSHTTPRequest.encode(@test_body)
+      @app = lambda { |env| [200, @test_headers, [@test_body]] }
+    end
+
+    specify "env['csshttprequest.chr'] should be set to true when \
+        PATH_INFO ends with '.chr'" do
+      request = Rack::MockRequest.env_for("/blah.chr", :lint => true, :fatal => true)
+      Rack::CSSHTTPRequest.new(@app).call(request)
+      request['csshttprequest.chr'].should.equal true
+    end
+
+    specify "env['csshttprequest.chr'] should be set to true when \
+        request parameter _format == 'chr'" do
+      request = Rack::MockRequest.env_for("/?_format=chr", :lint => true, :fatal => true)
+      Rack::CSSHTTPRequest.new(@app).call(request)
+      request['csshttprequest.chr'].should.equal true
+    end
+
+    specify "should not change the headers or response when !env['csshttprequest.chr']" do
+      request = Rack::MockRequest.env_for("/", :lint => true, :fatal => true)
+      status, headers, response = Rack::CSSHTTPRequest.new(@app).call(request)
+      headers.should.equal @test_headers
+      response.join.should.equal @test_body
+    end
+
+    context "when env['csshttprequest.chr']" do
+      before(:each) do
+        @request = Rack::MockRequest.env_for("/",
+          'csshttprequest.chr' => true, :lint => true, :fatal => true)
+      end
+
+      specify "should modify the content length to the correct value" do
+        headers = Rack::CSSHTTPRequest.new(@app).call(@request)[1]
+        headers['Content-Length'].should.equal @encoded_body.length.to_s
+      end
+
+      specify "should modify the content type to the correct value" do
+        headers = Rack::CSSHTTPRequest.new(@app).call(@request)[1]
+        headers['Content-Type'].should.equal 'text/css'
+      end
+
+      specify "should not modify any other headers" do
+        headers = Rack::CSSHTTPRequest.new(@app).call(@request)[1]
+        headers.should.equal @test_headers.merge({
+          'Content-Type' => 'text/css',
+          'Content-Length' => @encoded_body.length.to_s
+        })
+      end
+    end
+
+  end
+rescue LoadError => boom
+  STDERR.puts "WARN: Skipping Rack::CSSHTTPRequest tests (nbio-csshttprequest not installed)"
+end

data/test/spec_rack_deflect.rb

@@ -0,0 +1,107 @@
+require 'test/spec'
+require 'rack/mock'
+require 'rack/contrib/deflect'
+
+context "Rack::Deflect" do
+
+  setup do
+    @app = lambda { |env| [200, { 'Content-Type' => 'text/plain' }, 'cookies'] }
+    @mock_addr_1 = '111.111.111.111'
+    @mock_addr_2 = '222.222.222.222'
+    @mock_addr_3 = '333.333.333.333'
+  end
+
+  def mock_env remote_addr, path = '/'
+    Rack::MockRequest.env_for path, { 'REMOTE_ADDR' => remote_addr }
+  end
+
+  def mock_deflect options = {}
+    Rack::Deflect.new @app, options
+  end
+
+  specify "should allow regular requests to follow through" do
+    app = mock_deflect
+    status, headers, body = app.call mock_env(@mock_addr_1)
+    status.should.equal 200
+    body.should.equal 'cookies'
+  end
+
+  specify "should deflect requests exceeding the request threshold" do
+    log = StringIO.new
+    app = mock_deflect :request_threshold => 5, :interval => 10, :block_duration => 10, :log => log
+    env = mock_env @mock_addr_1
+
+    # First 5 should be fine
+    5.times do
+      status, headers, body = app.call env
+      status.should.equal 200
+      body.should.equal 'cookies'
+    end
+
+    # Remaining requests should fail for 10 seconds
+    10.times do
+      status, headers, body = app.call env
+      status.should.equal 403
+      body.should.equal ''
+    end
+
+    # Log should reflect that we have blocked an address
+    log.string.should.match(/^deflect\(\d+\/\d+\/\d+\): blocked 111.111.111.111\n/)
+  end
+
+  specify "should expire blocking" do
+    log = StringIO.new
+    app = mock_deflect :request_threshold => 5, :interval => 2, :block_duration => 2, :log => log
+    env = mock_env @mock_addr_1
+
+    # First 5 should be fine
+    5.times do
+      status, headers, body = app.call env
+      status.should.equal 200
+      body.should.equal 'cookies'
+    end
+
+    # Exceeds request threshold
+    status, headers, body = app.call env
+    status.should.equal 403
+    body.should.equal ''
+
+    # Allow block to expire
+    sleep 3
+
+    # Another 5 is fine now
+    5.times do
+      status, headers, body = app.call env
+      status.should.equal 200
+      body.should.equal 'cookies'
+    end
+
+    # Log should reflect block and release
+    log.string.should.match(/deflect.*: blocked 111\.111\.111\.111\ndeflect.*: released 111\.111\.111\.111\n/)
+  end
+
+  specify "should allow whitelisting of remote addresses" do
+    app = mock_deflect :whitelist => [@mock_addr_1], :request_threshold => 5, :interval => 2
+    env = mock_env @mock_addr_1
+
+    # Whitelisted addresses are always fine
+    10.times do
+      status, headers, body = app.call env
+      status.should.equal 200
+      body.should.equal 'cookies'
+    end
+  end
+
+  specify "should allow blacklisting of remote addresses" do
+    app = mock_deflect :blacklist => [@mock_addr_2]
+
+    status, headers, body = app.call mock_env(@mock_addr_1)
+    status.should.equal 200
+    body.should.equal 'cookies'
+
+    status, headers, body = app.call mock_env(@mock_addr_2)
+    status.should.equal 403
+    body.should.equal ''
+  end
+
+end