mux/middleware/helmet_test.go

package middleware

import (
	"io"
	"net/http"
	"net/http/httptest"
	"testing"

	"gitserver.in/patialtech/mux"
)

func TestHelmet(t *testing.T) {
	r := mux.NewRouter()
	r.Use(Helmet(HelmetOption{}))
	r.Get("/hello", func(writer http.ResponseWriter, request *http.Request) {
		_, _ = writer.Write([]byte("hello there"))
	})

	srv := httptest.NewServer(r)
	defer srv.Close()
	w, _ := testRequest(t, srv, "GET", "/hello", nil)

	csp := w.Header.Get("Content-Security-Policy")
	// must not have a csp header, technically no header related to helmet but lets test with one.
	if csp == "" {
		t.Error("csp header is expected")
	}

}

func testRequest(t *testing.T, ts *httptest.Server, method, path string, body io.Reader) (*http.Response, string) {
	req, err := http.NewRequest(method, ts.URL+path, body)
	if err != nil {
		t.Fatal(err)
		return nil, ""
	}

	resp, err := http.DefaultClient.Do(req)
	if err != nil {
		t.Fatal(err)
		return nil, ""
	}

	respBody, err := io.ReadAll(io.Reader(resp.Body))
	if err != nil {
		t.Fatal(err)
		return nil, ""
	}
	defer resp.Body.Close()

	return resp, string(respBody)
}
fixed router.ServeHTTP added in middleware: Cors and Helmet 2024-11-03 10:03:50 +00:00			`package middleware`

			`import (`
test correction and Proxy func addition 2024-11-03 16:54:28 +00:00			`"io"`
fixed router.ServeHTTP added in middleware: Cors and Helmet 2024-11-03 10:03:50 +00:00			`"net/http"`
			`"net/http/httptest"`
			`"testing"`

			`"gitserver.in/patialtech/mux"`
			`)`

			`func TestHelmet(t *testing.T) {`
			`r := mux.NewRouter()`
test correction and Proxy func addition 2024-11-03 16:54:28 +00:00			`r.Use(Helmet(HelmetOption{}))`
fixed router.ServeHTTP added in middleware: Cors and Helmet 2024-11-03 10:03:50 +00:00			`r.Get("/hello", func(writer http.ResponseWriter, request *http.Request) {`
			`_, _ = writer.Write([]byte("hello there"))`
			`})`

test correction and Proxy func addition 2024-11-03 16:54:28 +00:00			`srv := httptest.NewServer(r)`
			`defer srv.Close()`
			`w, _ := testRequest(t, srv, "GET", "/hello", nil)`
fixed router.ServeHTTP added in middleware: Cors and Helmet 2024-11-03 10:03:50 +00:00
test correction and Proxy func addition 2024-11-03 16:54:28 +00:00			`csp := w.Header.Get("Content-Security-Policy")`
			`// must not have a csp header, technically no header related to helmet but lets test with one.`
			`if csp == "" {`
			`t.Error("csp header is expected")`
fixed router.ServeHTTP added in middleware: Cors and Helmet 2024-11-03 10:03:50 +00:00			`}`

test correction and Proxy func addition 2024-11-03 16:54:28 +00:00			`}`

			`func testRequest(t testing.T, ts httptest.Server, method, path string, body io.Reader) (*http.Response, string) {`
			`req, err := http.NewRequest(method, ts.URL+path, body)`
			`if err != nil {`
			`t.Fatal(err)`
			`return nil, ""`
fixed router.ServeHTTP added in middleware: Cors and Helmet 2024-11-03 10:03:50 +00:00			`}`

test correction and Proxy func addition 2024-11-03 16:54:28 +00:00			`resp, err := http.DefaultClient.Do(req)`
			`if err != nil {`
			`t.Fatal(err)`
			`return nil, ""`
			`}`
fixed router.ServeHTTP added in middleware: Cors and Helmet 2024-11-03 10:03:50 +00:00
test correction and Proxy func addition 2024-11-03 16:54:28 +00:00			`respBody, err := io.ReadAll(io.Reader(resp.Body))`
			`if err != nil {`
			`t.Fatal(err)`
			`return nil, ""`
fixed router.ServeHTTP added in middleware: Cors and Helmet 2024-11-03 10:03:50 +00:00			`}`
test correction and Proxy func addition 2024-11-03 16:54:28 +00:00			`defer resp.Body.Close()`
fixed router.ServeHTTP added in middleware: Cors and Helmet 2024-11-03 10:03:50 +00:00
test correction and Proxy func addition 2024-11-03 16:54:28 +00:00			`return resp, string(respBody)`
fixed router.ServeHTTP added in middleware: Cors and Helmet 2024-11-03 10:03:50 +00:00			`}`