ruben/jail2ban
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Add case for detecing invalid input

Browse Source
This commit is contained in:
Ruben van Staveren 2022-03-10 21:12:24 +01:00
parent a20145b447
commit ffe144f6b5
Signed by: ruben
GPG Key ID: 886F6BECD477A93F
1 changed files with 22 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

23
tests/test_register.py
View File

@ -19,7 +19,7 @@ def test_request_unauth(client):
assert response.json['error'] == 'Access Denied' assert response.json['error'] == 'Access Denied'
def test_request_example(client, mocker): def test_request_valid(client, mocker):
def noop(): def noop():
pass pass
run_res = SimpleNamespace() run_res = SimpleNamespace()
@ -38,3 +38,24 @@ def test_request_example(client, mocker):
headers={"Authorization": "Basic " + valid_credentials}) headers={"Authorization": "Basic " + valid_credentials})
assert response.json['remote_user'] == 'test.example.com' assert response.json['remote_user'] == 'test.example.com'
def test_request_invalid(client, mocker):
def noop():
pass
run_res = SimpleNamespace()
run_res.stdout = pfctl_stdout_lines
run_res.check_returncode = noop
mocker.patch('jail2ban.pfctl.run', return_value=run_res)
valid_credentials = base64.b64encode(b"test.example.com:testpassword").decode("utf-8")
json_payload = {"port":
"not a pf statement",
"name": "dovecot", "protocol": "tcp"}
response = client.put("/register",
json=json_payload,
headers={"Authorization": "Basic " + valid_credentials})
assert response.json['error'] == '"not a pf statement" is tainted'