(t *testing.T)
| 240 | } |
| 241 | |
| 242 | func TestCORSHeaderRegex(t *testing.T) { |
| 243 | mode.Set(mode.Prod) |
| 244 | db := testdb.NewDBWithDefaultUser(t) |
| 245 | defer db.Close() |
| 246 | |
| 247 | config := config.Configuration{PassStrength: 5} |
| 248 | config.Server.Cors.AllowOrigins = []string{"---", "^http://test\\d{3}.com$"} |
| 249 | |
| 250 | g, closable := Create(db.GormDatabase, |
| 251 | &model.VersionInfo{Version: "1.0.0", BuildDate: "2018-02-20-17:30:47", Commit: "asdasds"}, |
| 252 | &config, |
| 253 | ) |
| 254 | server := httptest.NewServer(g) |
| 255 | |
| 256 | defer func() { |
| 257 | closable() |
| 258 | server.Close() |
| 259 | }() |
| 260 | |
| 261 | req, err := http.NewRequest("GET", fmt.Sprintf("%s/%s", server.URL, "version"), nil) |
| 262 | req.Header.Add("Content-Type", "application/json") |
| 263 | req.Header.Add("Origin", "http://test123.com") |
| 264 | assert.Nil(t, err) |
| 265 | |
| 266 | res, err := client.Do(req) |
| 267 | assert.Nil(t, err) |
| 268 | assert.Equal(t, "http://test123.com", res.Header.Get("Access-Control-Allow-Origin")) |
| 269 | } |
| 270 | |
| 271 | // We want headers in cors config to override the responseheaders config. |
| 272 | func TestCORSConfigOverride(t *testing.T) { |
nothing calls this directly
no test coverage detected
searching dependent graphs…