rhodecode-enterprise-ce Commit - r5217:56288af3

             # Copyright (C) 2016-2023 RhodeCode GmbH
             #
             # This program is free software: you can redistribute it and/or modify
             # RhodeCode Enterprise Edition, including its added features, Support services,
             # and proprietary license terms, please see https://rhodecode.com/licenses/
-            import pytest
             from rhodecode.tests import TestController
-            from rhodecode.tests.fixture import Fixture
             class TestBadRequestData(TestController):
                 def test_bad_get_data(self):
                     self.app.get(
                         '/', params={'f\xfc': '\xfc%f6%22%20onmouseover%3dveA2(9352)%20'},
-                        status=400)
+                        status=200)
                 def test_bad_url_data(self):
                     self.app.post(
                         '/f\xfc',
-                        status=400)
+                        status=404)
                 def test_bad_post_data(self, csrf_token, xhr_header):
                     self.app.post(
                         params={'f\xfc': '\xfc%f6%22%20onmouseover%3dveA2(9352)%20',
                                 'csrf_token': csrf_token},
                         extra_environ=xhr_header,
-                        status=400)
+                        status=200)

1

2

3

1

4

#

2

#

5

# This program is free software: you can redistribute it and/or modify

3

# This program is free software: you can redistribute it and/or modify

18

# RhodeCode Enterprise Edition, including its added features, Support services,

16

# RhodeCode Enterprise Edition, including its added features, Support services,

19

# and proprietary license terms, please see https://rhodecode.com/licenses/

17

# and proprietary license terms, please see https://rhodecode.com/licenses/

20

18

21

import pytest

22

23

from rhodecode.tests import TestController

19

from rhodecode.tests import TestController

24

from rhodecode.tests.fixture import Fixture

25

20

26

21

27

class TestBadRequestData(TestController):

22

class TestBadRequestData(TestController):

29

def test_bad_get_data(self):

24

def test_bad_get_data(self):

30

self.app.get(

25

self.app.get(

31

'/', params={'f\xfc': '\xfc%f6%22%20onmouseover%3dveA2(9352)%20'},

26

'/', params={'f\xfc': '\xfc%f6%22%20onmouseover%3dveA2(9352)%20'},

32

status=400)

27

status=200)

33

28

34

def test_bad_url_data(self):

29

def test_bad_url_data(self):

35

self.app.post(

30

self.app.post(

36

'/f\xfc',

31

'/f\xfc',

37

status=400)

32

status=404)

38

33

39

def test_bad_post_data(self, csrf_token, xhr_header):

34

def test_bad_post_data(self, csrf_token, xhr_header):

40

self.app.post(

35

self.app.post(

42

params={'f\xfc': '\xfc%f6%22%20onmouseover%3dveA2(9352)%20',

37

params={'f\xfc': '\xfc%f6%22%20onmouseover%3dveA2(9352)%20',

43

'csrf_token': csrf_token},

38

'csrf_token': csrf_token},

44

extra_environ=xhr_header,

39

extra_environ=xhr_header,

45

status=400)

40

status=200)

	Site-wide shortcuts
/	Use quick search box
g h	Goto home page
g g	Goto my private gists page
g G	Goto my public gists page
g 0-9	Goto bookmarked items from 0-9
n r	New repository page
n g	New gist page

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages