class URITestClass(ConfigTestClass): def test_validate_uri(self): self.clioinfra = Configuration() self.assertFalse(self.clioinfra.is_valid_uri('http://cliodomain.com/xcxc;`some code')) # check if passwd can be recognized in uri self.assertFalse(self.clioinfra.are_parameters_valid('passwd'), 'passwd recognition problem') # wget instance in uri self.assertFalse(self.clioinfra.are_parameters_valid('wget` '), 'wget recognition problem') self.assertFalse(self.clioinfra.are_parameters_valid('curl '), 'curl recognition problem') # other characters are allowed self.assertTrue(self.clioinfra.are_parameters_valid("http://data.cliodomain.org/collabs/data/static/"), 'False recognition of characters in url') # shell injection check self.assertFalse(self.clioinfra.are_parameters_valid("http://data.cliodomain.org/?export?fileId=12;%cat%20/etc/passw1d%20"), 'False recognition of characters in url')
class URITestClass(ConfigTestClass): def test_validate_uri(self): self.clioinfra = Configuration() self.assertFalse( self.clioinfra.is_valid_uri( 'http://cliodomain.com/xcxc;`some code')) # check if passwd can be recognized in uri self.assertFalse(self.clioinfra.are_parameters_valid('passwd'), 'passwd recognition problem') # wget instance in uri self.assertFalse(self.clioinfra.are_parameters_valid('wget` '), 'wget recognition problem') self.assertFalse(self.clioinfra.are_parameters_valid('curl '), 'curl recognition problem') # other characters are allowed self.assertTrue( self.clioinfra.are_parameters_valid( "http://data.cliodomain.org/collabs/data/static/"), 'False recognition of characters in url') # shell injection check self.assertFalse( self.clioinfra.are_parameters_valid( "http://data.cliodomain.org/?export?fileId=12;%cat%20/etc/passw1d%20" ), 'False recognition of characters in url')