class URITestClass(ConfigTestClass):
def test_validate_uri(self):
self.clioinfra = Configuration()
self.assertFalse(self.clioinfra.is_valid_uri('http://cliodomain.com/xcxc;`some code'))
# check if passwd can be recognized in uri
self.assertFalse(self.clioinfra.are_parameters_valid('passwd'), 'passwd recognition problem')
# wget instance in uri
self.assertFalse(self.clioinfra.are_parameters_valid('wget` '), 'wget recognition problem')
self.assertFalse(self.clioinfra.are_parameters_valid('curl '), 'curl recognition problem')
# other characters are allowed
self.assertTrue(self.clioinfra.are_parameters_valid("http://data.cliodomain.org/collabs/data/static/"), 'False recognition of characters in url')
# shell injection check
self.assertFalse(self.clioinfra.are_parameters_valid("http://data.cliodomain.org/?export?fileId=12;%cat%20/etc/passw1d%20"), 'False recognition of characters in url')
class URITestClass(ConfigTestClass):
def test_validate_uri(self):
self.clioinfra = Configuration()
self.assertFalse(
self.clioinfra.is_valid_uri(
'http://cliodomain.com/xcxc;`some code'))
# check if passwd can be recognized in uri
self.assertFalse(self.clioinfra.are_parameters_valid('passwd'),
'passwd recognition problem')
# wget instance in uri
self.assertFalse(self.clioinfra.are_parameters_valid('wget` '),
'wget recognition problem')
self.assertFalse(self.clioinfra.are_parameters_valid('curl '),
'curl recognition problem')
# other characters are allowed
self.assertTrue(
self.clioinfra.are_parameters_valid(
"http://data.cliodomain.org/collabs/data/static/"),
'False recognition of characters in url')
# shell injection check
self.assertFalse(
self.clioinfra.are_parameters_valid(
"http://data.cliodomain.org/?export?fileId=12;%cat%20/etc/passw1d%20"
), 'False recognition of characters in url')
