def test_retrieve_csp_report_uri_no(self): """ Test case in which site do not provides CSP report uri. """ hrds = {}.items() csp_headers = Headers(hrds) http_response = HTTPResponse(200, '', csp_headers, self.url, self.url) uri_set = retrieve_csp_report_uri(http_response) self.assertEqual(len(uri_set), 0)
def test_retrieve_csp_report_uri_yes(self): """ Test case in which site provides CSP report uri. """ hrds = {} hrds[CSP_HEADER_FIREFOX] = CSP_DIRECTIVE_OBJECT + " 'self'" hrds[CSP_HEADER_W3C_REPORT_ONLY] = CSP_DIRECTIVE_DEFAULT + \ " 'self';" + CSP_DIRECTIVE_REPORT_URI + " http://example.com" hrds[CSP_HEADER_W3C] = CSP_DIRECTIVE_SCRIPT + " 'self';" + \ CSP_DIRECTIVE_REPORT_URI + " /myrelativeuri" csp_headers = Headers(hrds.items()) http_response = HTTPResponse(200, '', csp_headers, self.url, self.url) uri_set = retrieve_csp_report_uri(http_response) self.assertEqual(len(uri_set), 2) self.assertTrue("http://example.com" in uri_set) self.assertTrue("/myrelativeuri" in uri_set)