swizzyweb/express
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
c3fb7e5adc
express/test/req.protocol.js
Paul Serby 20aa12616a Fix req.protocol/req.secure when using "trust proxy" hops count 
fixes #2569
closes #2570
2015-02-28 21:29:43 -05:00

113 lines
2.5 KiB
JavaScript
Raw Blame History

var express = require('../')
, request = require('supertest');
describe('req', function(){
describe('.protocol', function(){
it('should return the protocol string', function(done){
var app = express();
app.use(function(req, res){
res.end(req.protocol);
});
request(app)
.get('/')
.expect('http', done);
})
describe('when "trust proxy" is enabled', function(){
it('should respect X-Forwarded-Proto', function(done){
var app = express();
app.enable('trust proxy');
app.use(function(req, res){
res.end(req.protocol);
});
request(app)
.get('/')
.set('X-Forwarded-Proto', 'https')
.expect('https', done);
})
it('should default to the socket addr if X-Forwarded-Proto not present', function(done){
var app = express();
app.enable('trust proxy');
app.use(function(req, res){
req.connection.encrypted = true;
res.end(req.protocol);
});
request(app)
.get('/')
.expect('https', done);
})
it('should ignore X-Forwarded-Proto if socket addr not trusted', function(done){
var app = express();
app.set('trust proxy', '10.0.0.1');
app.use(function(req, res){
res.end(req.protocol);
});
request(app)
.get('/')
.set('X-Forwarded-Proto', 'https')
.expect('http', done);
})
it('should default to http', function(done){
var app = express();
app.enable('trust proxy');
app.use(function(req, res){
res.end(req.protocol);
});
request(app)
.get('/')
.expect('http', done);
})
describe('when trusting hop count', function () {
it('should respect X-Forwarded-Proto', function (done) {
var app = express();
app.set('trust proxy', 1);
app.use(function (req, res) {
res.end(req.protocol);
});
request(app)
.get('/')
.set('X-Forwarded-Proto', 'https')
.expect('https', done);
})
})
})
describe('when "trust proxy" is disabled', function(){
it('should ignore X-Forwarded-Proto', function(done){
var app = express();
app.use(function(req, res){
res.end(req.protocol);
});
request(app)
.get('/')
.set('X-Forwarded-Proto', 'https')
.expect('http', done);
})
})
})
})
Reference in New Issue View Git Blame Copy Permalink