MCPcopy
hub / github.com/midwayjs/midway / postWithCsrfTokenRotate

Function postWithCsrfTokenRotate

packages/security/test/csrf.test.ts:40–55  ·  view source on GitHub ↗

Source from the content-addressed store, hash-verified

38}
39
40const postWithCsrfTokenRotate = async app => {
41 const request = await createHttpRequest(app);
42 const preResponse = await request.get('/csrf').expect(200);
43 const response = await request.get('/rotate').expect(200);
44 const csrfToken = response.text;
45 assert.ok(response.text && preResponse.text !== response.text);
46 const body = {
47 _csrf: csrfToken,
48 test: Date.now()
49 };
50 await request.post('/body')
51 .set('Cookie', response.headers['set-cookie'])
52 .send(body)
53 .expect(200)
54 .expect(body);
55}
56
57const return403WithoutCsrfToken = async app => {
58 const request = await createHttpRequest(app);

Callers 1

csrf.test.tsFile · 0.85

Calls 6

createHttpRequestFunction · 0.90
okMethod · 0.80
getMethod · 0.65
setMethod · 0.65
postMethod · 0.65
sendMethod · 0.45

Tested by

no test coverage detected