aboutsummaryrefslogtreecommitdiffstats
path: root/tests/security/extract_current_page_test.php
blob: c127b69b2b82bbb53ad7ad466e99816d8db114e8 (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
<?php
/**
*
* This file is part of the phpBB Forum Software package.
*
* @copyright (c) phpBB Limited <https://www.phpbb.com>
* @license GNU General Public License, version 2 (GPL-2.0)
*
* For full copyright and license information, please see
* the docs/CREDITS.txt file.
*
*/

require_once dirname(__FILE__) . '/base.php';

require_once dirname(__FILE__) . '/../../phpBB/includes/functions.php';

class phpbb_security_extract_current_page_test extends phpbb_security_test_base
{
	public function security_variables()
	{
		return array(
			array('http://localhost/phpBB/index.php', 'mark=forums&x="><script>alert(/XSS/);</script>', 'mark=forums&x=%22%3E%3Cscript%3Ealert(/XSS/);%3C/script%3E'),
			array('http://localhost/phpBB/index.php', 'mark=forums&x=%22%3E%3Cscript%3Ealert(/XSS/);%3C/script%3E', 'mark=forums&x=%22%3E%3Cscript%3Ealert(/XSS/);%3C/script%3E'),
		);
	}

	/**
	* @dataProvider security_variables
	*/
	public function test_query_string_php_self($url, $query_string, $expected)
	{
		global $symfony_request, $request;

		$symfony_request = $this->getMock("\phpbb\symfony_request", array(), array(
			$request,
		));
		$symfony_request->expects($this->any())
			->method('getScriptName')
			->will($this->returnValue($this->sanitizer($url)));
		$symfony_request->expects($this->any())
			->method('getQueryString')
			->will($this->returnValue($this->sanitizer($query_string)));
		$symfony_request->expects($this->any())
			->method('getBasePath')
			->will($this->returnValue($server['REQUEST_URI']));
		$symfony_request->expects($this->sanitizer($this->any()))
			->method('getPathInfo')
			->will($this->returnValue($this->sanitizer('/')));
		$result = \phpbb\session::extract_current_page('./');

		$label = 'Running extract_current_page on ' . $query_string . ' with PHP_SELF filled.';
		$this->assertEquals($expected, $result['query_string'], $label);
	}

	/**
	* @dataProvider security_variables
	*/
	public function test_query_string_request_uri($url, $query_string, $expected)
	{
		global $symfony_request, $request;

		$symfony_request = $this->getMock("\phpbb\symfony_request", array(), array(
			$request,
		));
		$symfony_request->expects($this->any())
			->method('getScriptName')
			->will($this->returnValue($this->sanitizer($url)));
		$symfony_request->expects($this->any())
			->method('getQueryString')
			->will($this->returnValue($this->sanitizer($query_string)));
		$symfony_request->expects($this->any())
			->method('getBasePath')
			->will($this->returnValue($this->sanitizer($server['REQUEST_URI'])));
		$symfony_request->expects($this->any())
			->method('getPathInfo')
			->will($this->returnValue($this->sanitizer('/')));

		$result = \phpbb\session::extract_current_page('./');

		$label = 'Running extract_current_page on ' . $query_string . ' with REQUEST_URI filled.';
		$this->assertEquals($expected, $result['query_string'], $label);
	}

	protected function sanitizer($value)
	{
		// Fix for objects passed in phpunit
		if (is_object($value))
		{
			return $value;
		}
		$type_cast_helper = new \phpbb\request\type_cast_helper();
		$type_cast_helper->set_var($value, $value, gettype($value), true);
		return str_replace('&amp;', '&', $value);
	}
}