Hugging Face's logo

Spaces:
chrisbryan17
/
mautic
No application file

App Files Community
mautic
File size: 2,986 Bytes 
d2897cd
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
 
<?php

namespace Mautic\Middleware\Tests\Dev;

use Mautic\Middleware\Dev\IpRestrictMiddleware;
use PHPUnit\Framework\Assert;
use Symfony\Component\HttpFoundation\Request;
use Symfony\Component\HttpFoundation\Response;
use Symfony\Component\HttpKernel\HttpKernelInterface;

class IpRestrictMiddlewareTest extends \PHPUnit\Framework\TestCase
{
    public function testWorkflowWithLocalhostIp(): void
    {
        $inputRequest = new Request();
        $inputRequest->server->set('REMOTE_ADDR', '127.0.0.1'); // 127.0.0.1 is always allowed.
        $httpKernel = new class() implements HttpKernelInterface {
            public function __construct()
            {
            }

            public function handle(Request $request, $type = HttpKernelInterface::MAIN_REQUEST, $catch = true)
            {
                return new Response();
            }
        };

        $middleware = new IpRestrictMiddleware($httpKernel);
        $response   = $middleware->handle($inputRequest);

        Assert::assertSame(Response::HTTP_OK, $response->getStatusCode());
    }

    public function testWorkflowWithDisallowedIp(): void
    {
        $inputRequest = new Request();
        $inputRequest->server->set('REMOTE_ADDR', 'unallowed.ip.address');
        $httpKernel                 = new class() implements HttpKernelInterface {
            public $handleWasCalled = false;

            public function __construct()
            {
            }

            public function handle(Request $request, $type = HttpKernelInterface::MAIN_REQUEST, $catch = true)
            {
                $this->handleWasCalled = true;
            }
        };

        $middleware = new IpRestrictMiddleware($httpKernel);
        $response   = $middleware->handle($inputRequest);

        Assert::assertSame(Response::HTTP_FORBIDDEN, $response->getStatusCode());
        Assert::assertFalse($httpKernel->handleWasCalled);
    }

    public function testWorkflowWithConfiguredIp(): void
    {
        // Remember original custom_dev_hosts value so we could return it afterwards.
        $originalDevHostsValue = $_SERVER['MAUTIC_CUSTOM_DEV_HOSTS'] ?? '[]';

        $_SERVER['MAUTIC_CUSTOM_DEV_HOSTS'] = '["configured.ip.address"]';

        $inputRequest = new Request();
        $inputRequest->server->set('REMOTE_ADDR', 'configured.ip.address');
        $httpKernel = new class($inputRequest) implements HttpKernelInterface {
            public function __construct()
            {
            }

            public function handle(Request $request, $type = HttpKernelInterface::MAIN_REQUEST, $catch = true)
            {
                return new Response();
            }
        };

        $middleware = new IpRestrictMiddleware($httpKernel);
        $response   = $middleware->handle($inputRequest);

        Assert::assertSame(Response::HTTP_OK, $response->getStatusCode());

        // Set the original value back.
        $_SERVER['MAUTIC_CUSTOM_DEV_HOSTS'] = $originalDevHostsValue;
    }
}