aeris
/
cryptcheck
Watch 1
Star 0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
125 Commits
2 Branches
Tree: c75601dad4
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'c75601dad4'
${ noResults }
cryptcheck/spec/cryptcheck/https_spec.rb

https_spec.rb 2.4KB
Raw Blame History

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182838485868788899091929394 
  1. describe CryptCheck::Tls::Https do

  2. 	def server(*args, **kargs, &block)

  3. 		tls_serv *args, **kargs, &block

  4. 	end

  5. 

  6. 	def plain_server(*args, **kargs, &block)

  7. 		plain_serv *args, **kargs, &block

  8. 	end

  9. 

  10. 	def analyze(*args)

  11. 		CryptCheck::Tls::Https.analyze *args

  12. 	end

  13. 

  14. 	include_examples :analysis

  15. 

  16. 	describe '#hsts?' do

  17. 		it 'has no hsts' do

  18. 			grades = server host: '127.0.0.1' do

  19. 				analyze '127.0.0.1', 5000

  20. 			end

  21. 

  22. 			_, server = expect_grade grades, '127.0.0.1', '127.0.0.1', 5000, :ipv4

  23. 			expect(server.hsts?).to be false

  24. 		end

  25. 

  26. 		it 'has hsts' do

  27. 			process = proc do |socket|

  28. 				socket.print [

  29. 									 'HTTP/1.1 200 OK',

  30. 									 'Strict-transport-security: max-age=31536000; includeSubdomains; preload',

  31. 									 'Content-Type: text/plain',

  32. 									 'Content-Length: 0',

  33. 									 'Connection: close'

  34. 							 ].join "\r\n"

  35. 			end

  36. 

  37. 			grades = server host: '127.0.0.1', process: process do

  38. 				analyze '127.0.0.1', 5000

  39. 			end

  40. 

  41. 			_, server = expect_grade grades, '127.0.0.1', '127.0.0.1', 5000, :ipv4

  42. 			expect(server.hsts?).to be true

  43. 		end

  44. 	end

  45. 

  46. 	describe '#hsts_long?' do

  47. 		it 'has no hsts' do

  48. 			grades = server host: '127.0.0.1' do

  49. 				analyze '127.0.0.1', 5000

  50. 			end

  51. 

  52. 			_, server = expect_grade grades, '127.0.0.1', '127.0.0.1', 5000, :ipv4

  53. 			expect(server.hsts_long?).to be false

  54. 		end

  55. 

  56. 		it 'has hsts but not long' do

  57. 			process = proc do |socket|

  58. 				socket.print [

  59. 									 'HTTP/1.1 200 OK',

  60. 									 "Strict-transport-security: max-age=#{CryptCheck::Tls::Https::Server::LONG_HSTS-1}; includeSubdomains; preload",

  61. 									 'Content-Type: text/plain',

  62. 									 'Content-Length: 0',

  63. 									 'Connection: close'

  64. 							 ].join "\r\n"

  65. 			end

  66. 

  67. 			grades = server host: '127.0.0.1', process: process do

  68. 				analyze '127.0.0.1', 5000

  69. 			end

  70. 

  71. 			_, server = expect_grade grades, '127.0.0.1', '127.0.0.1', 5000, :ipv4

  72. 			expect(server.hsts_long?).to be false

  73. 		end

  74. 

  75. 		it 'has long hsts' do

  76. 			process = proc do |socket|

  77. 				socket.print [

  78. 									 'HTTP/1.1 200 OK',

  79. 									 "Strict-transport-security: max-age=#{CryptCheck::Tls::Https::Server::LONG_HSTS}; includeSubdomains; preload",

  80. 									 'Content-Type: text/plain',

  81. 									 'Content-Length: 0',

  82. 									 'Connection: close'

  83. 							 ].join "\r\n"

  84. 			end

  85. 

  86. 			grades = server host: '127.0.0.1', process: process do

  87. 				analyze '127.0.0.1', 5000

  88. 			end

  89. 

  90. 			_, server = expect_grade grades, '127.0.0.1', '127.0.0.1', 5000, :ipv4

  91. 			expect(server.hsts_long?).to be true

  92. 		end

  93. 	end

  94. end