|
123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640641642643644645646647648649650651652653654655656657658659660661662663664665666667668669670671672673674675676677678679680681682683684685686687688689690691692693694695696697698699700701702703704705706707708709710711712713714715716717718719720721722723724725726727728729730731732733734735736737738739740741742743744745746747748749750751752753754755756757758759760761762763764765766767768769770771772773774775776777778779780781782783784785786787788789790791792793794795796797798799800801802803804805806807808809810811812813814815816817818819820821822823824825826827828829830831832833834835836837838839840841842843844845846847848849850851852853854855856857858859860861862863864865866867868869870871872873874875876877878879880881882883884885886887888889890891892893894895896897898899900901902903904905906907908909910911912913914915916917918919920921922923924925926927928929930931932933934935936937938939940941942943944945946947948949950951952953954955956957958959960961962963964965966967968969970971972973974975976977978979980981982983984985986987988989990991992993994995996997998999100010011002100310041005100610071008100910101011101210131014101510161017101810191020102110221023102410251026102710281029103010311032103310341035103610371038103910401041104210431044104510461047104810491050105110521053105410551056105710581059106010611062106310641065106610671068106910701071107210731074107510761077107810791080108110821083108410851086108710881089109010911092109310941095109610971098109911001101110211031104110511061107110811091110111111121113111411151116111711181119112011211122112311241125112611271128112911301131113211331134113511361137113811391140114111421143114411451146114711481149115011511152115311541155115611571158115911601161116211631164116511661167116811691170117111721173117411751176117711781179118011811182118311841185118611871188118911901191119211931194119511961197119811991200120112021203120412051206120712081209121012111212121312141215121612171218121912201221122212231224122512261227122812291230123112321233123412351236123712381239124012411242124312441245124612471248124912501251125212531254125512561257125812591260126112621263126412651266126712681269127012711272127312741275127612771278127912801281128212831284128512861287128812891290129112921293129412951296129712981299130013011302130313041305130613071308130913101311131213131314131513161317131813191320132113221323132413251326132713281329133013311332133313341335133613371338133913401341134213431344134513461347134813491350135113521353135413551356135713581359136013611362136313641365136613671368136913701371137213731374137513761377137813791380138113821383138413851386138713881389139013911392139313941395139613971398139914001401140214031404140514061407140814091410141114121413141414151416141714181419142014211422142314241425142614271428142914301431143214331434143514361437143814391440144114421443144414451446144714481449145014511452145314541455145614571458145914601461146214631464146514661467146814691470147114721473147414751476147714781479148014811482148314841485148614871488148914901491149214931494149514961497149814991500150115021503150415051506150715081509151015111512151315141515151615171518151915201521152215231524152515261527152815291530153115321533153415351536153715381539154015411542154315441545154615471548154915501551155215531554155515561557155815591560156115621563156415651566156715681569157015711572157315741575157615771578157915801581158215831584158515861587158815891590159115921593159415951596159715981599160016011602160316041605160616071608160916101611161216131614161516161617161816191620162116221623162416251626162716281629163016311632163316341635163616371638163916401641164216431644164516461647164816491650165116521653165416551656165716581659166016611662166316641665166616671668166916701671167216731674167516761677167816791680168116821683168416851686168716881689169016911692169316941695169616971698169917001701170217031704170517061707170817091710171117121713171417151716171717181719172017211722172317241725172617271728172917301731173217331734173517361737173817391740174117421743174417451746174717481749175017511752175317541755175617571758175917601761176217631764176517661767176817691770177117721773177417751776177717781779178017811782178317841785178617871788178917901791179217931794179517961797179817991800180118021803180418051806180718081809181018111812181318141815181618171818181918201821182218231824182518261827182818291830183118321833183418351836183718381839184018411842184318441845184618471848184918501851185218531854185518561857185818591860186118621863186418651866186718681869187018711872187318741875187618771878187918801881188218831884188518861887188818891890189118921893189418951896189718981899190019011902190319041905190619071908190919101911191219131914191519161917191819191920192119221923192419251926192719281929193019311932193319341935193619371938193919401941194219431944194519461947194819491950195119521953195419551956195719581959196019611962196319641965196619671968196919701971197219731974197519761977197819791980198119821983198419851986198719881989199019911992199319941995199619971998199920002001200220032004200520062007200820092010201120122013201420152016201720182019202020212022202320242025202620272028202920302031203220332034203520362037203820392040204120422043204420452046204720482049205020512052205320542055205620572058205920602061206220632064206520662067206820692070207120722073207420752076207720782079208020812082208320842085208620872088208920902091209220932094209520962097209820992100210121022103210421052106210721082109211021112112211321142115211621172118211921202121212221232124212521262127212821292130213121322133213421352136213721382139214021412142214321442145214621472148214921502151215221532154215521562157215821592160216121622163216421652166216721682169217021712172217321742175217621772178217921802181218221832184218521862187218821892190219121922193219421952196219721982199220022012202220322042205220622072208220922102211221222132214221522162217221822192220222122222223222422252226222722282229223022312232223322342235223622372238223922402241224222432244224522462247224822492250225122522253225422552256225722582259226022612262226322642265226622672268226922702271227222732274227522762277227822792280228122822283228422852286228722882289229022912292229322942295229622972298229923002301230223032304230523062307230823092310231123122313231423152316231723182319232023212322232323242325232623272328232923302331233223332334233523362337233823392340234123422343234423452346234723482349235023512352235323542355235623572358235923602361236223632364236523662367236823692370237123722373237423752376237723782379238023812382238323842385238623872388238923902391239223932394239523962397239823992400240124022403240424052406240724082409241024112412241324142415241624172418241924202421242224232424242524262427242824292430243124322433243424352436243724382439244024412442244324442445244624472448244924502451 |
- <?php
-
- /*
- * This file is part of the Symfony package.
- *
- * (c) Fabien Potencier <fabien@symfony.com>
- *
- * For the full copyright and license information, please view the LICENSE
- * file that was distributed with this source code.
- */
-
- namespace Symfony\Component\HttpFoundation\Tests;
-
- use PHPUnit\Framework\TestCase;
- use Symfony\Component\HttpFoundation\Exception\SuspiciousOperationException;
- use Symfony\Component\HttpFoundation\Request;
- use Symfony\Component\HttpFoundation\Session\Session;
- use Symfony\Component\HttpFoundation\Session\Storage\MockArraySessionStorage;
-
- class RequestTest extends TestCase
- {
- protected function tearDown()
- {
- Request::setTrustedProxies([], -1);
- Request::setTrustedHosts([]);
- }
-
- public function testInitialize()
- {
- $request = new Request();
-
- $request->initialize(['foo' => 'bar']);
- $this->assertEquals('bar', $request->query->get('foo'), '->initialize() takes an array of query parameters as its first argument');
-
- $request->initialize([], ['foo' => 'bar']);
- $this->assertEquals('bar', $request->request->get('foo'), '->initialize() takes an array of request parameters as its second argument');
-
- $request->initialize([], [], ['foo' => 'bar']);
- $this->assertEquals('bar', $request->attributes->get('foo'), '->initialize() takes an array of attributes as its third argument');
-
- $request->initialize([], [], [], [], [], ['HTTP_FOO' => 'bar']);
- $this->assertEquals('bar', $request->headers->get('FOO'), '->initialize() takes an array of HTTP headers as its sixth argument');
- }
-
- public function testGetLocale()
- {
- $request = new Request();
- $request->setLocale('pl');
- $locale = $request->getLocale();
- $this->assertEquals('pl', $locale);
- }
-
- public function testGetUser()
- {
- $request = Request::create('http://user:password@test.com');
- $user = $request->getUser();
-
- $this->assertEquals('user', $user);
- }
-
- public function testGetPassword()
- {
- $request = Request::create('http://user:password@test.com');
- $password = $request->getPassword();
-
- $this->assertEquals('password', $password);
- }
-
- public function testIsNoCache()
- {
- $request = new Request();
- $isNoCache = $request->isNoCache();
-
- $this->assertFalse($isNoCache);
- }
-
- public function testGetContentType()
- {
- $request = new Request();
- $contentType = $request->getContentType();
-
- $this->assertNull($contentType);
- }
-
- public function testSetDefaultLocale()
- {
- $request = new Request();
- $request->setDefaultLocale('pl');
- $locale = $request->getLocale();
-
- $this->assertEquals('pl', $locale);
- }
-
- public function testCreate()
- {
- $request = Request::create('http://test.com/foo?bar=baz');
- $this->assertEquals('http://test.com/foo?bar=baz', $request->getUri());
- $this->assertEquals('/foo', $request->getPathInfo());
- $this->assertEquals('bar=baz', $request->getQueryString());
- $this->assertEquals(80, $request->getPort());
- $this->assertEquals('test.com', $request->getHttpHost());
- $this->assertFalse($request->isSecure());
-
- $request = Request::create('http://test.com/foo', 'GET', ['bar' => 'baz']);
- $this->assertEquals('http://test.com/foo?bar=baz', $request->getUri());
- $this->assertEquals('/foo', $request->getPathInfo());
- $this->assertEquals('bar=baz', $request->getQueryString());
- $this->assertEquals(80, $request->getPort());
- $this->assertEquals('test.com', $request->getHttpHost());
- $this->assertFalse($request->isSecure());
-
- $request = Request::create('http://test.com/foo?bar=foo', 'GET', ['bar' => 'baz']);
- $this->assertEquals('http://test.com/foo?bar=baz', $request->getUri());
- $this->assertEquals('/foo', $request->getPathInfo());
- $this->assertEquals('bar=baz', $request->getQueryString());
- $this->assertEquals(80, $request->getPort());
- $this->assertEquals('test.com', $request->getHttpHost());
- $this->assertFalse($request->isSecure());
-
- $request = Request::create('https://test.com/foo?bar=baz');
- $this->assertEquals('https://test.com/foo?bar=baz', $request->getUri());
- $this->assertEquals('/foo', $request->getPathInfo());
- $this->assertEquals('bar=baz', $request->getQueryString());
- $this->assertEquals(443, $request->getPort());
- $this->assertEquals('test.com', $request->getHttpHost());
- $this->assertTrue($request->isSecure());
-
- $request = Request::create('test.com:90/foo');
- $this->assertEquals('http://test.com:90/foo', $request->getUri());
- $this->assertEquals('/foo', $request->getPathInfo());
- $this->assertEquals('test.com', $request->getHost());
- $this->assertEquals('test.com:90', $request->getHttpHost());
- $this->assertEquals(90, $request->getPort());
- $this->assertFalse($request->isSecure());
-
- $request = Request::create('https://test.com:90/foo');
- $this->assertEquals('https://test.com:90/foo', $request->getUri());
- $this->assertEquals('/foo', $request->getPathInfo());
- $this->assertEquals('test.com', $request->getHost());
- $this->assertEquals('test.com:90', $request->getHttpHost());
- $this->assertEquals(90, $request->getPort());
- $this->assertTrue($request->isSecure());
-
- $request = Request::create('https://127.0.0.1:90/foo');
- $this->assertEquals('https://127.0.0.1:90/foo', $request->getUri());
- $this->assertEquals('/foo', $request->getPathInfo());
- $this->assertEquals('127.0.0.1', $request->getHost());
- $this->assertEquals('127.0.0.1:90', $request->getHttpHost());
- $this->assertEquals(90, $request->getPort());
- $this->assertTrue($request->isSecure());
-
- $request = Request::create('https://[::1]:90/foo');
- $this->assertEquals('https://[::1]:90/foo', $request->getUri());
- $this->assertEquals('/foo', $request->getPathInfo());
- $this->assertEquals('[::1]', $request->getHost());
- $this->assertEquals('[::1]:90', $request->getHttpHost());
- $this->assertEquals(90, $request->getPort());
- $this->assertTrue($request->isSecure());
-
- $request = Request::create('https://[::1]/foo');
- $this->assertEquals('https://[::1]/foo', $request->getUri());
- $this->assertEquals('/foo', $request->getPathInfo());
- $this->assertEquals('[::1]', $request->getHost());
- $this->assertEquals('[::1]', $request->getHttpHost());
- $this->assertEquals(443, $request->getPort());
- $this->assertTrue($request->isSecure());
-
- $json = '{"jsonrpc":"2.0","method":"echo","id":7,"params":["Hello World"]}';
- $request = Request::create('http://example.com/jsonrpc', 'POST', [], [], [], [], $json);
- $this->assertEquals($json, $request->getContent());
- $this->assertFalse($request->isSecure());
-
- $request = Request::create('http://test.com');
- $this->assertEquals('http://test.com/', $request->getUri());
- $this->assertEquals('/', $request->getPathInfo());
- $this->assertEquals('', $request->getQueryString());
- $this->assertEquals(80, $request->getPort());
- $this->assertEquals('test.com', $request->getHttpHost());
- $this->assertFalse($request->isSecure());
-
- $request = Request::create('http://test.com?test=1');
- $this->assertEquals('http://test.com/?test=1', $request->getUri());
- $this->assertEquals('/', $request->getPathInfo());
- $this->assertEquals('test=1', $request->getQueryString());
- $this->assertEquals(80, $request->getPort());
- $this->assertEquals('test.com', $request->getHttpHost());
- $this->assertFalse($request->isSecure());
-
- $request = Request::create('http://test.com:90/?test=1');
- $this->assertEquals('http://test.com:90/?test=1', $request->getUri());
- $this->assertEquals('/', $request->getPathInfo());
- $this->assertEquals('test=1', $request->getQueryString());
- $this->assertEquals(90, $request->getPort());
- $this->assertEquals('test.com:90', $request->getHttpHost());
- $this->assertFalse($request->isSecure());
-
- $request = Request::create('http://username:password@test.com');
- $this->assertEquals('http://test.com/', $request->getUri());
- $this->assertEquals('/', $request->getPathInfo());
- $this->assertEquals('', $request->getQueryString());
- $this->assertEquals(80, $request->getPort());
- $this->assertEquals('test.com', $request->getHttpHost());
- $this->assertEquals('username', $request->getUser());
- $this->assertEquals('password', $request->getPassword());
- $this->assertFalse($request->isSecure());
-
- $request = Request::create('http://username@test.com');
- $this->assertEquals('http://test.com/', $request->getUri());
- $this->assertEquals('/', $request->getPathInfo());
- $this->assertEquals('', $request->getQueryString());
- $this->assertEquals(80, $request->getPort());
- $this->assertEquals('test.com', $request->getHttpHost());
- $this->assertEquals('username', $request->getUser());
- $this->assertSame('', $request->getPassword());
- $this->assertFalse($request->isSecure());
-
- $request = Request::create('http://test.com/?foo');
- $this->assertEquals('/?foo', $request->getRequestUri());
- $this->assertEquals(['foo' => ''], $request->query->all());
-
- // assume rewrite rule: (.*) --> app/app.php; app/ is a symlink to a symfony web/ directory
- $request = Request::create('http://test.com/apparthotel-1234', 'GET', [], [], [],
- [
- 'DOCUMENT_ROOT' => '/var/www/www.test.com',
- 'SCRIPT_FILENAME' => '/var/www/www.test.com/app/app.php',
- 'SCRIPT_NAME' => '/app/app.php',
- 'PHP_SELF' => '/app/app.php/apparthotel-1234',
- ]);
- $this->assertEquals('http://test.com/apparthotel-1234', $request->getUri());
- $this->assertEquals('/apparthotel-1234', $request->getPathInfo());
- $this->assertEquals('', $request->getQueryString());
- $this->assertEquals(80, $request->getPort());
- $this->assertEquals('test.com', $request->getHttpHost());
- $this->assertFalse($request->isSecure());
-
- // Fragment should not be included in the URI
- $request = Request::create('http://test.com/foo#bar');
- $this->assertEquals('http://test.com/foo', $request->getUri());
- }
-
- public function testCreateWithRequestUri()
- {
- $request = Request::create('http://test.com:80/foo');
- $request->server->set('REQUEST_URI', 'http://test.com:80/foo');
- $this->assertEquals('http://test.com/foo', $request->getUri());
- $this->assertEquals('/foo', $request->getPathInfo());
- $this->assertEquals('test.com', $request->getHost());
- $this->assertEquals('test.com', $request->getHttpHost());
- $this->assertEquals(80, $request->getPort());
- $this->assertFalse($request->isSecure());
-
- $request = Request::create('http://test.com:8080/foo');
- $request->server->set('REQUEST_URI', 'http://test.com:8080/foo');
- $this->assertEquals('http://test.com:8080/foo', $request->getUri());
- $this->assertEquals('/foo', $request->getPathInfo());
- $this->assertEquals('test.com', $request->getHost());
- $this->assertEquals('test.com:8080', $request->getHttpHost());
- $this->assertEquals(8080, $request->getPort());
- $this->assertFalse($request->isSecure());
-
- $request = Request::create('http://test.com/foo?bar=foo', 'GET', ['bar' => 'baz']);
- $request->server->set('REQUEST_URI', 'http://test.com/foo?bar=foo');
- $this->assertEquals('http://test.com/foo?bar=baz', $request->getUri());
- $this->assertEquals('/foo', $request->getPathInfo());
- $this->assertEquals('bar=baz', $request->getQueryString());
- $this->assertEquals('test.com', $request->getHost());
- $this->assertEquals('test.com', $request->getHttpHost());
- $this->assertEquals(80, $request->getPort());
- $this->assertFalse($request->isSecure());
-
- $request = Request::create('https://test.com:443/foo');
- $request->server->set('REQUEST_URI', 'https://test.com:443/foo');
- $this->assertEquals('https://test.com/foo', $request->getUri());
- $this->assertEquals('/foo', $request->getPathInfo());
- $this->assertEquals('test.com', $request->getHost());
- $this->assertEquals('test.com', $request->getHttpHost());
- $this->assertEquals(443, $request->getPort());
- $this->assertTrue($request->isSecure());
-
- // Fragment should not be included in the URI
- $request = Request::create('http://test.com/foo#bar');
- $request->server->set('REQUEST_URI', 'http://test.com/foo#bar');
- $this->assertEquals('http://test.com/foo', $request->getUri());
- }
-
- /**
- * @dataProvider getRequestUriData
- */
- public function testGetRequestUri($serverRequestUri, $expected, $message)
- {
- $request = new Request();
- $request->server->add([
- 'REQUEST_URI' => $serverRequestUri,
-
- // For having http://test.com
- 'SERVER_NAME' => 'test.com',
- 'SERVER_PORT' => 80,
- ]);
-
- $this->assertSame($expected, $request->getRequestUri(), $message);
- $this->assertSame($expected, $request->server->get('REQUEST_URI'), 'Normalize the request URI.');
- }
-
- public function getRequestUriData()
- {
- $message = 'Do not modify the path.';
- yield ['/foo', '/foo', $message];
- yield ['//bar/foo', '//bar/foo', $message];
- yield ['///bar/foo', '///bar/foo', $message];
-
- $message = 'Handle when the scheme, host are on REQUEST_URI.';
- yield ['http://test.com/foo?bar=baz', '/foo?bar=baz', $message];
-
- $message = 'Handle when the scheme, host and port are on REQUEST_URI.';
- yield ['http://test.com:80/foo', '/foo', $message];
- yield ['https://test.com:8080/foo', '/foo', $message];
- yield ['https://test.com:443/foo', '/foo', $message];
-
- $message = 'Fragment should not be included in the URI';
- yield ['http://test.com/foo#bar', '/foo', $message];
- yield ['/foo#bar', '/foo', $message];
- }
-
- public function testGetRequestUriWithoutRequiredHeader()
- {
- $expected = '';
-
- $request = new Request();
-
- $message = 'Fallback to empty URI when headers are missing.';
- $this->assertSame($expected, $request->getRequestUri(), $message);
- $this->assertSame($expected, $request->server->get('REQUEST_URI'), 'Normalize the request URI.');
- }
-
- public function testCreateCheckPrecedence()
- {
- // server is used by default
- $request = Request::create('/', 'DELETE', [], [], [], [
- 'HTTP_HOST' => 'example.com',
- 'HTTPS' => 'on',
- 'SERVER_PORT' => 443,
- 'PHP_AUTH_USER' => 'fabien',
- 'PHP_AUTH_PW' => 'pa$$',
- 'QUERY_STRING' => 'foo=bar',
- 'CONTENT_TYPE' => 'application/json',
- ]);
- $this->assertEquals('example.com', $request->getHost());
- $this->assertEquals(443, $request->getPort());
- $this->assertTrue($request->isSecure());
- $this->assertEquals('fabien', $request->getUser());
- $this->assertEquals('pa$$', $request->getPassword());
- $this->assertEquals('', $request->getQueryString());
- $this->assertEquals('application/json', $request->headers->get('CONTENT_TYPE'));
-
- // URI has precedence over server
- $request = Request::create('http://thomas:pokemon@example.net:8080/?foo=bar', 'GET', [], [], [], [
- 'HTTP_HOST' => 'example.com',
- 'HTTPS' => 'on',
- 'SERVER_PORT' => 443,
- ]);
- $this->assertEquals('example.net', $request->getHost());
- $this->assertEquals(8080, $request->getPort());
- $this->assertFalse($request->isSecure());
- $this->assertEquals('thomas', $request->getUser());
- $this->assertEquals('pokemon', $request->getPassword());
- $this->assertEquals('foo=bar', $request->getQueryString());
- }
-
- public function testDuplicate()
- {
- $request = new Request(['foo' => 'bar'], ['foo' => 'bar'], ['foo' => 'bar'], [], [], ['HTTP_FOO' => 'bar']);
- $dup = $request->duplicate();
-
- $this->assertEquals($request->query->all(), $dup->query->all(), '->duplicate() duplicates a request an copy the current query parameters');
- $this->assertEquals($request->request->all(), $dup->request->all(), '->duplicate() duplicates a request an copy the current request parameters');
- $this->assertEquals($request->attributes->all(), $dup->attributes->all(), '->duplicate() duplicates a request an copy the current attributes');
- $this->assertEquals($request->headers->all(), $dup->headers->all(), '->duplicate() duplicates a request an copy the current HTTP headers');
-
- $dup = $request->duplicate(['foo' => 'foobar'], ['foo' => 'foobar'], ['foo' => 'foobar'], [], [], ['HTTP_FOO' => 'foobar']);
-
- $this->assertEquals(['foo' => 'foobar'], $dup->query->all(), '->duplicate() overrides the query parameters if provided');
- $this->assertEquals(['foo' => 'foobar'], $dup->request->all(), '->duplicate() overrides the request parameters if provided');
- $this->assertEquals(['foo' => 'foobar'], $dup->attributes->all(), '->duplicate() overrides the attributes if provided');
- $this->assertEquals(['foo' => ['foobar']], $dup->headers->all(), '->duplicate() overrides the HTTP header if provided');
- }
-
- public function testDuplicateWithFormat()
- {
- $request = new Request([], [], ['_format' => 'json']);
- $dup = $request->duplicate();
-
- $this->assertEquals('json', $dup->getRequestFormat());
- $this->assertEquals('json', $dup->attributes->get('_format'));
-
- $request = new Request();
- $request->setRequestFormat('xml');
- $dup = $request->duplicate();
-
- $this->assertEquals('xml', $dup->getRequestFormat());
- }
-
- /**
- * @dataProvider getFormatToMimeTypeMapProviderWithAdditionalNullFormat
- */
- public function testGetFormatFromMimeType($format, $mimeTypes)
- {
- $request = new Request();
- foreach ($mimeTypes as $mime) {
- $this->assertEquals($format, $request->getFormat($mime));
- }
- $request->setFormat($format, $mimeTypes);
- foreach ($mimeTypes as $mime) {
- $this->assertEquals($format, $request->getFormat($mime));
-
- if (null !== $format) {
- $this->assertEquals($mimeTypes[0], $request->getMimeType($format));
- }
- }
- }
-
- public function getFormatToMimeTypeMapProviderWithAdditionalNullFormat()
- {
- return array_merge(
- [[null, [null, 'unexistent-mime-type']]],
- $this->getFormatToMimeTypeMapProvider()
- );
- }
-
- public function testGetFormatFromMimeTypeWithParameters()
- {
- $request = new Request();
- $this->assertEquals('json', $request->getFormat('application/json; charset=utf-8'));
- $this->assertEquals('json', $request->getFormat('application/json;charset=utf-8'));
- $this->assertEquals('json', $request->getFormat('application/json ; charset=utf-8'));
- $this->assertEquals('json', $request->getFormat('application/json ;charset=utf-8'));
- }
-
- /**
- * @dataProvider getFormatToMimeTypeMapProvider
- */
- public function testGetMimeTypeFromFormat($format, $mimeTypes)
- {
- $request = new Request();
- $this->assertEquals($mimeTypes[0], $request->getMimeType($format));
- }
-
- /**
- * @dataProvider getFormatToMimeTypeMapProvider
- */
- public function testGetMimeTypesFromFormat($format, $mimeTypes)
- {
- $this->assertEquals($mimeTypes, Request::getMimeTypes($format));
- }
-
- public function testGetMimeTypesFromInexistentFormat()
- {
- $request = new Request();
- $this->assertNull($request->getMimeType('foo'));
- $this->assertEquals([], Request::getMimeTypes('foo'));
- }
-
- public function testGetFormatWithCustomMimeType()
- {
- $request = new Request();
- $request->setFormat('custom', 'application/vnd.foo.api;myversion=2.3');
- $this->assertEquals('custom', $request->getFormat('application/vnd.foo.api;myversion=2.3'));
- }
-
- public function getFormatToMimeTypeMapProvider()
- {
- return [
- ['txt', ['text/plain']],
- ['js', ['application/javascript', 'application/x-javascript', 'text/javascript']],
- ['css', ['text/css']],
- ['json', ['application/json', 'application/x-json']],
- ['jsonld', ['application/ld+json']],
- ['xml', ['text/xml', 'application/xml', 'application/x-xml']],
- ['rdf', ['application/rdf+xml']],
- ['atom', ['application/atom+xml']],
- ];
- }
-
- public function testGetUri()
- {
- $server = [];
-
- // Standard Request on non default PORT
- // http://host:8080/index.php/path/info?query=string
-
- $server['HTTP_HOST'] = 'host:8080';
- $server['SERVER_NAME'] = 'servername';
- $server['SERVER_PORT'] = '8080';
-
- $server['QUERY_STRING'] = 'query=string';
- $server['REQUEST_URI'] = '/index.php/path/info?query=string';
- $server['SCRIPT_NAME'] = '/index.php';
- $server['PATH_INFO'] = '/path/info';
- $server['PATH_TRANSLATED'] = 'redirect:/index.php/path/info';
- $server['PHP_SELF'] = '/index_dev.php/path/info';
- $server['SCRIPT_FILENAME'] = '/some/where/index.php';
-
- $request = new Request();
-
- $request->initialize([], [], [], [], [], $server);
-
- $this->assertEquals('http://host:8080/index.php/path/info?query=string', $request->getUri(), '->getUri() with non default port');
-
- // Use std port number
- $server['HTTP_HOST'] = 'host';
- $server['SERVER_NAME'] = 'servername';
- $server['SERVER_PORT'] = '80';
-
- $request->initialize([], [], [], [], [], $server);
-
- $this->assertEquals('http://host/index.php/path/info?query=string', $request->getUri(), '->getUri() with default port');
-
- // Without HOST HEADER
- unset($server['HTTP_HOST']);
- $server['SERVER_NAME'] = 'servername';
- $server['SERVER_PORT'] = '80';
-
- $request->initialize([], [], [], [], [], $server);
-
- $this->assertEquals('http://servername/index.php/path/info?query=string', $request->getUri(), '->getUri() with default port without HOST_HEADER');
-
- // Request with URL REWRITING (hide index.php)
- // RewriteCond %{REQUEST_FILENAME} !-f
- // RewriteRule ^(.*)$ index.php [QSA,L]
- // http://host:8080/path/info?query=string
- $server = [];
- $server['HTTP_HOST'] = 'host:8080';
- $server['SERVER_NAME'] = 'servername';
- $server['SERVER_PORT'] = '8080';
-
- $server['REDIRECT_QUERY_STRING'] = 'query=string';
- $server['REDIRECT_URL'] = '/path/info';
- $server['SCRIPT_NAME'] = '/index.php';
- $server['QUERY_STRING'] = 'query=string';
- $server['REQUEST_URI'] = '/path/info?toto=test&1=1';
- $server['SCRIPT_NAME'] = '/index.php';
- $server['PHP_SELF'] = '/index.php';
- $server['SCRIPT_FILENAME'] = '/some/where/index.php';
-
- $request->initialize([], [], [], [], [], $server);
- $this->assertEquals('http://host:8080/path/info?query=string', $request->getUri(), '->getUri() with rewrite');
-
- // Use std port number
- // http://host/path/info?query=string
- $server['HTTP_HOST'] = 'host';
- $server['SERVER_NAME'] = 'servername';
- $server['SERVER_PORT'] = '80';
-
- $request->initialize([], [], [], [], [], $server);
-
- $this->assertEquals('http://host/path/info?query=string', $request->getUri(), '->getUri() with rewrite and default port');
-
- // Without HOST HEADER
- unset($server['HTTP_HOST']);
- $server['SERVER_NAME'] = 'servername';
- $server['SERVER_PORT'] = '80';
-
- $request->initialize([], [], [], [], [], $server);
-
- $this->assertEquals('http://servername/path/info?query=string', $request->getUri(), '->getUri() with rewrite, default port without HOST_HEADER');
-
- // With encoded characters
-
- $server = [
- 'HTTP_HOST' => 'host:8080',
- 'SERVER_NAME' => 'servername',
- 'SERVER_PORT' => '8080',
- 'QUERY_STRING' => 'query=string',
- 'REQUEST_URI' => '/ba%20se/index_dev.php/foo%20bar/in+fo?query=string',
- 'SCRIPT_NAME' => '/ba se/index_dev.php',
- 'PATH_TRANSLATED' => 'redirect:/index.php/foo bar/in+fo',
- 'PHP_SELF' => '/ba se/index_dev.php/path/info',
- 'SCRIPT_FILENAME' => '/some/where/ba se/index_dev.php',
- ];
-
- $request->initialize([], [], [], [], [], $server);
-
- $this->assertEquals(
- 'http://host:8080/ba%20se/index_dev.php/foo%20bar/in+fo?query=string',
- $request->getUri()
- );
-
- // with user info
-
- $server['PHP_AUTH_USER'] = 'fabien';
- $request->initialize([], [], [], [], [], $server);
- $this->assertEquals('http://host:8080/ba%20se/index_dev.php/foo%20bar/in+fo?query=string', $request->getUri());
-
- $server['PHP_AUTH_PW'] = 'symfony';
- $request->initialize([], [], [], [], [], $server);
- $this->assertEquals('http://host:8080/ba%20se/index_dev.php/foo%20bar/in+fo?query=string', $request->getUri());
- }
-
- public function testGetUriForPath()
- {
- $request = Request::create('http://test.com/foo?bar=baz');
- $this->assertEquals('http://test.com/some/path', $request->getUriForPath('/some/path'));
-
- $request = Request::create('http://test.com:90/foo?bar=baz');
- $this->assertEquals('http://test.com:90/some/path', $request->getUriForPath('/some/path'));
-
- $request = Request::create('https://test.com/foo?bar=baz');
- $this->assertEquals('https://test.com/some/path', $request->getUriForPath('/some/path'));
-
- $request = Request::create('https://test.com:90/foo?bar=baz');
- $this->assertEquals('https://test.com:90/some/path', $request->getUriForPath('/some/path'));
-
- $server = [];
-
- // Standard Request on non default PORT
- // http://host:8080/index.php/path/info?query=string
-
- $server['HTTP_HOST'] = 'host:8080';
- $server['SERVER_NAME'] = 'servername';
- $server['SERVER_PORT'] = '8080';
-
- $server['QUERY_STRING'] = 'query=string';
- $server['REQUEST_URI'] = '/index.php/path/info?query=string';
- $server['SCRIPT_NAME'] = '/index.php';
- $server['PATH_INFO'] = '/path/info';
- $server['PATH_TRANSLATED'] = 'redirect:/index.php/path/info';
- $server['PHP_SELF'] = '/index_dev.php/path/info';
- $server['SCRIPT_FILENAME'] = '/some/where/index.php';
-
- $request = new Request();
-
- $request->initialize([], [], [], [], [], $server);
-
- $this->assertEquals('http://host:8080/index.php/some/path', $request->getUriForPath('/some/path'), '->getUriForPath() with non default port');
-
- // Use std port number
- $server['HTTP_HOST'] = 'host';
- $server['SERVER_NAME'] = 'servername';
- $server['SERVER_PORT'] = '80';
-
- $request->initialize([], [], [], [], [], $server);
-
- $this->assertEquals('http://host/index.php/some/path', $request->getUriForPath('/some/path'), '->getUriForPath() with default port');
-
- // Without HOST HEADER
- unset($server['HTTP_HOST']);
- $server['SERVER_NAME'] = 'servername';
- $server['SERVER_PORT'] = '80';
-
- $request->initialize([], [], [], [], [], $server);
-
- $this->assertEquals('http://servername/index.php/some/path', $request->getUriForPath('/some/path'), '->getUriForPath() with default port without HOST_HEADER');
-
- // Request with URL REWRITING (hide index.php)
- // RewriteCond %{REQUEST_FILENAME} !-f
- // RewriteRule ^(.*)$ index.php [QSA,L]
- // http://host:8080/path/info?query=string
- $server = [];
- $server['HTTP_HOST'] = 'host:8080';
- $server['SERVER_NAME'] = 'servername';
- $server['SERVER_PORT'] = '8080';
-
- $server['REDIRECT_QUERY_STRING'] = 'query=string';
- $server['REDIRECT_URL'] = '/path/info';
- $server['SCRIPT_NAME'] = '/index.php';
- $server['QUERY_STRING'] = 'query=string';
- $server['REQUEST_URI'] = '/path/info?toto=test&1=1';
- $server['SCRIPT_NAME'] = '/index.php';
- $server['PHP_SELF'] = '/index.php';
- $server['SCRIPT_FILENAME'] = '/some/where/index.php';
-
- $request->initialize([], [], [], [], [], $server);
- $this->assertEquals('http://host:8080/some/path', $request->getUriForPath('/some/path'), '->getUri() with rewrite');
-
- // Use std port number
- // http://host/path/info?query=string
- $server['HTTP_HOST'] = 'host';
- $server['SERVER_NAME'] = 'servername';
- $server['SERVER_PORT'] = '80';
-
- $request->initialize([], [], [], [], [], $server);
-
- $this->assertEquals('http://host/some/path', $request->getUriForPath('/some/path'), '->getUriForPath() with rewrite and default port');
-
- // Without HOST HEADER
- unset($server['HTTP_HOST']);
- $server['SERVER_NAME'] = 'servername';
- $server['SERVER_PORT'] = '80';
-
- $request->initialize([], [], [], [], [], $server);
-
- $this->assertEquals('http://servername/some/path', $request->getUriForPath('/some/path'), '->getUriForPath() with rewrite, default port without HOST_HEADER');
- $this->assertEquals('servername', $request->getHttpHost());
-
- // with user info
-
- $server['PHP_AUTH_USER'] = 'fabien';
- $request->initialize([], [], [], [], [], $server);
- $this->assertEquals('http://servername/some/path', $request->getUriForPath('/some/path'));
-
- $server['PHP_AUTH_PW'] = 'symfony';
- $request->initialize([], [], [], [], [], $server);
- $this->assertEquals('http://servername/some/path', $request->getUriForPath('/some/path'));
- }
-
- /**
- * @dataProvider getRelativeUriForPathData()
- */
- public function testGetRelativeUriForPath($expected, $pathinfo, $path)
- {
- $this->assertEquals($expected, Request::create($pathinfo)->getRelativeUriForPath($path));
- }
-
- public function getRelativeUriForPathData()
- {
- return [
- ['me.png', '/foo', '/me.png'],
- ['../me.png', '/foo/bar', '/me.png'],
- ['me.png', '/foo/bar', '/foo/me.png'],
- ['../baz/me.png', '/foo/bar/b', '/foo/baz/me.png'],
- ['../../fooz/baz/me.png', '/foo/bar/b', '/fooz/baz/me.png'],
- ['baz/me.png', '/foo/bar/b', 'baz/me.png'],
- ];
- }
-
- public function testGetUserInfo()
- {
- $request = new Request();
-
- $server = ['PHP_AUTH_USER' => 'fabien'];
- $request->initialize([], [], [], [], [], $server);
- $this->assertEquals('fabien', $request->getUserInfo());
-
- $server['PHP_AUTH_USER'] = '0';
- $request->initialize([], [], [], [], [], $server);
- $this->assertEquals('0', $request->getUserInfo());
-
- $server['PHP_AUTH_PW'] = '0';
- $request->initialize([], [], [], [], [], $server);
- $this->assertEquals('0:0', $request->getUserInfo());
- }
-
- public function testGetSchemeAndHttpHost()
- {
- $request = new Request();
-
- $server = [];
- $server['SERVER_NAME'] = 'servername';
- $server['SERVER_PORT'] = '90';
- $request->initialize([], [], [], [], [], $server);
- $this->assertEquals('http://servername:90', $request->getSchemeAndHttpHost());
-
- $server['PHP_AUTH_USER'] = 'fabien';
- $request->initialize([], [], [], [], [], $server);
- $this->assertEquals('http://servername:90', $request->getSchemeAndHttpHost());
-
- $server['PHP_AUTH_USER'] = '0';
- $request->initialize([], [], [], [], [], $server);
- $this->assertEquals('http://servername:90', $request->getSchemeAndHttpHost());
-
- $server['PHP_AUTH_PW'] = '0';
- $request->initialize([], [], [], [], [], $server);
- $this->assertEquals('http://servername:90', $request->getSchemeAndHttpHost());
- }
-
- /**
- * @dataProvider getQueryStringNormalizationData
- */
- public function testGetQueryString($query, $expectedQuery, $msg)
- {
- $request = new Request();
-
- $request->server->set('QUERY_STRING', $query);
- $this->assertSame($expectedQuery, $request->getQueryString(), $msg);
- }
-
- public function getQueryStringNormalizationData()
- {
- return [
- ['foo', 'foo', 'works with valueless parameters'],
- ['foo=', 'foo=', 'includes a dangling equal sign'],
- ['bar=&foo=bar', 'bar=&foo=bar', '->works with empty parameters'],
- ['foo=bar&bar=', 'bar=&foo=bar', 'sorts keys alphabetically'],
-
- // GET parameters, that are submitted from a HTML form, encode spaces as "+" by default (as defined in enctype application/x-www-form-urlencoded).
- // PHP also converts "+" to spaces when filling the global _GET or when using the function parse_str.
- ['baz=Foo%20Baz&bar=Foo+Bar', 'bar=Foo%20Bar&baz=Foo%20Baz', 'normalizes spaces in both encodings "%20" and "+"'],
-
- ['foo[]=1&foo[]=2', 'foo%5B%5D=1&foo%5B%5D=2', 'allows array notation'],
- ['foo=1&foo=2', 'foo=1&foo=2', 'allows repeated parameters'],
- ['pa%3Dram=foo%26bar%3Dbaz&test=test', 'pa%3Dram=foo%26bar%3Dbaz&test=test', 'works with encoded delimiters'],
- ['0', '0', 'allows "0"'],
- ['Foo Bar&Foo%20Baz', 'Foo%20Bar&Foo%20Baz', 'normalizes encoding in keys'],
- ['bar=Foo Bar&baz=Foo%20Baz', 'bar=Foo%20Bar&baz=Foo%20Baz', 'normalizes encoding in values'],
- ['foo=bar&&&test&&', 'foo=bar&test', 'removes unneeded delimiters'],
- ['formula=e=m*c^2', 'formula=e%3Dm%2Ac%5E2', 'correctly treats only the first "=" as delimiter and the next as value'],
-
- // Ignore pairs with empty key, even if there was a value, e.g. "=value", as such nameless values cannot be retrieved anyway.
- // PHP also does not include them when building _GET.
- ['foo=bar&=a=b&=x=y', 'foo=bar', 'removes params with empty key'],
- ];
- }
-
- public function testGetQueryStringReturnsNull()
- {
- $request = new Request();
-
- $this->assertNull($request->getQueryString(), '->getQueryString() returns null for non-existent query string');
-
- $request->server->set('QUERY_STRING', '');
- $this->assertNull($request->getQueryString(), '->getQueryString() returns null for empty query string');
- }
-
- public function testGetHost()
- {
- $request = new Request();
-
- $request->initialize(['foo' => 'bar']);
- $this->assertEquals('', $request->getHost(), '->getHost() return empty string if not initialized');
-
- $request->initialize([], [], [], [], [], ['HTTP_HOST' => 'www.example.com']);
- $this->assertEquals('www.example.com', $request->getHost(), '->getHost() from Host Header');
-
- // Host header with port number
- $request->initialize([], [], [], [], [], ['HTTP_HOST' => 'www.example.com:8080']);
- $this->assertEquals('www.example.com', $request->getHost(), '->getHost() from Host Header with port number');
-
- // Server values
- $request->initialize([], [], [], [], [], ['SERVER_NAME' => 'www.example.com']);
- $this->assertEquals('www.example.com', $request->getHost(), '->getHost() from server name');
-
- $request->initialize([], [], [], [], [], ['SERVER_NAME' => 'www.example.com', 'HTTP_HOST' => 'www.host.com']);
- $this->assertEquals('www.host.com', $request->getHost(), '->getHost() value from Host header has priority over SERVER_NAME ');
- }
-
- public function testGetPort()
- {
- $request = Request::create('http://example.com', 'GET', [], [], [], [
- 'HTTP_X_FORWARDED_PROTO' => 'https',
- 'HTTP_X_FORWARDED_PORT' => '443',
- ]);
- $port = $request->getPort();
-
- $this->assertEquals(80, $port, 'Without trusted proxies FORWARDED_PROTO and FORWARDED_PORT are ignored.');
-
- Request::setTrustedProxies(['1.1.1.1'], Request::HEADER_X_FORWARDED_ALL);
- $request = Request::create('http://example.com', 'GET', [], [], [], [
- 'HTTP_X_FORWARDED_PROTO' => 'https',
- 'HTTP_X_FORWARDED_PORT' => '8443',
- ]);
- $this->assertEquals(80, $request->getPort(), 'With PROTO and PORT on untrusted connection server value takes precedence.');
- $request->server->set('REMOTE_ADDR', '1.1.1.1');
- $this->assertEquals(8443, $request->getPort(), 'With PROTO and PORT set PORT takes precedence.');
-
- $request = Request::create('http://example.com', 'GET', [], [], [], [
- 'HTTP_X_FORWARDED_PROTO' => 'https',
- ]);
- $this->assertEquals(80, $request->getPort(), 'With only PROTO set getPort() ignores trusted headers on untrusted connection.');
- $request->server->set('REMOTE_ADDR', '1.1.1.1');
- $this->assertEquals(443, $request->getPort(), 'With only PROTO set getPort() defaults to 443.');
-
- $request = Request::create('http://example.com', 'GET', [], [], [], [
- 'HTTP_X_FORWARDED_PROTO' => 'http',
- ]);
- $this->assertEquals(80, $request->getPort(), 'If X_FORWARDED_PROTO is set to HTTP getPort() ignores trusted headers on untrusted connection.');
- $request->server->set('REMOTE_ADDR', '1.1.1.1');
- $this->assertEquals(80, $request->getPort(), 'If X_FORWARDED_PROTO is set to HTTP getPort() returns port of the original request.');
-
- $request = Request::create('http://example.com', 'GET', [], [], [], [
- 'HTTP_X_FORWARDED_PROTO' => 'On',
- ]);
- $this->assertEquals(80, $request->getPort(), 'With only PROTO set and value is On, getPort() ignores trusted headers on untrusted connection.');
- $request->server->set('REMOTE_ADDR', '1.1.1.1');
- $this->assertEquals(443, $request->getPort(), 'With only PROTO set and value is On, getPort() defaults to 443.');
-
- $request = Request::create('http://example.com', 'GET', [], [], [], [
- 'HTTP_X_FORWARDED_PROTO' => '1',
- ]);
- $this->assertEquals(80, $request->getPort(), 'With only PROTO set and value is 1, getPort() ignores trusted headers on untrusted connection.');
- $request->server->set('REMOTE_ADDR', '1.1.1.1');
- $this->assertEquals(443, $request->getPort(), 'With only PROTO set and value is 1, getPort() defaults to 443.');
-
- $request = Request::create('http://example.com', 'GET', [], [], [], [
- 'HTTP_X_FORWARDED_PROTO' => 'something-else',
- ]);
- $port = $request->getPort();
- $this->assertEquals(80, $port, 'With only PROTO set and value is not recognized, getPort() defaults to 80.');
- }
-
- public function testGetHostWithFakeHttpHostValue()
- {
- $this->expectException('RuntimeException');
- $request = new Request();
- $request->initialize([], [], [], [], [], ['HTTP_HOST' => 'www.host.com?query=string']);
- $request->getHost();
- }
-
- public function testGetSetMethod()
- {
- $request = new Request();
-
- $this->assertEquals('GET', $request->getMethod(), '->getMethod() returns GET if no method is defined');
-
- $request->setMethod('get');
- $this->assertEquals('GET', $request->getMethod(), '->getMethod() returns an uppercased string');
-
- $request->setMethod('PURGE');
- $this->assertEquals('PURGE', $request->getMethod(), '->getMethod() returns the method even if it is not a standard one');
-
- $request->setMethod('POST');
- $this->assertEquals('POST', $request->getMethod(), '->getMethod() returns the method POST if no _method is defined');
-
- $request->setMethod('POST');
- $request->request->set('_method', 'purge');
- $this->assertEquals('POST', $request->getMethod(), '->getMethod() does not return the method from _method if defined and POST but support not enabled');
-
- $request = new Request();
- $request->setMethod('POST');
- $request->request->set('_method', 'purge');
-
- $this->assertFalse(Request::getHttpMethodParameterOverride(), 'httpMethodParameterOverride should be disabled by default');
-
- Request::enableHttpMethodParameterOverride();
-
- $this->assertTrue(Request::getHttpMethodParameterOverride(), 'httpMethodParameterOverride should be enabled now but it is not');
-
- $this->assertEquals('PURGE', $request->getMethod(), '->getMethod() returns the method from _method if defined and POST');
- $this->disableHttpMethodParameterOverride();
-
- $request = new Request();
- $request->setMethod('POST');
- $request->query->set('_method', 'purge');
- $this->assertEquals('POST', $request->getMethod(), '->getMethod() does not return the method from _method if defined and POST but support not enabled');
-
- $request = new Request();
- $request->setMethod('POST');
- $request->query->set('_method', 'purge');
- Request::enableHttpMethodParameterOverride();
- $this->assertEquals('PURGE', $request->getMethod(), '->getMethod() returns the method from _method if defined and POST');
- $this->disableHttpMethodParameterOverride();
-
- $request = new Request();
- $request->setMethod('POST');
- $request->headers->set('X-HTTP-METHOD-OVERRIDE', 'delete');
- $this->assertEquals('DELETE', $request->getMethod(), '->getMethod() returns the method from X-HTTP-Method-Override even though _method is set if defined and POST');
-
- $request = new Request();
- $request->setMethod('POST');
- $request->headers->set('X-HTTP-METHOD-OVERRIDE', 'delete');
- $this->assertEquals('DELETE', $request->getMethod(), '->getMethod() returns the method from X-HTTP-Method-Override if defined and POST');
-
- $request = new Request();
- $request->setMethod('POST');
- $request->query->set('_method', ['delete', 'patch']);
- $this->assertSame('POST', $request->getMethod(), '->getMethod() returns the request method if invalid type is defined in query');
- }
-
- /**
- * @dataProvider getClientIpsProvider
- */
- public function testGetClientIp($expected, $remoteAddr, $httpForwardedFor, $trustedProxies)
- {
- $request = $this->getRequestInstanceForClientIpTests($remoteAddr, $httpForwardedFor, $trustedProxies);
-
- $this->assertEquals($expected[0], $request->getClientIp());
- }
-
- /**
- * @dataProvider getClientIpsProvider
- */
- public function testGetClientIps($expected, $remoteAddr, $httpForwardedFor, $trustedProxies)
- {
- $request = $this->getRequestInstanceForClientIpTests($remoteAddr, $httpForwardedFor, $trustedProxies);
-
- $this->assertEquals($expected, $request->getClientIps());
- }
-
- /**
- * @dataProvider getClientIpsForwardedProvider
- */
- public function testGetClientIpsForwarded($expected, $remoteAddr, $httpForwarded, $trustedProxies)
- {
- $request = $this->getRequestInstanceForClientIpsForwardedTests($remoteAddr, $httpForwarded, $trustedProxies);
-
- $this->assertEquals($expected, $request->getClientIps());
- }
-
- public function getClientIpsForwardedProvider()
- {
- // $expected $remoteAddr $httpForwarded $trustedProxies
- return [
- [['127.0.0.1'], '127.0.0.1', 'for="_gazonk"', null],
- [['127.0.0.1'], '127.0.0.1', 'for="_gazonk"', ['127.0.0.1']],
- [['88.88.88.88'], '127.0.0.1', 'for="88.88.88.88:80"', ['127.0.0.1']],
- [['192.0.2.60'], '::1', 'for=192.0.2.60;proto=http;by=203.0.113.43', ['::1']],
- [['2620:0:1cfe:face:b00c::3', '192.0.2.43'], '::1', 'for=192.0.2.43, for=2620:0:1cfe:face:b00c::3', ['::1']],
- [['2001:db8:cafe::17'], '::1', 'for="[2001:db8:cafe::17]:4711', ['::1']],
- ];
- }
-
- public function getClientIpsProvider()
- {
- // $expected $remoteAddr $httpForwardedFor $trustedProxies
- return [
- // simple IPv4
- [['88.88.88.88'], '88.88.88.88', null, null],
- // trust the IPv4 remote addr
- [['88.88.88.88'], '88.88.88.88', null, ['88.88.88.88']],
-
- // simple IPv6
- [['::1'], '::1', null, null],
- // trust the IPv6 remote addr
- [['::1'], '::1', null, ['::1']],
-
- // forwarded for with remote IPv4 addr not trusted
- [['127.0.0.1'], '127.0.0.1', '88.88.88.88', null],
- // forwarded for with remote IPv4 addr trusted + comma
- [['88.88.88.88'], '127.0.0.1', '88.88.88.88,', ['127.0.0.1']],
- // forwarded for with remote IPv4 and all FF addrs trusted
- [['88.88.88.88'], '127.0.0.1', '88.88.88.88', ['127.0.0.1', '88.88.88.88']],
- // forwarded for with remote IPv4 range trusted
- [['88.88.88.88'], '123.45.67.89', '88.88.88.88', ['123.45.67.0/24']],
-
- // forwarded for with remote IPv6 addr not trusted
- [['1620:0:1cfe:face:b00c::3'], '1620:0:1cfe:face:b00c::3', '2620:0:1cfe:face:b00c::3', null],
- // forwarded for with remote IPv6 addr trusted
- [['2620:0:1cfe:face:b00c::3'], '1620:0:1cfe:face:b00c::3', '2620:0:1cfe:face:b00c::3', ['1620:0:1cfe:face:b00c::3']],
- // forwarded for with remote IPv6 range trusted
- [['88.88.88.88'], '2a01:198:603:0:396e:4789:8e99:890f', '88.88.88.88', ['2a01:198:603:0::/65']],
-
- // multiple forwarded for with remote IPv4 addr trusted
- [['88.88.88.88', '87.65.43.21', '127.0.0.1'], '123.45.67.89', '127.0.0.1, 87.65.43.21, 88.88.88.88', ['123.45.67.89']],
- // multiple forwarded for with remote IPv4 addr and some reverse proxies trusted
- [['87.65.43.21', '127.0.0.1'], '123.45.67.89', '127.0.0.1, 87.65.43.21, 88.88.88.88', ['123.45.67.89', '88.88.88.88']],
- // multiple forwarded for with remote IPv4 addr and some reverse proxies trusted but in the middle
- [['88.88.88.88', '127.0.0.1'], '123.45.67.89', '127.0.0.1, 87.65.43.21, 88.88.88.88', ['123.45.67.89', '87.65.43.21']],
- // multiple forwarded for with remote IPv4 addr and all reverse proxies trusted
- [['127.0.0.1'], '123.45.67.89', '127.0.0.1, 87.65.43.21, 88.88.88.88', ['123.45.67.89', '87.65.43.21', '88.88.88.88', '127.0.0.1']],
-
- // multiple forwarded for with remote IPv6 addr trusted
- [['2620:0:1cfe:face:b00c::3', '3620:0:1cfe:face:b00c::3'], '1620:0:1cfe:face:b00c::3', '3620:0:1cfe:face:b00c::3,2620:0:1cfe:face:b00c::3', ['1620:0:1cfe:face:b00c::3']],
- // multiple forwarded for with remote IPv6 addr and some reverse proxies trusted
- [['3620:0:1cfe:face:b00c::3'], '1620:0:1cfe:face:b00c::3', '3620:0:1cfe:face:b00c::3,2620:0:1cfe:face:b00c::3', ['1620:0:1cfe:face:b00c::3', '2620:0:1cfe:face:b00c::3']],
- // multiple forwarded for with remote IPv4 addr and some reverse proxies trusted but in the middle
- [['2620:0:1cfe:face:b00c::3', '4620:0:1cfe:face:b00c::3'], '1620:0:1cfe:face:b00c::3', '4620:0:1cfe:face:b00c::3,3620:0:1cfe:face:b00c::3,2620:0:1cfe:face:b00c::3', ['1620:0:1cfe:face:b00c::3', '3620:0:1cfe:face:b00c::3']],
-
- // client IP with port
- [['88.88.88.88'], '127.0.0.1', '88.88.88.88:12345, 127.0.0.1', ['127.0.0.1']],
-
- // invalid forwarded IP is ignored
- [['88.88.88.88'], '127.0.0.1', 'unknown,88.88.88.88', ['127.0.0.1']],
- [['88.88.88.88'], '127.0.0.1', '}__test|O:21:"JDatabaseDriverMysqli":3:{s:2,88.88.88.88', ['127.0.0.1']],
- ];
- }
-
- /**
- * @dataProvider getClientIpsWithConflictingHeadersProvider
- */
- public function testGetClientIpsWithConflictingHeaders($httpForwarded, $httpXForwardedFor)
- {
- $this->expectException('Symfony\Component\HttpFoundation\Exception\ConflictingHeadersException');
- $request = new Request();
-
- $server = [
- 'REMOTE_ADDR' => '88.88.88.88',
- 'HTTP_FORWARDED' => $httpForwarded,
- 'HTTP_X_FORWARDED_FOR' => $httpXForwardedFor,
- ];
-
- Request::setTrustedProxies(['88.88.88.88'], Request::HEADER_X_FORWARDED_ALL | Request::HEADER_FORWARDED);
-
- $request->initialize([], [], [], [], [], $server);
-
- $request->getClientIps();
- }
-
- /**
- * @dataProvider getClientIpsWithConflictingHeadersProvider
- */
- public function testGetClientIpsOnlyXHttpForwardedForTrusted($httpForwarded, $httpXForwardedFor)
- {
- $request = new Request();
-
- $server = [
- 'REMOTE_ADDR' => '88.88.88.88',
- 'HTTP_FORWARDED' => $httpForwarded,
- 'HTTP_X_FORWARDED_FOR' => $httpXForwardedFor,
- ];
-
- Request::setTrustedProxies(['88.88.88.88'], Request::HEADER_X_FORWARDED_FOR);
-
- $request->initialize([], [], [], [], [], $server);
-
- $this->assertSame(array_reverse(explode(',', $httpXForwardedFor)), $request->getClientIps());
- }
-
- public function getClientIpsWithConflictingHeadersProvider()
- {
- // $httpForwarded $httpXForwardedFor
- return [
- ['for=87.65.43.21', '192.0.2.60'],
- ['for=87.65.43.21, for=192.0.2.60', '192.0.2.60'],
- ['for=192.0.2.60', '192.0.2.60,87.65.43.21'],
- ['for="::face", for=192.0.2.60', '192.0.2.60,192.0.2.43'],
- ['for=87.65.43.21, for=192.0.2.60', '192.0.2.60,87.65.43.21'],
- ];
- }
-
- /**
- * @dataProvider getClientIpsWithAgreeingHeadersProvider
- */
- public function testGetClientIpsWithAgreeingHeaders($httpForwarded, $httpXForwardedFor, $expectedIps)
- {
- $request = new Request();
-
- $server = [
- 'REMOTE_ADDR' => '88.88.88.88',
- 'HTTP_FORWARDED' => $httpForwarded,
- 'HTTP_X_FORWARDED_FOR' => $httpXForwardedFor,
- ];
-
- Request::setTrustedProxies(['88.88.88.88'], -1);
-
- $request->initialize([], [], [], [], [], $server);
-
- $clientIps = $request->getClientIps();
-
- $this->assertSame($expectedIps, $clientIps);
- }
-
- public function getClientIpsWithAgreeingHeadersProvider()
- {
- // $httpForwarded $httpXForwardedFor
- return [
- ['for="192.0.2.60"', '192.0.2.60', ['192.0.2.60']],
- ['for=192.0.2.60, for=87.65.43.21', '192.0.2.60,87.65.43.21', ['87.65.43.21', '192.0.2.60']],
- ['for="[::face]", for=192.0.2.60', '::face,192.0.2.60', ['192.0.2.60', '::face']],
- ['for="192.0.2.60:80"', '192.0.2.60', ['192.0.2.60']],
- ['for=192.0.2.60;proto=http;by=203.0.113.43', '192.0.2.60', ['192.0.2.60']],
- ['for="[2001:db8:cafe::17]:4711"', '2001:db8:cafe::17', ['2001:db8:cafe::17']],
- ];
- }
-
- public function testGetContentWorksTwiceInDefaultMode()
- {
- $req = new Request();
- $this->assertEquals('', $req->getContent());
- $this->assertEquals('', $req->getContent());
- }
-
- public function testGetContentReturnsResource()
- {
- $req = new Request();
- $retval = $req->getContent(true);
- $this->assertIsResource($retval);
- $this->assertEquals('', fread($retval, 1));
- $this->assertTrue(feof($retval));
- }
-
- public function testGetContentReturnsResourceWhenContentSetInConstructor()
- {
- $req = new Request([], [], [], [], [], [], 'MyContent');
- $resource = $req->getContent(true);
-
- $this->assertIsResource($resource);
- $this->assertEquals('MyContent', stream_get_contents($resource));
- }
-
- public function testContentAsResource()
- {
- $resource = fopen('php://memory', 'r+');
- fwrite($resource, 'My other content');
- rewind($resource);
-
- $req = new Request([], [], [], [], [], [], $resource);
- $this->assertEquals('My other content', stream_get_contents($req->getContent(true)));
- $this->assertEquals('My other content', $req->getContent());
- }
-
- /**
- * @dataProvider getContentCantBeCalledTwiceWithResourcesProvider
- */
- public function testGetContentCantBeCalledTwiceWithResources($first, $second)
- {
- $this->expectException('LogicException');
- if (\PHP_VERSION_ID >= 50600) {
- $this->markTestSkipped('PHP >= 5.6 allows to open php://input several times.');
- }
-
- $req = new Request();
- $req->getContent($first);
- $req->getContent($second);
- }
-
- public function getContentCantBeCalledTwiceWithResourcesProvider()
- {
- return [
- 'Resource then fetch' => [true, false],
- 'Resource then resource' => [true, true],
- ];
- }
-
- /**
- * @dataProvider getContentCanBeCalledTwiceWithResourcesProvider
- * @requires PHP 5.6
- */
- public function testGetContentCanBeCalledTwiceWithResources($first, $second)
- {
- $req = new Request();
- $a = $req->getContent($first);
- $b = $req->getContent($second);
-
- if ($first) {
- $a = stream_get_contents($a);
- }
-
- if ($second) {
- $b = stream_get_contents($b);
- }
-
- $this->assertSame($a, $b);
- }
-
- public function getContentCanBeCalledTwiceWithResourcesProvider()
- {
- return [
- 'Fetch then fetch' => [false, false],
- 'Fetch then resource' => [false, true],
- 'Resource then fetch' => [true, false],
- 'Resource then resource' => [true, true],
- ];
- }
-
- public function provideOverloadedMethods()
- {
- return [
- ['PUT'],
- ['DELETE'],
- ['PATCH'],
- ['put'],
- ['delete'],
- ['patch'],
- ];
- }
-
- /**
- * @dataProvider provideOverloadedMethods
- */
- public function testCreateFromGlobals($method)
- {
- $normalizedMethod = strtoupper($method);
-
- $_GET['foo1'] = 'bar1';
- $_POST['foo2'] = 'bar2';
- $_COOKIE['foo3'] = 'bar3';
- $_FILES['foo4'] = ['bar4'];
- $_SERVER['foo5'] = 'bar5';
-
- $request = Request::createFromGlobals();
- $this->assertEquals('bar1', $request->query->get('foo1'), '::fromGlobals() uses values from $_GET');
- $this->assertEquals('bar2', $request->request->get('foo2'), '::fromGlobals() uses values from $_POST');
- $this->assertEquals('bar3', $request->cookies->get('foo3'), '::fromGlobals() uses values from $_COOKIE');
- $this->assertEquals(['bar4'], $request->files->get('foo4'), '::fromGlobals() uses values from $_FILES');
- $this->assertEquals('bar5', $request->server->get('foo5'), '::fromGlobals() uses values from $_SERVER');
-
- unset($_GET['foo1'], $_POST['foo2'], $_COOKIE['foo3'], $_FILES['foo4'], $_SERVER['foo5']);
-
- $_SERVER['REQUEST_METHOD'] = $method;
- $_SERVER['CONTENT_TYPE'] = 'application/x-www-form-urlencoded';
- $request = RequestContentProxy::createFromGlobals();
- $this->assertEquals($normalizedMethod, $request->getMethod());
- $this->assertEquals('mycontent', $request->request->get('content'));
-
- unset($_SERVER['REQUEST_METHOD'], $_SERVER['CONTENT_TYPE']);
-
- Request::createFromGlobals();
- Request::enableHttpMethodParameterOverride();
- $_POST['_method'] = $method;
- $_POST['foo6'] = 'bar6';
- $_SERVER['REQUEST_METHOD'] = 'PoSt';
- $request = Request::createFromGlobals();
- $this->assertEquals($normalizedMethod, $request->getMethod());
- $this->assertEquals('POST', $request->getRealMethod());
- $this->assertEquals('bar6', $request->request->get('foo6'));
-
- unset($_POST['_method'], $_POST['foo6'], $_SERVER['REQUEST_METHOD']);
- $this->disableHttpMethodParameterOverride();
- }
-
- public function testOverrideGlobals()
- {
- $request = new Request();
- $request->initialize(['foo' => 'bar']);
-
- // as the Request::overrideGlobals really work, it erase $_SERVER, so we must backup it
- $server = $_SERVER;
-
- $request->overrideGlobals();
-
- $this->assertEquals(['foo' => 'bar'], $_GET);
-
- $request->initialize([], ['foo' => 'bar']);
- $request->overrideGlobals();
-
- $this->assertEquals(['foo' => 'bar'], $_POST);
-
- $this->assertArrayNotHasKey('HTTP_X_FORWARDED_PROTO', $_SERVER);
-
- $request->headers->set('X_FORWARDED_PROTO', 'https');
-
- Request::setTrustedProxies(['1.1.1.1'], Request::HEADER_X_FORWARDED_ALL);
- $this->assertFalse($request->isSecure());
- $request->server->set('REMOTE_ADDR', '1.1.1.1');
- $this->assertTrue($request->isSecure());
-
- $request->overrideGlobals();
-
- $this->assertArrayHasKey('HTTP_X_FORWARDED_PROTO', $_SERVER);
-
- $request->headers->set('CONTENT_TYPE', 'multipart/form-data');
- $request->headers->set('CONTENT_LENGTH', 12345);
-
- $request->overrideGlobals();
-
- $this->assertArrayHasKey('CONTENT_TYPE', $_SERVER);
- $this->assertArrayHasKey('CONTENT_LENGTH', $_SERVER);
-
- $request->initialize(['foo' => 'bar', 'baz' => 'foo']);
- $request->query->remove('baz');
-
- $request->overrideGlobals();
-
- $this->assertEquals(['foo' => 'bar'], $_GET);
- $this->assertEquals('foo=bar', $_SERVER['QUERY_STRING']);
- $this->assertEquals('foo=bar', $request->server->get('QUERY_STRING'));
-
- // restore initial $_SERVER array
- $_SERVER = $server;
- }
-
- public function testGetScriptName()
- {
- $request = new Request();
- $this->assertEquals('', $request->getScriptName());
-
- $server = [];
- $server['SCRIPT_NAME'] = '/index.php';
-
- $request->initialize([], [], [], [], [], $server);
-
- $this->assertEquals('/index.php', $request->getScriptName());
-
- $server = [];
- $server['ORIG_SCRIPT_NAME'] = '/frontend.php';
- $request->initialize([], [], [], [], [], $server);
-
- $this->assertEquals('/frontend.php', $request->getScriptName());
-
- $server = [];
- $server['SCRIPT_NAME'] = '/index.php';
- $server['ORIG_SCRIPT_NAME'] = '/frontend.php';
- $request->initialize([], [], [], [], [], $server);
-
- $this->assertEquals('/index.php', $request->getScriptName());
- }
-
- public function testGetBasePath()
- {
- $request = new Request();
- $this->assertEquals('', $request->getBasePath());
-
- $server = [];
- $server['SCRIPT_FILENAME'] = '/some/where/index.php';
- $request->initialize([], [], [], [], [], $server);
- $this->assertEquals('', $request->getBasePath());
-
- $server = [];
- $server['SCRIPT_FILENAME'] = '/some/where/index.php';
- $server['SCRIPT_NAME'] = '/index.php';
- $request->initialize([], [], [], [], [], $server);
-
- $this->assertEquals('', $request->getBasePath());
-
- $server = [];
- $server['SCRIPT_FILENAME'] = '/some/where/index.php';
- $server['PHP_SELF'] = '/index.php';
- $request->initialize([], [], [], [], [], $server);
-
- $this->assertEquals('', $request->getBasePath());
-
- $server = [];
- $server['SCRIPT_FILENAME'] = '/some/where/index.php';
- $server['ORIG_SCRIPT_NAME'] = '/index.php';
- $request->initialize([], [], [], [], [], $server);
-
- $this->assertEquals('', $request->getBasePath());
- }
-
- public function testGetPathInfo()
- {
- $request = new Request();
- $this->assertEquals('/', $request->getPathInfo());
-
- $server = [];
- $server['REQUEST_URI'] = '/path/info';
- $request->initialize([], [], [], [], [], $server);
-
- $this->assertEquals('/path/info', $request->getPathInfo());
-
- $server = [];
- $server['REQUEST_URI'] = '/path%20test/info';
- $request->initialize([], [], [], [], [], $server);
-
- $this->assertEquals('/path%20test/info', $request->getPathInfo());
-
- $server = [];
- $server['REQUEST_URI'] = '?a=b';
- $request->initialize([], [], [], [], [], $server);
-
- $this->assertEquals('/', $request->getPathInfo());
- }
-
- public function testGetParameterPrecedence()
- {
- $request = new Request();
- $request->attributes->set('foo', 'attr');
- $request->query->set('foo', 'query');
- $request->request->set('foo', 'body');
-
- $this->assertSame('attr', $request->get('foo'));
-
- $request->attributes->remove('foo');
- $this->assertSame('query', $request->get('foo'));
-
- $request->query->remove('foo');
- $this->assertSame('body', $request->get('foo'));
-
- $request->request->remove('foo');
- $this->assertNull($request->get('foo'));
- }
-
- public function testGetPreferredLanguage()
- {
- $request = new Request();
- $this->assertNull($request->getPreferredLanguage());
- $this->assertNull($request->getPreferredLanguage([]));
- $this->assertEquals('fr', $request->getPreferredLanguage(['fr']));
- $this->assertEquals('fr', $request->getPreferredLanguage(['fr', 'en']));
- $this->assertEquals('en', $request->getPreferredLanguage(['en', 'fr']));
- $this->assertEquals('fr-ch', $request->getPreferredLanguage(['fr-ch', 'fr-fr']));
-
- $request = new Request();
- $request->headers->set('Accept-language', 'zh, en-us; q=0.8, en; q=0.6');
- $this->assertEquals('en', $request->getPreferredLanguage(['en', 'en-us']));
-
- $request = new Request();
- $request->headers->set('Accept-language', 'zh, en-us; q=0.8, en; q=0.6');
- $this->assertEquals('en', $request->getPreferredLanguage(['fr', 'en']));
-
- $request = new Request();
- $request->headers->set('Accept-language', 'zh, en-us; q=0.8');
- $this->assertEquals('en', $request->getPreferredLanguage(['fr', 'en']));
-
- $request = new Request();
- $request->headers->set('Accept-language', 'zh, en-us; q=0.8, fr-fr; q=0.6, fr; q=0.5');
- $this->assertEquals('en', $request->getPreferredLanguage(['fr', 'en']));
- }
-
- public function testIsXmlHttpRequest()
- {
- $request = new Request();
- $this->assertFalse($request->isXmlHttpRequest());
-
- $request->headers->set('X-Requested-With', 'XMLHttpRequest');
- $this->assertTrue($request->isXmlHttpRequest());
-
- $request->headers->remove('X-Requested-With');
- $this->assertFalse($request->isXmlHttpRequest());
- }
-
- /**
- * @requires extension intl
- */
- public function testIntlLocale()
- {
- $request = new Request();
-
- $request->setDefaultLocale('fr');
- $this->assertEquals('fr', $request->getLocale());
- $this->assertEquals('fr', \Locale::getDefault());
-
- $request->setLocale('en');
- $this->assertEquals('en', $request->getLocale());
- $this->assertEquals('en', \Locale::getDefault());
-
- $request->setDefaultLocale('de');
- $this->assertEquals('en', $request->getLocale());
- $this->assertEquals('en', \Locale::getDefault());
- }
-
- public function testGetCharsets()
- {
- $request = new Request();
- $this->assertEquals([], $request->getCharsets());
- $request->headers->set('Accept-Charset', 'ISO-8859-1, US-ASCII, UTF-8; q=0.8, ISO-10646-UCS-2; q=0.6');
- $this->assertEquals([], $request->getCharsets()); // testing caching
-
- $request = new Request();
- $request->headers->set('Accept-Charset', 'ISO-8859-1, US-ASCII, UTF-8; q=0.8, ISO-10646-UCS-2; q=0.6');
- $this->assertEquals(['ISO-8859-1', 'US-ASCII', 'UTF-8', 'ISO-10646-UCS-2'], $request->getCharsets());
-
- $request = new Request();
- $request->headers->set('Accept-Charset', 'ISO-8859-1,utf-8;q=0.7,*;q=0.7');
- $this->assertEquals(['ISO-8859-1', 'utf-8', '*'], $request->getCharsets());
- }
-
- public function testGetEncodings()
- {
- $request = new Request();
- $this->assertEquals([], $request->getEncodings());
- $request->headers->set('Accept-Encoding', 'gzip,deflate,sdch');
- $this->assertEquals([], $request->getEncodings()); // testing caching
-
- $request = new Request();
- $request->headers->set('Accept-Encoding', 'gzip,deflate,sdch');
- $this->assertEquals(['gzip', 'deflate', 'sdch'], $request->getEncodings());
-
- $request = new Request();
- $request->headers->set('Accept-Encoding', 'gzip;q=0.4,deflate;q=0.9,compress;q=0.7');
- $this->assertEquals(['deflate', 'compress', 'gzip'], $request->getEncodings());
- }
-
- public function testGetAcceptableContentTypes()
- {
- $request = new Request();
- $this->assertEquals([], $request->getAcceptableContentTypes());
- $request->headers->set('Accept', 'application/vnd.wap.wmlscriptc, text/vnd.wap.wml, application/vnd.wap.xhtml+xml, application/xhtml+xml, text/html, multipart/mixed, */*');
- $this->assertEquals([], $request->getAcceptableContentTypes()); // testing caching
-
- $request = new Request();
- $request->headers->set('Accept', 'application/vnd.wap.wmlscriptc, text/vnd.wap.wml, application/vnd.wap.xhtml+xml, application/xhtml+xml, text/html, multipart/mixed, */*');
- $this->assertEquals(['application/vnd.wap.wmlscriptc', 'text/vnd.wap.wml', 'application/vnd.wap.xhtml+xml', 'application/xhtml+xml', 'text/html', 'multipart/mixed', '*/*'], $request->getAcceptableContentTypes());
- }
-
- public function testGetLanguages()
- {
- $request = new Request();
- $this->assertEquals([], $request->getLanguages());
-
- $request = new Request();
- $request->headers->set('Accept-language', 'zh, en-us; q=0.8, en; q=0.6');
- $this->assertEquals(['zh', 'en_US', 'en'], $request->getLanguages());
-
- $request = new Request();
- $request->headers->set('Accept-language', 'zh, en-us; q=0.6, en; q=0.8');
- $this->assertEquals(['zh', 'en', 'en_US'], $request->getLanguages()); // Test out of order qvalues
-
- $request = new Request();
- $request->headers->set('Accept-language', 'zh, en, en-us');
- $this->assertEquals(['zh', 'en', 'en_US'], $request->getLanguages()); // Test equal weighting without qvalues
-
- $request = new Request();
- $request->headers->set('Accept-language', 'zh; q=0.6, en, en-us; q=0.6');
- $this->assertEquals(['en', 'zh', 'en_US'], $request->getLanguages()); // Test equal weighting with qvalues
-
- $request = new Request();
- $request->headers->set('Accept-language', 'zh, i-cherokee; q=0.6');
- $this->assertEquals(['zh', 'cherokee'], $request->getLanguages());
- }
-
- public function testGetRequestFormat()
- {
- $request = new Request();
- $this->assertEquals('html', $request->getRequestFormat());
-
- // Ensure that setting different default values over time is possible,
- // aka. setRequestFormat determines the state.
- $this->assertEquals('json', $request->getRequestFormat('json'));
- $this->assertEquals('html', $request->getRequestFormat('html'));
-
- $request = new Request();
- $this->assertNull($request->getRequestFormat(null));
-
- $request = new Request();
- $this->assertNull($request->setRequestFormat('foo'));
- $this->assertEquals('foo', $request->getRequestFormat(null));
-
- $request = new Request(['_format' => 'foo']);
- $this->assertEquals('html', $request->getRequestFormat());
- }
-
- public function testHasSession()
- {
- $request = new Request();
-
- $this->assertFalse($request->hasSession());
- $request->setSession(new Session(new MockArraySessionStorage()));
- $this->assertTrue($request->hasSession());
- }
-
- public function testGetSession()
- {
- $request = new Request();
-
- $request->setSession(new Session(new MockArraySessionStorage()));
- $this->assertTrue($request->hasSession());
-
- $session = $request->getSession();
- $this->assertObjectHasAttribute('storage', $session);
- $this->assertObjectHasAttribute('flashName', $session);
- $this->assertObjectHasAttribute('attributeName', $session);
- }
-
- public function testHasPreviousSession()
- {
- $request = new Request();
-
- $this->assertFalse($request->hasPreviousSession());
- $request->cookies->set('MOCKSESSID', 'foo');
- $this->assertFalse($request->hasPreviousSession());
- $request->setSession(new Session(new MockArraySessionStorage()));
- $this->assertTrue($request->hasPreviousSession());
- }
-
- public function testToString()
- {
- $request = new Request();
-
- $request->headers->set('Accept-language', 'zh, en-us; q=0.8, en; q=0.6');
- $request->cookies->set('Foo', 'Bar');
-
- $asString = (string) $request;
-
- $this->assertStringContainsString('Accept-Language: zh, en-us; q=0.8, en; q=0.6', $asString);
- $this->assertStringContainsString('Cookie: Foo=Bar', $asString);
-
- $request->cookies->set('Another', 'Cookie');
-
- $asString = (string) $request;
-
- $this->assertStringContainsString('Cookie: Foo=Bar; Another=Cookie', $asString);
- }
-
- public function testIsMethod()
- {
- $request = new Request();
- $request->setMethod('POST');
- $this->assertTrue($request->isMethod('POST'));
- $this->assertTrue($request->isMethod('post'));
- $this->assertFalse($request->isMethod('GET'));
- $this->assertFalse($request->isMethod('get'));
-
- $request->setMethod('GET');
- $this->assertTrue($request->isMethod('GET'));
- $this->assertTrue($request->isMethod('get'));
- $this->assertFalse($request->isMethod('POST'));
- $this->assertFalse($request->isMethod('post'));
- }
-
- /**
- * @dataProvider getBaseUrlData
- */
- public function testGetBaseUrl($uri, $server, $expectedBaseUrl, $expectedPathInfo)
- {
- $request = Request::create($uri, 'GET', [], [], [], $server);
-
- $this->assertSame($expectedBaseUrl, $request->getBaseUrl(), 'baseUrl');
- $this->assertSame($expectedPathInfo, $request->getPathInfo(), 'pathInfo');
- }
-
- public function getBaseUrlData()
- {
- return [
- [
- '/fruit/strawberry/1234index.php/blah',
- [
- 'SCRIPT_FILENAME' => 'E:/Sites/cc-new/public_html/fruit/index.php',
- 'SCRIPT_NAME' => '/fruit/index.php',
- 'PHP_SELF' => '/fruit/index.php',
- ],
- '/fruit',
- '/strawberry/1234index.php/blah',
- ],
- [
- '/fruit/strawberry/1234index.php/blah',
- [
- 'SCRIPT_FILENAME' => 'E:/Sites/cc-new/public_html/index.php',
- 'SCRIPT_NAME' => '/index.php',
- 'PHP_SELF' => '/index.php',
- ],
- '',
- '/fruit/strawberry/1234index.php/blah',
- ],
- [
- '/foo%20bar/',
- [
- 'SCRIPT_FILENAME' => '/home/John Doe/public_html/foo bar/app.php',
- 'SCRIPT_NAME' => '/foo bar/app.php',
- 'PHP_SELF' => '/foo bar/app.php',
- ],
- '/foo%20bar',
- '/',
- ],
- [
- '/foo%20bar/home',
- [
- 'SCRIPT_FILENAME' => '/home/John Doe/public_html/foo bar/app.php',
- 'SCRIPT_NAME' => '/foo bar/app.php',
- 'PHP_SELF' => '/foo bar/app.php',
- ],
- '/foo%20bar',
- '/home',
- ],
- [
- '/foo%20bar/app.php/home',
- [
- 'SCRIPT_FILENAME' => '/home/John Doe/public_html/foo bar/app.php',
- 'SCRIPT_NAME' => '/foo bar/app.php',
- 'PHP_SELF' => '/foo bar/app.php',
- ],
- '/foo%20bar/app.php',
- '/home',
- ],
- [
- '/foo%20bar/app.php/home%3Dbaz',
- [
- 'SCRIPT_FILENAME' => '/home/John Doe/public_html/foo bar/app.php',
- 'SCRIPT_NAME' => '/foo bar/app.php',
- 'PHP_SELF' => '/foo bar/app.php',
- ],
- '/foo%20bar/app.php',
- '/home%3Dbaz',
- ],
- [
- '/foo/bar+baz',
- [
- 'SCRIPT_FILENAME' => '/home/John Doe/public_html/foo/app.php',
- 'SCRIPT_NAME' => '/foo/app.php',
- 'PHP_SELF' => '/foo/app.php',
- ],
- '/foo',
- '/bar+baz',
- ],
- ];
- }
-
- /**
- * @dataProvider urlencodedStringPrefixData
- */
- public function testUrlencodedStringPrefix($string, $prefix, $expect)
- {
- $request = new Request();
-
- $me = new \ReflectionMethod($request, 'getUrlencodedPrefix');
- $me->setAccessible(true);
-
- $this->assertSame($expect, $me->invoke($request, $string, $prefix));
- }
-
- public function urlencodedStringPrefixData()
- {
- return [
- ['foo', 'foo', 'foo'],
- ['fo%6f', 'foo', 'fo%6f'],
- ['foo/bar', 'foo', 'foo'],
- ['fo%6f/bar', 'foo', 'fo%6f'],
- ['f%6f%6f/bar', 'foo', 'f%6f%6f'],
- ['%66%6F%6F/bar', 'foo', '%66%6F%6F'],
- ['fo+o/bar', 'fo+o', 'fo+o'],
- ['fo%2Bo/bar', 'fo+o', 'fo%2Bo'],
- ];
- }
-
- private function disableHttpMethodParameterOverride()
- {
- $class = new \ReflectionClass('Symfony\\Component\\HttpFoundation\\Request');
- $property = $class->getProperty('httpMethodParameterOverride');
- $property->setAccessible(true);
- $property->setValue(false);
- }
-
- private function getRequestInstanceForClientIpTests($remoteAddr, $httpForwardedFor, $trustedProxies)
- {
- $request = new Request();
-
- $server = ['REMOTE_ADDR' => $remoteAddr];
- if (null !== $httpForwardedFor) {
- $server['HTTP_X_FORWARDED_FOR'] = $httpForwardedFor;
- }
-
- if ($trustedProxies) {
- Request::setTrustedProxies($trustedProxies, Request::HEADER_X_FORWARDED_ALL);
- }
-
- $request->initialize([], [], [], [], [], $server);
-
- return $request;
- }
-
- private function getRequestInstanceForClientIpsForwardedTests($remoteAddr, $httpForwarded, $trustedProxies)
- {
- $request = new Request();
-
- $server = ['REMOTE_ADDR' => $remoteAddr];
-
- if (null !== $httpForwarded) {
- $server['HTTP_FORWARDED'] = $httpForwarded;
- }
-
- if ($trustedProxies) {
- Request::setTrustedProxies($trustedProxies, Request::HEADER_FORWARDED);
- }
-
- $request->initialize([], [], [], [], [], $server);
-
- return $request;
- }
-
- public function testTrustedProxiesXForwardedFor()
- {
- $request = Request::create('http://example.com/');
- $request->server->set('REMOTE_ADDR', '3.3.3.3');
- $request->headers->set('X_FORWARDED_FOR', '1.1.1.1, 2.2.2.2');
- $request->headers->set('X_FORWARDED_HOST', 'foo.example.com:1234, real.example.com:8080');
- $request->headers->set('X_FORWARDED_PROTO', 'https');
- $request->headers->set('X_FORWARDED_PORT', 443);
-
- // no trusted proxies
- $this->assertEquals('3.3.3.3', $request->getClientIp());
- $this->assertEquals('example.com', $request->getHost());
- $this->assertEquals(80, $request->getPort());
- $this->assertFalse($request->isSecure());
-
- // disabling proxy trusting
- Request::setTrustedProxies([], Request::HEADER_X_FORWARDED_ALL);
- $this->assertEquals('3.3.3.3', $request->getClientIp());
- $this->assertEquals('example.com', $request->getHost());
- $this->assertEquals(80, $request->getPort());
- $this->assertFalse($request->isSecure());
-
- // request is forwarded by a non-trusted proxy
- Request::setTrustedProxies(['2.2.2.2'], Request::HEADER_X_FORWARDED_ALL);
- $this->assertEquals('3.3.3.3', $request->getClientIp());
- $this->assertEquals('example.com', $request->getHost());
- $this->assertEquals(80, $request->getPort());
- $this->assertFalse($request->isSecure());
-
- // trusted proxy via setTrustedProxies()
- Request::setTrustedProxies(['3.3.3.3', '2.2.2.2'], Request::HEADER_X_FORWARDED_ALL);
- $this->assertEquals('1.1.1.1', $request->getClientIp());
- $this->assertEquals('foo.example.com', $request->getHost());
- $this->assertEquals(443, $request->getPort());
- $this->assertTrue($request->isSecure());
-
- // trusted proxy via setTrustedProxies()
- Request::setTrustedProxies(['3.3.3.4', '2.2.2.2'], Request::HEADER_X_FORWARDED_ALL);
- $this->assertEquals('3.3.3.3', $request->getClientIp());
- $this->assertEquals('example.com', $request->getHost());
- $this->assertEquals(80, $request->getPort());
- $this->assertFalse($request->isSecure());
-
- // check various X_FORWARDED_PROTO header values
- Request::setTrustedProxies(['3.3.3.3', '2.2.2.2'], Request::HEADER_X_FORWARDED_ALL);
- $request->headers->set('X_FORWARDED_PROTO', 'ssl');
- $this->assertTrue($request->isSecure());
-
- $request->headers->set('X_FORWARDED_PROTO', 'https, http');
- $this->assertTrue($request->isSecure());
- }
-
- /**
- * @group legacy
- * @expectedDeprecation The "Symfony\Component\HttpFoundation\Request::setTrustedHeaderName()" method is deprecated since Symfony 3.3 and will be removed in 4.0. Use the $trustedHeaderSet argument of the Request::setTrustedProxies() method instead.
- */
- public function testLegacyTrustedProxies()
- {
- $request = Request::create('http://example.com/');
- $request->server->set('REMOTE_ADDR', '3.3.3.3');
- $request->headers->set('X_FORWARDED_FOR', '1.1.1.1, 2.2.2.2');
- $request->headers->set('X_FORWARDED_HOST', 'foo.example.com, real.example.com:8080');
- $request->headers->set('X_FORWARDED_PROTO', 'https');
- $request->headers->set('X_FORWARDED_PORT', 443);
- $request->headers->set('X_MY_FOR', '3.3.3.3, 4.4.4.4');
- $request->headers->set('X_MY_HOST', 'my.example.com');
- $request->headers->set('X_MY_PROTO', 'http');
- $request->headers->set('X_MY_PORT', 81);
-
- Request::setTrustedProxies(['3.3.3.3', '2.2.2.2'], Request::HEADER_X_FORWARDED_ALL);
-
- // custom header names
- Request::setTrustedHeaderName(Request::HEADER_CLIENT_IP, 'X_MY_FOR');
- Request::setTrustedHeaderName(Request::HEADER_CLIENT_HOST, 'X_MY_HOST');
- Request::setTrustedHeaderName(Request::HEADER_CLIENT_PORT, 'X_MY_PORT');
- Request::setTrustedHeaderName(Request::HEADER_CLIENT_PROTO, 'X_MY_PROTO');
- $this->assertEquals('4.4.4.4', $request->getClientIp());
- $this->assertEquals('my.example.com', $request->getHost());
- $this->assertEquals(81, $request->getPort());
- $this->assertFalse($request->isSecure());
-
- // disabling via empty header names
- Request::setTrustedHeaderName(Request::HEADER_CLIENT_IP, null);
- Request::setTrustedHeaderName(Request::HEADER_CLIENT_HOST, null);
- Request::setTrustedHeaderName(Request::HEADER_CLIENT_PORT, null);
- Request::setTrustedHeaderName(Request::HEADER_CLIENT_PROTO, null);
- $this->assertEquals('3.3.3.3', $request->getClientIp());
- $this->assertEquals('example.com', $request->getHost());
- $this->assertEquals(80, $request->getPort());
- $this->assertFalse($request->isSecure());
-
- //reset
- Request::setTrustedHeaderName(Request::HEADER_FORWARDED, 'FORWARDED');
- Request::setTrustedHeaderName(Request::HEADER_CLIENT_IP, 'X_FORWARDED_FOR');
- Request::setTrustedHeaderName(Request::HEADER_CLIENT_HOST, 'X_FORWARDED_HOST');
- Request::setTrustedHeaderName(Request::HEADER_CLIENT_PORT, 'X_FORWARDED_PORT');
- Request::setTrustedHeaderName(Request::HEADER_CLIENT_PROTO, 'X_FORWARDED_PROTO');
- }
-
- public function testTrustedProxiesForwarded()
- {
- $request = Request::create('http://example.com/');
- $request->server->set('REMOTE_ADDR', '3.3.3.3');
- $request->headers->set('FORWARDED', 'for=1.1.1.1, host=foo.example.com:8080, proto=https, for=2.2.2.2, host=real.example.com:8080');
-
- // no trusted proxies
- $this->assertEquals('3.3.3.3', $request->getClientIp());
- $this->assertEquals('example.com', $request->getHost());
- $this->assertEquals(80, $request->getPort());
- $this->assertFalse($request->isSecure());
-
- // disabling proxy trusting
- Request::setTrustedProxies([], Request::HEADER_FORWARDED);
- $this->assertEquals('3.3.3.3', $request->getClientIp());
- $this->assertEquals('example.com', $request->getHost());
- $this->assertEquals(80, $request->getPort());
- $this->assertFalse($request->isSecure());
-
- // request is forwarded by a non-trusted proxy
- Request::setTrustedProxies(['2.2.2.2'], Request::HEADER_FORWARDED);
- $this->assertEquals('3.3.3.3', $request->getClientIp());
- $this->assertEquals('example.com', $request->getHost());
- $this->assertEquals(80, $request->getPort());
- $this->assertFalse($request->isSecure());
-
- // trusted proxy via setTrustedProxies()
- Request::setTrustedProxies(['3.3.3.3', '2.2.2.2'], Request::HEADER_FORWARDED);
- $this->assertEquals('1.1.1.1', $request->getClientIp());
- $this->assertEquals('foo.example.com', $request->getHost());
- $this->assertEquals(8080, $request->getPort());
- $this->assertTrue($request->isSecure());
-
- // trusted proxy via setTrustedProxies()
- Request::setTrustedProxies(['3.3.3.4', '2.2.2.2'], Request::HEADER_FORWARDED);
- $this->assertEquals('3.3.3.3', $request->getClientIp());
- $this->assertEquals('example.com', $request->getHost());
- $this->assertEquals(80, $request->getPort());
- $this->assertFalse($request->isSecure());
-
- // check various X_FORWARDED_PROTO header values
- Request::setTrustedProxies(['3.3.3.3', '2.2.2.2'], Request::HEADER_FORWARDED);
- $request->headers->set('FORWARDED', 'proto=ssl');
- $this->assertTrue($request->isSecure());
-
- $request->headers->set('FORWARDED', 'proto=https, proto=http');
- $this->assertTrue($request->isSecure());
- }
-
- /**
- * @group legacy
- */
- public function testSetTrustedProxiesInvalidHeaderName()
- {
- $this->expectException('InvalidArgumentException');
- Request::create('http://example.com/');
- Request::setTrustedHeaderName('bogus name', 'X_MY_FOR');
- }
-
- /**
- * @group legacy
- */
- public function testGetTrustedProxiesInvalidHeaderName()
- {
- $this->expectException('InvalidArgumentException');
- Request::create('http://example.com/');
- Request::getTrustedHeaderName('bogus name');
- }
-
- /**
- * @dataProvider iisRequestUriProvider
- */
- public function testIISRequestUri($headers, $server, $expectedRequestUri)
- {
- $request = new Request();
- $request->headers->replace($headers);
- $request->server->replace($server);
-
- $this->assertEquals($expectedRequestUri, $request->getRequestUri(), '->getRequestUri() is correct');
-
- $subRequestUri = '/bar/foo';
- $subRequest = Request::create($subRequestUri, 'get', [], [], [], $request->server->all());
- $this->assertEquals($subRequestUri, $subRequest->getRequestUri(), '->getRequestUri() is correct in sub request');
- }
-
- public function iisRequestUriProvider()
- {
- return [
- [
- [],
- [
- 'IIS_WasUrlRewritten' => '1',
- 'UNENCODED_URL' => '/foo/bar',
- ],
- '/foo/bar',
- ],
- [
- [],
- [
- 'ORIG_PATH_INFO' => '/foo/bar',
- ],
- '/foo/bar',
- ],
- [
- [],
- [
- 'ORIG_PATH_INFO' => '/foo/bar',
- 'QUERY_STRING' => 'foo=bar',
- ],
- '/foo/bar?foo=bar',
- ],
- ];
- }
-
- public function testTrustedHosts()
- {
- // create a request
- $request = Request::create('/');
-
- // no trusted host set -> no host check
- $request->headers->set('host', 'evil.com');
- $this->assertEquals('evil.com', $request->getHost());
-
- // add a trusted domain and all its subdomains
- Request::setTrustedHosts(['^([a-z]{9}\.)?trusted\.com$']);
-
- // untrusted host
- $request->headers->set('host', 'evil.com');
- try {
- $request->getHost();
- $this->fail('Request::getHost() should throw an exception when host is not trusted.');
- } catch (SuspiciousOperationException $e) {
- $this->assertEquals('Untrusted Host "evil.com".', $e->getMessage());
- }
-
- // trusted hosts
- $request->headers->set('host', 'trusted.com');
- $this->assertEquals('trusted.com', $request->getHost());
- $this->assertEquals(80, $request->getPort());
-
- $request->server->set('HTTPS', true);
- $request->headers->set('host', 'trusted.com');
- $this->assertEquals('trusted.com', $request->getHost());
- $this->assertEquals(443, $request->getPort());
- $request->server->set('HTTPS', false);
-
- $request->headers->set('host', 'trusted.com:8000');
- $this->assertEquals('trusted.com', $request->getHost());
- $this->assertEquals(8000, $request->getPort());
-
- $request->headers->set('host', 'subdomain.trusted.com');
- $this->assertEquals('subdomain.trusted.com', $request->getHost());
- }
-
- public function testSetTrustedHostsDoesNotBreakOnSpecialCharacters()
- {
- Request::setTrustedHosts(['localhost(\.local){0,1}#,example.com', 'localhost']);
-
- $request = Request::create('/');
- $request->headers->set('host', 'localhost');
- $this->assertSame('localhost', $request->getHost());
- }
-
- public function testFactory()
- {
- Request::setFactory(function (array $query = [], array $request = [], array $attributes = [], array $cookies = [], array $files = [], array $server = [], $content = null) {
- return new NewRequest();
- });
-
- $this->assertEquals('foo', Request::create('/')->getFoo());
-
- Request::setFactory(null);
- }
-
- /**
- * @dataProvider getLongHostNames
- */
- public function testVeryLongHosts($host)
- {
- $start = microtime(true);
-
- $request = Request::create('/');
- $request->headers->set('host', $host);
- $this->assertEquals($host, $request->getHost());
- $this->assertLessThan(5, microtime(true) - $start);
- }
-
- /**
- * @dataProvider getHostValidities
- */
- public function testHostValidity($host, $isValid, $expectedHost = null, $expectedPort = null)
- {
- $request = Request::create('/');
- $request->headers->set('host', $host);
-
- if ($isValid) {
- $this->assertSame($expectedHost ?: $host, $request->getHost());
- if ($expectedPort) {
- $this->assertSame($expectedPort, $request->getPort());
- }
- } else {
- $this->expectException(SuspiciousOperationException::class);
- $this->expectExceptionMessage('Invalid Host');
-
- $request->getHost();
- }
- }
-
- public function getHostValidities()
- {
- return [
- ['.a', false],
- ['a..', false],
- ['a.', true],
- ["\xE9", false],
- ['[::1]', true],
- ['[::1]:80', true, '[::1]', 80],
- [str_repeat('.', 101), false],
- ];
- }
-
- public function getLongHostNames()
- {
- return [
- ['a'.str_repeat('.a', 40000)],
- [str_repeat(':', 101)],
- ];
- }
-
- /**
- * @dataProvider methodIdempotentProvider
- */
- public function testMethodIdempotent($method, $idempotent)
- {
- $request = new Request();
- $request->setMethod($method);
- $this->assertEquals($idempotent, $request->isMethodIdempotent());
- }
-
- public function methodIdempotentProvider()
- {
- return [
- ['HEAD', true],
- ['GET', true],
- ['POST', false],
- ['PUT', true],
- ['PATCH', false],
- ['DELETE', true],
- ['PURGE', true],
- ['OPTIONS', true],
- ['TRACE', true],
- ['CONNECT', false],
- ];
- }
-
- /**
- * @dataProvider methodSafeProvider
- */
- public function testMethodSafe($method, $safe)
- {
- $request = new Request();
- $request->setMethod($method);
- $this->assertEquals($safe, $request->isMethodSafe(false));
- }
-
- public function methodSafeProvider()
- {
- return [
- ['HEAD', true],
- ['GET', true],
- ['POST', false],
- ['PUT', false],
- ['PATCH', false],
- ['DELETE', false],
- ['PURGE', false],
- ['OPTIONS', true],
- ['TRACE', true],
- ['CONNECT', false],
- ];
- }
-
- /**
- * @group legacy
- * @expectedDeprecation Checking only for cacheable HTTP methods with Symfony\Component\HttpFoundation\Request::isMethodSafe() is deprecated since Symfony 3.2 and will throw an exception in 4.0. Disable checking only for cacheable methods by calling the method with `false` as first argument or use the Request::isMethodCacheable() instead.
- */
- public function testMethodSafeChecksCacheable()
- {
- $request = new Request();
- $request->setMethod('OPTIONS');
- $this->assertFalse($request->isMethodSafe());
- }
-
- /**
- * @dataProvider methodCacheableProvider
- */
- public function testMethodCacheable($method, $cacheable)
- {
- $request = new Request();
- $request->setMethod($method);
- $this->assertEquals($cacheable, $request->isMethodCacheable());
- }
-
- public function methodCacheableProvider()
- {
- return [
- ['HEAD', true],
- ['GET', true],
- ['POST', false],
- ['PUT', false],
- ['PATCH', false],
- ['DELETE', false],
- ['PURGE', false],
- ['OPTIONS', false],
- ['TRACE', false],
- ['CONNECT', false],
- ];
- }
-
- /**
- * @group legacy
- */
- public function testGetTrustedHeaderName()
- {
- Request::setTrustedProxies(['8.8.8.8'], Request::HEADER_X_FORWARDED_ALL);
-
- $this->assertNull(Request::getTrustedHeaderName(Request::HEADER_FORWARDED));
- $this->assertSame('X_FORWARDED_FOR', Request::getTrustedHeaderName(Request::HEADER_CLIENT_IP));
- $this->assertSame('X_FORWARDED_HOST', Request::getTrustedHeaderName(Request::HEADER_CLIENT_HOST));
- $this->assertSame('X_FORWARDED_PORT', Request::getTrustedHeaderName(Request::HEADER_CLIENT_PORT));
- $this->assertSame('X_FORWARDED_PROTO', Request::getTrustedHeaderName(Request::HEADER_CLIENT_PROTO));
-
- Request::setTrustedProxies(['8.8.8.8'], Request::HEADER_FORWARDED);
-
- $this->assertSame('FORWARDED', Request::getTrustedHeaderName(Request::HEADER_FORWARDED));
- $this->assertNull(Request::getTrustedHeaderName(Request::HEADER_CLIENT_IP));
- $this->assertNull(Request::getTrustedHeaderName(Request::HEADER_CLIENT_HOST));
- $this->assertNull(Request::getTrustedHeaderName(Request::HEADER_CLIENT_PORT));
- $this->assertNull(Request::getTrustedHeaderName(Request::HEADER_CLIENT_PROTO));
-
- Request::setTrustedHeaderName(Request::HEADER_FORWARDED, 'A');
- Request::setTrustedHeaderName(Request::HEADER_CLIENT_IP, 'B');
- Request::setTrustedHeaderName(Request::HEADER_CLIENT_HOST, 'C');
- Request::setTrustedHeaderName(Request::HEADER_CLIENT_PORT, 'D');
- Request::setTrustedHeaderName(Request::HEADER_CLIENT_PROTO, 'E');
-
- Request::setTrustedProxies(['8.8.8.8'], Request::HEADER_FORWARDED);
-
- $this->assertSame('A', Request::getTrustedHeaderName(Request::HEADER_FORWARDED));
- $this->assertNull(Request::getTrustedHeaderName(Request::HEADER_CLIENT_IP));
- $this->assertNull(Request::getTrustedHeaderName(Request::HEADER_CLIENT_HOST));
- $this->assertNull(Request::getTrustedHeaderName(Request::HEADER_CLIENT_PORT));
- $this->assertNull(Request::getTrustedHeaderName(Request::HEADER_CLIENT_PROTO));
-
- Request::setTrustedProxies(['8.8.8.8'], Request::HEADER_X_FORWARDED_ALL);
-
- $this->assertNull(Request::getTrustedHeaderName(Request::HEADER_FORWARDED));
- $this->assertSame('B', Request::getTrustedHeaderName(Request::HEADER_CLIENT_IP));
- $this->assertSame('C', Request::getTrustedHeaderName(Request::HEADER_CLIENT_HOST));
- $this->assertSame('D', Request::getTrustedHeaderName(Request::HEADER_CLIENT_PORT));
- $this->assertSame('E', Request::getTrustedHeaderName(Request::HEADER_CLIENT_PROTO));
-
- Request::setTrustedProxies(['8.8.8.8'], Request::HEADER_FORWARDED);
-
- $this->assertSame('A', Request::getTrustedHeaderName(Request::HEADER_FORWARDED));
-
- //reset
- Request::setTrustedHeaderName(Request::HEADER_FORWARDED, 'FORWARDED');
- Request::setTrustedHeaderName(Request::HEADER_CLIENT_IP, 'X_FORWARDED_FOR');
- Request::setTrustedHeaderName(Request::HEADER_CLIENT_HOST, 'X_FORWARDED_HOST');
- Request::setTrustedHeaderName(Request::HEADER_CLIENT_PORT, 'X_FORWARDED_PORT');
- Request::setTrustedHeaderName(Request::HEADER_CLIENT_PROTO, 'X_FORWARDED_PROTO');
- }
-
- /**
- * @dataProvider protocolVersionProvider
- */
- public function testProtocolVersion($serverProtocol, $trustedProxy, $via, $expected)
- {
- if ($trustedProxy) {
- Request::setTrustedProxies(['1.1.1.1'], -1);
- }
-
- $request = new Request();
- $request->server->set('SERVER_PROTOCOL', $serverProtocol);
- $request->server->set('REMOTE_ADDR', '1.1.1.1');
- $request->headers->set('Via', $via);
-
- $this->assertSame($expected, $request->getProtocolVersion());
- }
-
- public function protocolVersionProvider()
- {
- return [
- 'untrusted without via' => ['HTTP/2.0', false, '', 'HTTP/2.0'],
- 'untrusted with via' => ['HTTP/2.0', false, '1.0 fred, 1.1 nowhere.com (Apache/1.1)', 'HTTP/2.0'],
- 'trusted without via' => ['HTTP/2.0', true, '', 'HTTP/2.0'],
- 'trusted with via' => ['HTTP/2.0', true, '1.0 fred, 1.1 nowhere.com (Apache/1.1)', 'HTTP/1.0'],
- 'trusted with via and protocol name' => ['HTTP/2.0', true, 'HTTP/1.0 fred, HTTP/1.1 nowhere.com (Apache/1.1)', 'HTTP/1.0'],
- 'trusted with broken via' => ['HTTP/2.0', true, 'HTTP/1^0 foo', 'HTTP/2.0'],
- 'trusted with partially-broken via' => ['HTTP/2.0', true, '1.0 fred, foo', 'HTTP/1.0'],
- ];
- }
-
- public function nonstandardRequestsData()
- {
- return [
- ['', '', '/', 'http://host:8080/', ''],
- ['/', '', '/', 'http://host:8080/', ''],
-
- ['hello/app.php/x', '', '/x', 'http://host:8080/hello/app.php/x', '/hello', '/hello/app.php'],
- ['/hello/app.php/x', '', '/x', 'http://host:8080/hello/app.php/x', '/hello', '/hello/app.php'],
-
- ['', 'a=b', '/', 'http://host:8080/?a=b'],
- ['?a=b', 'a=b', '/', 'http://host:8080/?a=b'],
- ['/?a=b', 'a=b', '/', 'http://host:8080/?a=b'],
-
- ['x', 'a=b', '/x', 'http://host:8080/x?a=b'],
- ['x?a=b', 'a=b', '/x', 'http://host:8080/x?a=b'],
- ['/x?a=b', 'a=b', '/x', 'http://host:8080/x?a=b'],
-
- ['hello/x', '', '/x', 'http://host:8080/hello/x', '/hello'],
- ['/hello/x', '', '/x', 'http://host:8080/hello/x', '/hello'],
-
- ['hello/app.php/x', 'a=b', '/x', 'http://host:8080/hello/app.php/x?a=b', '/hello', '/hello/app.php'],
- ['hello/app.php/x?a=b', 'a=b', '/x', 'http://host:8080/hello/app.php/x?a=b', '/hello', '/hello/app.php'],
- ['/hello/app.php/x?a=b', 'a=b', '/x', 'http://host:8080/hello/app.php/x?a=b', '/hello', '/hello/app.php'],
- ];
- }
-
- /**
- * @dataProvider nonstandardRequestsData
- */
- public function testNonstandardRequests($requestUri, $queryString, $expectedPathInfo, $expectedUri, $expectedBasePath = '', $expectedBaseUrl = null)
- {
- if (null === $expectedBaseUrl) {
- $expectedBaseUrl = $expectedBasePath;
- }
-
- $server = [
- 'HTTP_HOST' => 'host:8080',
- 'SERVER_PORT' => '8080',
- 'QUERY_STRING' => $queryString,
- 'PHP_SELF' => '/hello/app.php',
- 'SCRIPT_FILENAME' => '/some/path/app.php',
- 'REQUEST_URI' => $requestUri,
- ];
-
- $request = new Request([], [], [], [], [], $server);
-
- $this->assertEquals($expectedPathInfo, $request->getPathInfo());
- $this->assertEquals($expectedUri, $request->getUri());
- $this->assertEquals($queryString, $request->getQueryString());
- $this->assertEquals(8080, $request->getPort());
- $this->assertEquals('host:8080', $request->getHttpHost());
- $this->assertEquals($expectedBaseUrl, $request->getBaseUrl());
- $this->assertEquals($expectedBasePath, $request->getBasePath());
- }
-
- public function testTrustedHost()
- {
- Request::setTrustedProxies(['1.1.1.1'], -1);
-
- $request = Request::create('/');
- $request->server->set('REMOTE_ADDR', '1.1.1.1');
- $request->headers->set('Forwarded', 'host=localhost:8080');
- $request->headers->set('X-Forwarded-Host', 'localhost:8080');
-
- $this->assertSame('localhost:8080', $request->getHttpHost());
- $this->assertSame(8080, $request->getPort());
-
- $request = Request::create('/');
- $request->server->set('REMOTE_ADDR', '1.1.1.1');
- $request->headers->set('Forwarded', 'host="[::1]:443"');
- $request->headers->set('X-Forwarded-Host', '[::1]:443');
- $request->headers->set('X-Forwarded-Port', 443);
-
- $this->assertSame('[::1]:443', $request->getHttpHost());
- $this->assertSame(443, $request->getPort());
- }
-
- public function testTrustedPort()
- {
- Request::setTrustedProxies(['1.1.1.1'], -1);
-
- $request = Request::create('/');
- $request->server->set('REMOTE_ADDR', '1.1.1.1');
- $request->headers->set('Forwarded', 'host=localhost:8080');
- $request->headers->set('X-Forwarded-Port', 8080);
-
- $this->assertSame(8080, $request->getPort());
-
- $request = Request::create('/');
- $request->server->set('REMOTE_ADDR', '1.1.1.1');
- $request->headers->set('Forwarded', 'host=localhost');
- $request->headers->set('X-Forwarded-Port', 80);
-
- $this->assertSame(80, $request->getPort());
-
- $request = Request::create('/');
- $request->server->set('REMOTE_ADDR', '1.1.1.1');
- $request->headers->set('Forwarded', 'host="[::1]"');
- $request->headers->set('X-Forwarded-Proto', 'https');
- $request->headers->set('X-Forwarded-Port', 443);
-
- $this->assertSame(443, $request->getPort());
- }
-
- public function testTrustedPortDoesNotDefaultToZero()
- {
- Request::setTrustedProxies(['1.1.1.1'], Request::HEADER_X_FORWARDED_ALL);
-
- $request = Request::create('/');
- $request->server->set('REMOTE_ADDR', '1.1.1.1');
- $request->headers->set('X-Forwarded-Host', 'test.example.com');
- $request->headers->set('X-Forwarded-Port', '');
-
- $this->assertSame(80, $request->getPort());
- }
- }
-
- class RequestContentProxy extends Request
- {
- public function getContent($asResource = false)
- {
- return http_build_query(['_method' => 'PUT', 'content' => 'mycontent'], '', '&');
- }
- }
-
- class NewRequest extends Request
- {
- public function getFoo()
- {
- return 'foo';
- }
- }
|