From 065c2e67b64656e1db0026c3f3307d7ee3cddd6f Mon Sep 17 00:00:00 2001 From: Felipe Zimmerle Date: Tue, 30 Oct 2018 18:22:52 -0300 Subject: [PATCH] Adds test case for #1850 --- Makefile.am | 1 + test/test-cases/regression/actions.json | 6 +-- test/test-cases/regression/issue-1850.json | 50 ++++++++++++++++++++++ 3 files changed, 54 insertions(+), 3 deletions(-) create mode 100644 test/test-cases/regression/issue-1850.json diff --git a/Makefile.am b/Makefile.am index d5a20f8e..5ef65ccc 100644 --- a/Makefile.am +++ b/Makefile.am @@ -91,6 +91,7 @@ TESTS+=test/test-cases/regression/issue-1785.json TESTS+=test/test-cases/regression/issue-1812.json TESTS+=test/test-cases/regression/issue-1831.json TESTS+=test/test-cases/regression/issue-1844.json +TESTS+=test/test-cases/regression/issue-1850.json TESTS+=test/test-cases/regression/issue-1725.json TESTS+=test/test-cases/regression/issue-1941.json TESTS+=test/test-cases/regression/variable-RESPONSE_HEADERS.json diff --git a/test/test-cases/regression/actions.json b/test/test-cases/regression/actions.json index 2c07d3ca..c69f1a7c 100644 --- a/test/test-cases/regression/actions.json +++ b/test/test-cases/regression/actions.json @@ -123,7 +123,7 @@ "enabled": 1, "version_min": 300000, "version_max": 0, - "title": "actions :: trim,status:500,redirect:http://www.google.com", + "title": "actions :: trim,status:306,redirect:http://www.google.com", "client": { "ip": "200.249.12.31", "port": 2313 @@ -171,12 +171,12 @@ "audit_log": "", "debug_log": "\\[9\\] T \\(0\\) t:trim: \"test", "error_log": "", - "http_code": 500, + "http_code": 306, "redirect_url": "http://www.google.com" }, "rules": [ "SecRuleEngine On", - "SecRule ARGS \"@contains test\" \"id:1,t:trim,status:500,redirect:'http://www.google.com'\"" + "SecRule ARGS \"@contains test\" \"id:1,t:trim,status:306,redirect:'http://www.google.com'\"" ] }, { diff --git a/test/test-cases/regression/issue-1850.json b/test/test-cases/regression/issue-1850.json new file mode 100644 index 00000000..3057537a --- /dev/null +++ b/test/test-cases/regression/issue-1850.json @@ -0,0 +1,50 @@ +[ + { + "enabled": 1, + "version_min": 209000, + "version_max": -1, + "title": "Override the default status code if not suitable to redirect action", + "url": "https:\/\/github.com\/SpiderLabs\/ModSecurity\/issues\/1850", + "client": { + "ip": "200.249.12.31", + "port": 2313 + }, + "server": { + "ip": "200.249.12.31", + "port": 80 + }, + "request": { + "headers": { + "Host": "net.tutsplus.com", + "User-Agent": "", + "Accept": "text\/html,application\/xhtml+xml,application\/xml;q=0.9,*\/*;q=0.8", + "Accept-Language": "en-us,en;q=0.5", + "Accept-Encoding": "gzip,deflate", + "Accept-Charset": "ISO-8859-1,utf-8;q=0.7,*;q=0.7", + "Keep-Alive": "300", + "Connection": "keep-alive", + "Cookie": "PHPSESSID=r2t5uvjq435r4q7ib3vtdjq120", + "Pragma": "no-cache", + "Cache-Control": "no-cache" + }, + "uri": "\/test.pl?foo=£&bar=%C2%A3", + "method": "GET", + "http_version": 1.1, + "body": "" + }, + "response": { + "headers": { + "Content-Type": "text\/xml; charset=utf-8\n\r", + "Content-Length": "length\n\r" + } + }, + "expected": { + "http_code": 302 + }, + "rules": [ + "SecRuleEngine On", + "SecDefaultAction \"phase:1,status:404,deny\"", + "SecRule REQUEST_URI \"@contains /\" \"id:2000001,phase:1,log,redirect:'http://1.1.1.1/failed.html',t:none,msg:\"Unauthorized administrator request'\"" + ] + } +]