51 lines
1.3 KiB
YAML
51 lines
1.3 KiB
YAML
# Confirm that CORS is present. No complex configuration is done so
|
|
# this just tests the basics. Borrowed, in spirit, from
|
|
# nova.tests.functional.test_middleware.
|
|
|
|
fixtures:
|
|
- CORSFixture
|
|
|
|
defaults:
|
|
request_headers:
|
|
x-auth-token: user
|
|
|
|
tests:
|
|
- name: valid options request
|
|
OPTIONS: /
|
|
request_headers:
|
|
origin: http://valid.example.com
|
|
access-control-request-method: GET
|
|
access-control-request-headers: openstack-api-version
|
|
status: 200
|
|
response_headers:
|
|
access-control-allow-origin: http://valid.example.com
|
|
# Confirm allow-headers configuration.
|
|
access-control-allow-headers: openstack-api-version
|
|
|
|
- name: invalid options request
|
|
OPTIONS: /
|
|
request_headers:
|
|
origin: http://invalid.example.com
|
|
access-control-request-method: GET
|
|
status: 200
|
|
response_forbidden_headers:
|
|
- access-control-allow-origin
|
|
|
|
- name: valid get request
|
|
GET: /
|
|
request_headers:
|
|
origin: http://valid.example.com
|
|
access-control-request-method: GET
|
|
status: 200
|
|
response_headers:
|
|
access-control-allow-origin: http://valid.example.com
|
|
|
|
- name: invalid get request
|
|
GET: /
|
|
request_headers:
|
|
origin: http://invalid.example.com
|
|
access-control-request-method: GET
|
|
status: 200
|
|
response_forbidden_headers:
|
|
- access-control-allow-origin
|