API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Mar 19th, 2018
76
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 2.08 KB | None | 0 0
raw download clone embed print report
  1.  
  2.  
  3. console.log("Starting:")
  4.  
  5. passedCounter = 0;
  6.  
  7. // TODO - testy na csrf'a
  8.  
  9. anonymousGetPublicRes()
  10.  
  11. // 1 - próba dostępu jako anonimowy do chronionego zasobu
  12. passedCounter += anonymousGetProtectedRes() ? 1 : 0;
  13. // 2 - zalogowanie(podanie loginu i hasła)
  14. passedCounter += loginWithUsernameAndPassword() ? 1 : 0;
  15. // 3 - dostęp do chronionego zasobu jako zalogowany(podanie jsessionid)
  16. passedCounter += givenJsessionidGetProtectedRes() ? 1 : 0;
  17. // 4 - wylogowanie
  18. passedCounter += logout() ? 1 : 0;
  19. // 5 - próba dostępu jako anonimowy do chronionego zasobu
  20. passedCounter += anonymousGetProtectedRes() ? 1 : 0;
  21. // 6 - próba logowania się niepoprawnym hasłem
  22. passedCounter += loginWithUsernameAndIncorrectPassword() ? 1 : 0;
  23. // 7 - próba dostępu do chronionego zasobu podając niepoprawne jsessionid
  24. passedCounter += givenIncorrectJsessionidGetProtectedRes() ? 1 : 0;
  25.  
  26. console.log('OK: ' + passedCounter + ' / ' + '7')
  27.  
  28. console.log("Done.")
  29.  
  30.  
  31. ////////////////////////////////////////////////
  32.  
  33. var a = 5;
  34.  
  35. var baseUrl = "localhost:8080"
  36. var publicResUrl = "/api/v1/publicRes";
  37. var protectedResUrl = "/api/v1/protectedRes";
  38. var loginRequest = "/api/v1/login";
  39. var logoutRequest = "/api/v1/logout";
  40. var jsessionid = null;
  41. var incorrectJsessionId = "asdfadsfasdfasdf";
  42. var username = "username";
  43. var password = "password";
  44. var incorrectPassword = "inc passwd";
  45.  
  46.  
  47. function anonymousGetProtectedRes() {
  48.  
  49. return false;
  50. }
  51. function loginWithUsernameAndPassword() {
  52. return false;
  53. }
  54. function givenJsessionidGetProtectedRes() {
  55. return false;
  56. }
  57. function logout() {
  58. return false;
  59. }
  60. function anonymousGetProtectedRes() {
  61. return false;
  62. }
  63. function loginWithUsernameAndIncorrectPassword() {
  64. return false;
  65. }
  66. function givenIncorrectJsessionidGetProtectedRes() {
  67. return false;
  68. }
  69. function anonymousGetPublicRes() {
  70. var request = require('request');
  71. request.get({
  72. url: baseUrl + publicResUrl,
  73. }, function(error, response, body){
  74. console.log(error)
  75. console.log(response)
  76. console.log(body);
  77. });
  78. }
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!