diff options
| author | Jeremy Evans <code@jeremyevans.net> | 2020-01-10 16:25:47 -0800 |
|---|---|---|
| committer | Rafael Mendonça França <rafaelmfranca@gmail.com> | 2020-01-13 11:22:00 -0500 |
| commit | 29157dcd8aba13b8175b97f0b154d1e74969f9a3 (patch) | |
| tree | acc372715ed85f3cf431f56b88fffc07cfae2b41 | |
| parent | c5abd25fda15bc38a47ac9f6c52c0016d3bf7288 (diff) | |
| download | rack-29157dcd8aba13b8175b97f0b154d1e74969f9a3.tar.gz | |
Handle case where session id key is requested but it is missing
Use historical behavior of returning nil in this case.
Add tests for Rack::Session::Abstract::PersistedSecure::SecureSessionHash,
mostly based on the existing ones for Rack::Session::Abstract::SessionHash.
Fixes #1433. Needs backport to 1.6 and 2.0.
| -rw-r--r-- | lib/rack/session/abstract/id.rb | 2 | ||||
| -rw-r--r-- | test/spec_session_persisted_secure_secure_session_hash.rb | 73 |
2 files changed, 74 insertions, 1 deletions
diff --git a/lib/rack/session/abstract/id.rb b/lib/rack/session/abstract/id.rb index b7063338..b1bd25c9 100644 --- a/lib/rack/session/abstract/id.rb +++ b/lib/rack/session/abstract/id.rb @@ -442,7 +442,7 @@ module Rack def [](key) if key == "session_id" load_for_read! - id.public_id + id.public_id if id else super end diff --git a/test/spec_session_persisted_secure_secure_session_hash.rb b/test/spec_session_persisted_secure_secure_session_hash.rb new file mode 100644 index 00000000..21cbf8e6 --- /dev/null +++ b/test/spec_session_persisted_secure_secure_session_hash.rb @@ -0,0 +1,73 @@ +# frozen_string_literal: true + +require 'minitest/global_expectations/autorun' +require 'rack/session/abstract/id' + +describe Rack::Session::Abstract::PersistedSecure::SecureSessionHash do + attr_reader :hash + + def setup + super + @store = Class.new do + def load_session(req) + [Rack::Session::SessionId.new("id"), { foo: :bar, baz: :qux }] + end + def session_exists?(req) + true + end + end + @hash = Rack::Session::Abstract::PersistedSecure::SecureSessionHash.new(@store.new, nil) + end + + it "returns keys" do + assert_equal ["foo", "baz"], hash.keys + end + + it "returns values" do + assert_equal [:bar, :qux], hash.values + end + + describe "#[]" do + it "returns value for a matching key" do + assert_equal :bar, hash[:foo] + end + + it "returns value for a 'session_id' key" do + assert_equal "id", hash['session_id'] + end + + it "returns nil value for missing 'session_id' key" do + store = @store.new + def store.load_session(req) + [nil, {}] + end + @hash = Rack::Session::Abstract::PersistedSecure::SecureSessionHash.new(store, nil) + assert_nil hash['session_id'] + end + end + + describe "#fetch" do + it "returns value for a matching key" do + assert_equal :bar, hash.fetch(:foo) + end + + it "works with a default value" do + assert_equal :default, hash.fetch(:unknown, :default) + end + + it "works with a block" do + assert_equal :default, hash.fetch(:unkown) { :default } + end + + it "it raises when fetching unknown keys without defaults" do + lambda { hash.fetch(:unknown) }.must_raise KeyError + end + end + + describe "#stringify_keys" do + it "returns hash or session hash with keys stringified" do + assert_equal({ "foo" => :bar, "baz" => :qux }, hash.send(:stringify_keys, hash).to_h) + end + end +end + |