BEGIN {
$ENV{GITALIST_CONFIG} = $Bin;
- use_ok 'Catalyst::Test', 'Gitalist'
+ $ENV{GITALIST_REPO_DIR} = '';
+ use_ok 'Catalyst::Test', 'Gitalist';
}
ok( request('/')->is_success, 'Request should succeed' );
ok( request($path)->is_success, "$path should succeed");
}
-is request('/summary?p=DoesNotExist')->code, 404,
- '/summary?p=DoesNotExist 404s';
+my $response = request('/summary?p=DoesNotExist');
+is $response->code, 404, 'invalid project 404s';
+like $response->content, qr/Page not found/, 'invalid project handled correctly';
+
+is request('/summary?p=../../../')->code, 404, 'directory traversal failed';
+
{
# URI tests for repo1
local *test = curry_test_uri('repo1');
projects / catagits/Gitalist.git / blobdiff