• Home
  • Line#
  • Scopes#
  • Navigate#
  • Raw
  • Download
1<testcase>
2<info>
3<keywords>
4HTTP
5HTTP GET
6followlocation
7</keywords>
8</info>
9#
10# Server-side
11<reply>
12<data>
13HTTP/1.1 302 OK swsclose
14Location: ../../../../../../../510002
15Date: Thu, 09 Nov 2010 14:50:00 GMT
16Connection: close
17
18</data>
19<data2>
20HTTP/1.1 200 OK swsclose
21Location: this should be ignored
22Date: Thu, 09 Nov 2010 14:50:00 GMT
23Connection: close
24
25body
26</data2>
27<datacheck>
28HTTP/1.1 302 OK swsclose
29Location: ../../../../../../../510002
30Date: Thu, 09 Nov 2010 14:50:00 GMT
31Connection: close
32
33HTTP/1.1 200 OK swsclose
34Location: this should be ignored
35Date: Thu, 09 Nov 2010 14:50:00 GMT
36Connection: close
37
38body
39</datacheck>
40</reply>
41
42#
43# Client-side
44<client>
45<server>
46http
47</server>
48 <name>
49HTTP follow redirect with excessive ../
50 </name>
51 <command>
52http://%HOSTIP:%HTTPPORT/we/are/all/twits/51 -L
53</command>
54</client>
55
56#
57# Verify data after the test has been "shot"
58<verify>
59<strip>
60^User-Agent:.*
61</strip>
62<protocol>
63GET /we/are/all/twits/51 HTTP/1.1
64Host: %HOSTIP:%HTTPPORT
65Accept: */*
66
67GET /510002 HTTP/1.1
68User-Agent: curl/7.10 (i686-pc-linux-gnu) libcurl/7.10 OpenSSL/0.9.6c ipv6 zlib/1.1.3
69Host: %HOSTIP:%HTTPPORT
70Accept: */*
71
72</protocol>
73</verify>
74</testcase>
75