mirror of
https://github.com/0rangebananaspy/authelia.git
synced 2024-09-14 22:47:21 +07:00
40574bc8ec
Before this fix an anonymous user was not able to access a resource that were configured with a bypass policy. This was due to a useless check of the userid in the auth session. Moreover, in the case of an anonymous user, we should not check the inactivity period since there is no session. Also refactor /verify endpoint for better testability and add tests in a new suite.
18 lines
649 B
TypeScript
18 lines
649 B
TypeScript
import { StartDriver, StopDriver } from "../../../helpers/context/WithDriver";
|
|
import VerifySecretObserved from "../../../helpers/assertions/VerifySecretObserved";
|
|
import VisitPageAndWaitUrlIs from "../../../helpers/behaviors/VisitPageAndWaitUrlIs";
|
|
|
|
export default function() {
|
|
before(async function() {
|
|
this.driver = await StartDriver();
|
|
});
|
|
|
|
after(async function () {
|
|
await StopDriver(this.driver);
|
|
});
|
|
|
|
it('should have access to public.example.com/secret.html', async function () {
|
|
await VisitPageAndWaitUrlIs(this.driver, "https://public.example.com:8080/secret.html");
|
|
await VerifySecretObserved(this.driver);
|
|
});
|
|
} |