From c2c28d3aeb4f3db92991bf77cd8e8dfa1be2268f Mon Sep 17 00:00:00 2001 From: Erik Michelson Date: Sun, 23 Aug 2020 01:41:55 +0200 Subject: [PATCH] Add test for dropbox csp rule Signed-off-by: Erik Michelson --- test/csp.js | 10 ++++++++++ 1 file changed, 10 insertions(+) diff --git a/test/csp.js b/test/csp.js index 0b00ecbb0..d081cef06 100644 --- a/test/csp.js +++ b/test/csp.js @@ -81,6 +81,16 @@ describe('Content security policies', function () { assert(!csp.computeDirectives().fontSrc.includes('https://*.disquscdn.com')) }) + it('Include dropbox if configured', function () { + let testconfig = defaultConfig + testconfig.dropbox.appKey = 'hedgedoc' + mock('../lib/config', testconfig) + csp = mock.reRequire('../lib/csp') + + assert(csp.computeDirectives().scriptSrc.includes('https://www.dropbox.com')) + assert(csp.computeDirectives().scriptSrc.includes('\'unsafe-inline\'')) + }) + it('Set ReportURI', function () { let testconfig = defaultConfig testconfig.csp.reportURI = 'https://example.com/reportURI'