0001-wcs-do-not-crash-on-POST-with-invalid-cell-identifie.patch

Frédéric Péters, 29 mai 2018 16:35

Voir les différences: en ligne côte à côte

Subject: [PATCH] wcs: do not crash on POST with invalid cell identifiers
 (#24147)

 combo/apps/wcs/views.py |  7 +++++--
 tests/test_wcs.py       | 11 +++++++++++
 2 files changed, 16 insertions(+), 2 deletions(-)

     import urlparse
     from django.contrib import messages
     from django.http import HttpResponseRedirect
     from django.http import HttpResponseRedirect, HttpResponseBadRequest
     from django.utils.translation import ugettext_lazy as _
     from django.views.decorators.csrf import csrf_exempt
     from django.views.generic import View
-...
             return super(TrackingCodeView, self).dispatch(*args, **kwargs)
         def post(self, request, *args, **kwargs):
             cell = TrackingCodeInputCell.objects.get(id=request.POST['cell'])
             try:
                 cell = TrackingCodeInputCell.objects.get(id=request.POST['cell'])
             except (ValueError, TrackingCodeInputCell.DoesNotExist):
                 return HttpResponseBadRequest('Invalid cell id')
             code = request.POST['code']
             if cell.wcs_site:
                 wcs_sites = [get_wcs_services().get(cell.wcs_site)]

         resp.form['code'] = 'CNPHNTFB'
         resp = resp.form.submit()
         assert resp.location == 'http://example.net/?foo=bar&unknown-tracking-code'
         # error handling
         resp = app.get('/')
         resp.form['cell'] = '0000'
         resp.form['code'] = 'CNPHNTFB'
         resp = resp.form.submit(status=400)
         resp = app.get('/')
         resp.form['cell'] = 'xxxx'
         resp.form['code'] = 'CNPHNTFB'
         resp = resp.form.submit(status=400)
+    -

Produits Entr'ouvert » Combo