def test_session_cookie_no_secure_but_hsts(self):
cookie = Cookie(name='SESSIONID',
comment=None,
comment_url=None,
discard=False,
domain='mozilla.com',
domain_initial_dot=False,
domain_specified='mozilla.com',
expires=None,
path='/',
path_specified='/',
port=443,
port_specified=443,
rfc2109=False,
rest={'HttpOnly': True},
secure=False,
version=1,
value='bar')
self.reqs['session'].cookies.set_cookie(cookie)
self.reqs['responses']['https'].headers['Strict-Transport-Security'] = 'max-age=15768000'
result = cookies(self.reqs)
self.assertEquals('cookies-session-without-secure-flag-but-protected-by-hsts', result['result'])
self.assertFalse(result['pass'])
评论列表
文章目录
