upgrade springboot version and some related unit test fixes (#904)
* upgrade springboot version and some related unit test fixes * removed log for test * removed junit version property
This commit is contained in:
		| @ -3,7 +3,7 @@ package org.owasp.webgoat; | ||||
| import io.restassured.RestAssured; | ||||
| import io.restassured.http.ContentType; | ||||
| import org.hamcrest.CoreMatchers; | ||||
| import org.junit.Assert; | ||||
| import org.hamcrest.MatcherAssert; | ||||
| import org.junit.jupiter.api.Test; | ||||
|  | ||||
| import java.util.HashMap; | ||||
| @ -38,7 +38,7 @@ public class GeneralLessonTest extends IntegrationTest { | ||||
|     @Test | ||||
|     public void httpProxies() { | ||||
|         startLesson("HttpProxies"); | ||||
|         Assert.assertThat(RestAssured.given() | ||||
|         MatcherAssert.assertThat(RestAssured.given() | ||||
|                 .when().relaxedHTTPSValidation().cookie("JSESSIONID", getWebGoatCookie()).header("x-request-intercepted", "true") | ||||
|                 .contentType(ContentType.JSON) | ||||
|                 .get(url("HttpProxies/intercept-request?changeMe=Requests are tampered easily")) | ||||
| @ -114,7 +114,7 @@ public class GeneralLessonTest extends IntegrationTest { | ||||
|         checkResults("/auth-bypass/"); | ||||
|  | ||||
|         startLesson("HttpProxies"); | ||||
|         Assert.assertThat(RestAssured.given().when().relaxedHTTPSValidation().cookie("JSESSIONID", getWebGoatCookie()).header("x-request-intercepted", "true") | ||||
|         MatcherAssert.assertThat(RestAssured.given().when().relaxedHTTPSValidation().cookie("JSESSIONID", getWebGoatCookie()).header("x-request-intercepted", "true") | ||||
|                 .contentType(ContentType.JSON) | ||||
|                 .get(url("/WebGoat/HttpProxies/intercept-request?changeMe=Requests are tampered easily")).then() | ||||
|                 .statusCode(200).extract().path("lessonCompleted"), CoreMatchers.is(true)); | ||||
|  | ||||
| @ -9,7 +9,7 @@ import java.util.HashMap; | ||||
| import java.util.Map; | ||||
|  | ||||
| import org.hamcrest.CoreMatchers; | ||||
| import org.junit.Assert; | ||||
| import org.hamcrest.MatcherAssert; | ||||
| import org.junit.jupiter.api.AfterEach; | ||||
| import org.junit.jupiter.api.BeforeEach; | ||||
| import org.junit.jupiter.api.DynamicTest; | ||||
| @ -53,7 +53,7 @@ public class IDORTest extends IntegrationTest { | ||||
|     } | ||||
|      | ||||
|     private void profile() { | ||||
|     	Assert.assertThat( | ||||
|     	MatcherAssert.assertThat( | ||||
|                 RestAssured.given() | ||||
|                         .when() | ||||
|                         .relaxedHTTPSValidation() | ||||
| @ -70,7 +70,7 @@ public class IDORTest extends IntegrationTest { | ||||
|         params.put("url", "WebGoat/IDOR/profile/2342384"); | ||||
|         checkAssignment(url("/WebGoat/IDOR/profile/alt-path"), params, true); | ||||
|          | ||||
|         Assert.assertThat( | ||||
|         MatcherAssert.assertThat( | ||||
|                 RestAssured.given() | ||||
|                         .when() | ||||
|                         .relaxedHTTPSValidation() | ||||
| @ -80,7 +80,7 @@ public class IDORTest extends IntegrationTest { | ||||
|                         .statusCode(200) | ||||
|                         .extract().path("lessonCompleted"), CoreMatchers.is(true)); | ||||
|          | ||||
|         Assert.assertThat( | ||||
|         MatcherAssert.assertThat( | ||||
|                 RestAssured.given() | ||||
|                         .when() | ||||
|                         .relaxedHTTPSValidation() | ||||
|  | ||||
| @ -4,10 +4,7 @@ import io.restassured.RestAssured; | ||||
| import io.restassured.http.ContentType; | ||||
| import lombok.Getter; | ||||
| import org.hamcrest.CoreMatchers; | ||||
| import org.junit.After; | ||||
| import org.junit.Assert; | ||||
| import org.junit.Before; | ||||
| import org.junit.BeforeClass; | ||||
| import org.hamcrest.MatcherAssert; | ||||
| import org.junit.jupiter.api.AfterEach; | ||||
| import org.junit.jupiter.api.BeforeAll; | ||||
| import org.junit.jupiter.api.BeforeEach; | ||||
| @ -49,7 +46,6 @@ public abstract class IntegrationTest { | ||||
|  | ||||
|     private static boolean started = false; | ||||
|  | ||||
|     @BeforeClass | ||||
|     @BeforeAll | ||||
|     public static void beforeAll() { | ||||
|         if (WG_SSL) { | ||||
| @ -91,7 +87,6 @@ public abstract class IntegrationTest { | ||||
|         return WEBWOLF_URL + url; | ||||
|     } | ||||
|  | ||||
|     @Before | ||||
|     @BeforeEach | ||||
|     public void login() { | ||||
|  | ||||
| @ -143,7 +138,6 @@ public abstract class IntegrationTest { | ||||
|                 .cookie("WEBWOLFSESSION"); | ||||
|     } | ||||
|  | ||||
|     @After | ||||
|     @AfterEach | ||||
|     public void logout() { | ||||
|         RestAssured.given() | ||||
| @ -193,7 +187,7 @@ public abstract class IntegrationTest { | ||||
|      * @param expectedResult | ||||
|      */ | ||||
|     public void checkAssignment(String url, Map<String, ?> params, boolean expectedResult) { | ||||
|         Assert.assertThat( | ||||
|         MatcherAssert.assertThat( | ||||
|                 RestAssured.given() | ||||
|                         .when() | ||||
|                         .relaxedHTTPSValidation() | ||||
| @ -215,7 +209,7 @@ public abstract class IntegrationTest { | ||||
|      * @param expectedResult | ||||
|      */ | ||||
|     public void checkAssignmentWithPUT(String url, Map<String, ?> params, boolean expectedResult) { | ||||
|         Assert.assertThat( | ||||
|     	MatcherAssert.assertThat( | ||||
|                 RestAssured.given() | ||||
|                         .when() | ||||
|                         .relaxedHTTPSValidation() | ||||
| @ -231,7 +225,7 @@ public abstract class IntegrationTest { | ||||
|     public void checkResults(String prefix) { | ||||
|         checkResults(); | ||||
|  | ||||
|         Assert.assertThat(RestAssured.given() | ||||
|         MatcherAssert.assertThat(RestAssured.given() | ||||
|                 .when() | ||||
|                 .relaxedHTTPSValidation() | ||||
|                 .cookie("JSESSIONID", getWebGoatCookie()) | ||||
| @ -242,7 +236,7 @@ public abstract class IntegrationTest { | ||||
|     } | ||||
|  | ||||
|     public void checkResults() { | ||||
|         Assert.assertThat(RestAssured.given() | ||||
|     	MatcherAssert.assertThat(RestAssured.given() | ||||
|                 .when() | ||||
|                 .relaxedHTTPSValidation() | ||||
|                 .cookie("JSESSIONID", getWebGoatCookie()) | ||||
| @ -252,7 +246,7 @@ public abstract class IntegrationTest { | ||||
|     } | ||||
|  | ||||
|     public void checkAssignment(String url, ContentType contentType, String body, boolean expectedResult) { | ||||
|         Assert.assertThat( | ||||
|     	MatcherAssert.assertThat( | ||||
|                 RestAssured.given() | ||||
|                         .when() | ||||
|                         .relaxedHTTPSValidation() | ||||
| @ -266,7 +260,7 @@ public abstract class IntegrationTest { | ||||
|     } | ||||
|  | ||||
|     public void checkAssignmentWithGet(String url, Map<String, ?> params, boolean expectedResult) { | ||||
|         Assert.assertThat( | ||||
|     	MatcherAssert.assertThat( | ||||
|                 RestAssured.given() | ||||
|                         .when() | ||||
|                         .relaxedHTTPSValidation() | ||||
|  | ||||
| @ -12,7 +12,7 @@ import java.util.HashMap; | ||||
| import java.util.Map; | ||||
|  | ||||
| import org.hamcrest.CoreMatchers; | ||||
| import org.junit.Assert; | ||||
| import org.hamcrest.MatcherAssert; | ||||
| import org.junit.jupiter.api.Test; | ||||
| import org.owasp.webgoat.jwt.JWTSecretKeyEndpoint; | ||||
|  | ||||
| @ -86,7 +86,7 @@ public class JWTLessonTest extends IntegrationTest { | ||||
|     	 | ||||
|     	String secret = getSecretToken(accessToken); | ||||
|     	 | ||||
|         Assert.assertThat( | ||||
|     	MatcherAssert.assertThat( | ||||
|                 RestAssured.given() | ||||
|                         .when() | ||||
|                         .relaxedHTTPSValidation() | ||||
| @ -126,7 +126,7 @@ public class JWTLessonTest extends IntegrationTest { | ||||
|         		.concat(new String(Base64.getUrlEncoder().encode(bodyObject.toString().getBytes())).toString()) | ||||
|         		.concat(".").replace("=", ""); | ||||
|          | ||||
|         Assert.assertThat( | ||||
|         MatcherAssert.assertThat( | ||||
|                 RestAssured.given() | ||||
|                         .when() | ||||
|                         .relaxedHTTPSValidation() | ||||
| @ -154,7 +154,7 @@ public class JWTLessonTest extends IntegrationTest { | ||||
| 				.concat(new String(Base64.getUrlEncoder().encode(body.getBytes())).toString()) | ||||
| 				.concat(".").replace("=", ""); | ||||
|  | ||||
| 		Assert.assertThat(RestAssured.given() | ||||
| 		MatcherAssert.assertThat(RestAssured.given() | ||||
| 				.when().relaxedHTTPSValidation() | ||||
| 				.cookie("JSESSIONID", getWebGoatCookie()) | ||||
| 				.header("Authorization","Bearer "+replacedToken) | ||||
| @ -180,7 +180,7 @@ public class JWTLessonTest extends IntegrationTest { | ||||
| 				.claim("Role", new String[] {"Manager", "Project Administrator"}) | ||||
| 				.signWith(SignatureAlgorithm.HS256, "deletingTom").compact(); | ||||
| 		 | ||||
| 		Assert.assertThat(RestAssured.given() | ||||
| 		MatcherAssert.assertThat(RestAssured.given() | ||||
| 				.when().relaxedHTTPSValidation() | ||||
| 				.cookie("JSESSIONID", getWebGoatCookie()) | ||||
| 				.post(url("/WebGoat/JWT/final/delete?token="+token)) | ||||
|  | ||||
| @ -10,7 +10,7 @@ import java.util.Arrays; | ||||
| import java.util.Map; | ||||
|  | ||||
| import org.hamcrest.CoreMatchers; | ||||
| import org.junit.Assert; | ||||
| import org.hamcrest.MatcherAssert; | ||||
| import org.junit.jupiter.api.AfterEach; | ||||
| import org.junit.jupiter.api.BeforeEach; | ||||
| import org.junit.jupiter.api.DynamicTest; | ||||
| @ -49,7 +49,7 @@ public class PathTraversalTest extends IntegrationTest { | ||||
|     } | ||||
|      | ||||
|     public void assignment1() throws IOException { | ||||
|         Assert.assertThat( | ||||
|     	MatcherAssert.assertThat( | ||||
|                 RestAssured.given() | ||||
|                         .when() | ||||
|                         .relaxedHTTPSValidation() | ||||
| @ -63,7 +63,7 @@ public class PathTraversalTest extends IntegrationTest { | ||||
|     } | ||||
|  | ||||
|     public void assignment2() throws IOException { | ||||
|         Assert.assertThat( | ||||
|     	MatcherAssert.assertThat( | ||||
|                 RestAssured.given() | ||||
|                         .when() | ||||
|                         .relaxedHTTPSValidation() | ||||
| @ -77,7 +77,7 @@ public class PathTraversalTest extends IntegrationTest { | ||||
|     } | ||||
|  | ||||
|     public void assignment3() throws IOException { | ||||
|         Assert.assertThat( | ||||
|     	MatcherAssert.assertThat( | ||||
|                 RestAssured.given() | ||||
|                         .when() | ||||
|                         .relaxedHTTPSValidation() | ||||
|  | ||||
| @ -59,7 +59,7 @@ public class SqlInjectionMitigationTest extends IntegrationTest { | ||||
|                 .get(url("/WebGoat/SqlInjectionMitigations/servers?column=unknown")) | ||||
|                 .then() | ||||
|                 .statusCode(500) | ||||
|                 .body("message", containsString("select id, hostname, ip, mac, status, description from servers  where status <> 'out of order' order by")); | ||||
|                 .body("trace", containsString("select id, hostname, ip, mac, status, description from servers  where status <> 'out of order' order by")); | ||||
|  | ||||
|         params.clear(); | ||||
|         params.put("ip", "104.130.219.202"); | ||||
|  | ||||
| @ -1,6 +1,6 @@ | ||||
| package org.owasp.webgoat; | ||||
|  | ||||
| import static org.junit.Assert.assertTrue; | ||||
| import static org.junit.jupiter.api.Assertions.assertTrue; | ||||
|  | ||||
| import java.io.IOException; | ||||
| import java.util.HashMap; | ||||
|  | ||||
		Reference in New Issue
	
	Block a user