dubey/WebGoat
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Ch1 less default (#814)

Browse Source 
* random pincode in challenge1

* unit test fix
This commit is contained in:
René Zubcevic
2020-05-12 08:49:48 +02:00
committed by GitHub
parent f520c3589c
commit c4a046bd12
6 changed files with 66 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

16
webgoat-integration-tests/src/test/java/org/owasp/webgoat/ChallengeTest.java
View File

@ -3,6 +3,7 @@ package org.owasp.webgoat;
import static org.junit.jupiter.api.Assertions.assertTrue;
import java.util.Arrays;
import java.util.HashMap;
import java.util.List;
import java.util.Map;
@ -10,6 +11,8 @@ import java.util.Map;
import org.junit.jupiter.api.Test;
import io.restassured.RestAssured;
import static org.owasp.webgoat.challenges.SolutionConstants.PASSWORD;
public class ChallengeTest extends IntegrationTest {
@ -17,10 +20,21 @@ public class ChallengeTest extends IntegrationTest {
public void testChallenge1() {
startLesson("Challenge1");
byte[] resultBytes =
RestAssured.given()
.when()
.relaxedHTTPSValidation()
.cookie("JSESSIONID", getWebGoatCookie())
.get(url("/WebGoat/challenge/logo"))
.then()
.statusCode(200)
.extract().asByteArray();
String pincode = new String(Arrays.copyOfRange(resultBytes, 81216, 81220));
Map<String, Object> params = new HashMap<>();
params.clear();
params.put("username", "admin");
params.put("password", "!!webgoat_admin_1234!!");
params.put("password", PASSWORD.replace("1234", pincode));
checkAssignment(url("/WebGoat/challenge/1"), params, true);