mirror of
https://github.com/argoproj/argo-cd
synced 2026-04-22 01:17:16 +00:00
ef2501f4b1
* Add support for hidden directories with directory enforcer * Refactor * Lint * Rework done, still needs tests * WIP * Should be done * Fix test * Helm Charts
26 lines
867 B
Go
26 lines
867 B
Go
package security
|
|
|
|
import (
|
|
"testing"
|
|
|
|
"github.com/stretchr/testify/assert"
|
|
)
|
|
|
|
func TestEnforceToCurrentRoot(t *testing.T) {
|
|
cleanDir, err := EnforceToCurrentRoot("/home/argo/helmapp/", "/home/argo/helmapp/values.yaml")
|
|
assert.NoError(t, err)
|
|
assert.Equal(t, "/home/argo/helmapp/values.yaml", cleanDir)
|
|
|
|
// File is outside current working directory
|
|
_, err = EnforceToCurrentRoot("/home/argo/helmapp/", "/home/values.yaml")
|
|
assert.Error(t, err)
|
|
|
|
// File is outside current working directory
|
|
_, err = EnforceToCurrentRoot("/home/argo/helmapp/", "/home/argo/helmapp/../differentapp/values.yaml")
|
|
assert.Error(t, err)
|
|
|
|
// Goes back and forth, but still legal
|
|
cleanDir, err = EnforceToCurrentRoot("/home/argo/helmapp/", "/home/argo/helmapp/../../argo/helmapp/values.yaml")
|
|
assert.NoError(t, err)
|
|
assert.Equal(t, "/home/argo/helmapp/values.yaml", cleanDir)
|
|
}
|