summaryrefslogtreecommitdiff
path: root/tests/check_framework/test_security.py
diff options
context:
space:
mode:
Diffstat (limited to 'tests/check_framework/test_security.py')
-rw-r--r--tests/check_framework/test_security.py43
1 files changed, 43 insertions, 0 deletions
diff --git a/tests/check_framework/test_security.py b/tests/check_framework/test_security.py
index e6728606ef..4c1869d272 100644
--- a/tests/check_framework/test_security.py
+++ b/tests/check_framework/test_security.py
@@ -502,3 +502,46 @@ class CheckAllowedHostsTest(SimpleTestCase):
@override_settings(ALLOWED_HOSTS=['.example.com'])
def test_allowed_hosts_set(self):
self.assertEqual(self.func(None), [])
+
+
+class CheckReferrerPolicyTest(SimpleTestCase):
+
+ @property
+ def func(self):
+ from django.core.checks.security.base import check_referrer_policy
+ return check_referrer_policy
+
+ @override_settings(
+ MIDDLEWARE=['django.middleware.security.SecurityMiddleware'],
+ SECURE_REFERRER_POLICY=None,
+ )
+ def test_no_referrer_policy(self):
+ self.assertEqual(self.func(None), [base.W022])
+
+ @override_settings(MIDDLEWARE=[], SECURE_REFERRER_POLICY=None)
+ def test_no_referrer_policy_no_middleware(self):
+ """
+ Don't warn if SECURE_REFERRER_POLICY is None and SecurityMiddleware
+ isn't in MIDDLEWARE.
+ """
+ self.assertEqual(self.func(None), [])
+
+ @override_settings(MIDDLEWARE=['django.middleware.security.SecurityMiddleware'])
+ def test_with_referrer_policy(self):
+ tests = (
+ 'strict-origin',
+ 'strict-origin,origin',
+ 'strict-origin, origin',
+ ['strict-origin', 'origin'],
+ ('strict-origin', 'origin'),
+ )
+ for value in tests:
+ with self.subTest(value=value), override_settings(SECURE_REFERRER_POLICY=value):
+ self.assertEqual(self.func(None), [])
+
+ @override_settings(
+ MIDDLEWARE=['django.middleware.security.SecurityMiddleware'],
+ SECURE_REFERRER_POLICY='invalid-value',
+ )
+ def test_with_invalid_referrer_policy(self):
+ self.assertEqual(self.func(None), [base.E023])
generated by cgit v1.3 (git 2.53.0) at 2026-05-01 21:50:08 +0000