Added XSRF prevention logic to $xhr service

author: Misko Hevery 2011-03-10 13:50:00 -0800
committer: Misko Hevery 2011-03-11 14:16:53 -0800
commit: c578f8c3ed0ca23b03ccde146cb13cfaf24f17cd (patch)
tree: 12182c82ee4411091b6d92f81829dd52f8792e27 /test/service/xhrSpec.js
parent: 5b05c0de036f77db0cc493082e21b1451c6b9a5f (diff)
download: angular.js-c578f8c3ed0ca23b03ccde146cb13cfaf24f17cd.tar.bz2
1 files changed, 17 insertions, 0 deletions
diff --git a/test/service/xhrSpec.js b/test/service/xhrSpec.js
index 66dbe94d..39bc1c66 100644
--- a/test/service/xhrSpec.js
+++ b/test/service/xhrSpec.js
@@ -101,4 +101,21 @@ describe('$xhr', function() {
 
     expect(response).toEqual([1, 'abc', {foo:'bar'}]);
   });
+
+  describe('xsrf', function(){
+    it('should copy the XSRF cookie into a XSRF Header', function(){
+      var code, response;
+      $browserXhr
+        .expectPOST('URL', 'DATA', {'X-XSRF-TOKEN': 'secret'})
+        .respond(234, 'OK');
+      $browser.cookies('XSRF-TOKEN', 'secret');
+      $xhr('POST', 'URL', 'DATA', function(c, r){
+        code = c;
+        response = r;
+      });
+      $browserXhr.flush();
+      expect(code).toEqual(234);
+      expect(response).toEqual('OK');
+    });
+  });
 });
author	Misko Hevery	2011-03-10 13:50:00 -0800
committer	Misko Hevery	2011-03-11 14:16:53 -0800
commit	c578f8c3ed0ca23b03ccde146cb13cfaf24f17cd (patch)
tree	12182c82ee4411091b6d92f81829dd52f8792e27 /test/service/xhrSpec.js
parent	5b05c0de036f77db0cc493082e21b1451c6b9a5f (diff)
download	angular.js-c578f8c3ed0ca23b03ccde146cb13cfaf24f17cd.tar.bz2