team-alpha/railsgoat
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

refactor vulnerabilities so that users can turn them from failing to passing

Browse Source
This commit is contained in:
Joseph Mastey
2017-09-19 22:16:05 -05:00
parent fb2254342e
commit 5643edcc5d
12 changed files with 130 additions and 127 deletions
Download Patch File Download Diff File Expand all files Collapse all files
spec/vulnerabilities/password_complexity_spec.rb
+11 -6
View File
@@ -2,22 +2,27 @@
require "spec_helper"
feature "password complexity" do
let(:normal_user) { UserFixture.normal_user }
before do
UserFixture.reset_all_users
@normal_user = UserFixture.normal_user
pending unless verifying_fixed?
end
scenario "one\nTutorial: https://github.com/OWASP/railsgoat/wiki/A2-Lack-of-Password-Complexity" do
new_user_email = normal_user.email + "two"
visit "/signup"
within(".signup") do
fill_in "user_email", with: @normal_user.email + "not"
fill_in "user_first_name", with: @normal_user.first_name
fill_in "user_last_name", with: @normal_user.last_name + "not"
fill_in "user_email", with: new_user_email
fill_in "user_first_name", with: normal_user.first_name
fill_in "user_last_name", with: normal_user.last_name + "not"
fill_in "user_password", with: "password"
fill_in "user_password_confirmation", with: "password"
end
click_on "Submit"
pending if verifying_fixed?
expect(current_path).to eq("/dashboard/home")
expect(User.find_by(email: new_user_email)).to be_nil
expect(current_path).to eq("/signup")
end
end