Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Generate additional test cases based on actual browser reports #28

Open
9 tasks
rspeed opened this issue Dec 8, 2017 · 0 comments
Open
9 tasks

Generate additional test cases based on actual browser reports #28

rspeed opened this issue Dec 8, 2017 · 0 comments
Assignees
@rspeed
Labels
enhancement

Comments

@rspeed
Copy link
Owner

rspeed commented Dec 8, 2017

To improve real-world coverage, every known report should have its own test case.

  • Make a list of every type of HPKP and CSP error.
  • Create a website that is able to make browsers generate reports.
    • Ability to set (and possibly configure) both HPKP and CSP headers.
    • Ability to violate those settings.
  • Create a second website for capturing reports.
    • Report API endpoint that doesn't really do anything.
    • Configure mitmproxy to sit in front of the report site, or integrate through its API.
  • Run through each known error type using each of the major browsers.
  • Export the raw requests and use them to create new test cases.

This will be an unrelated and rarely used codebase, so it'll go in an empty branch.
@rspeed rspeed self-assigned this Dec 8, 2017
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@rspeed rspeed

Labels
enhancement
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@rspeed