diff --git a/tests/frontendIntegration/django2x/polls/urls.py b/tests/frontendIntegration/django2x/polls/urls.py index 0ac62fb25..c5e764cf8 100644 --- a/tests/frontendIntegration/django2x/polls/urls.py +++ b/tests/frontendIntegration/django2x/polls/urls.py @@ -14,6 +14,7 @@ name="multipleInterceptors", ), path("", views.get_info, name="/"), # type: ignore + path("check-rid-no-session", views.check_rid_no_session, name="check-rid-no-session"), # type: ignore path("update-jwt", views.update_jwt, name="update_jwt"), # type: ignore path("update-jwt-with-handle", views.update_jwt_with_handle, name="update_jwt_with_handle"), # type: ignore path("session-claims-error", views.session_claim_error_api, name="session_claim_error_api"), # type: ignore diff --git a/tests/frontendIntegration/django2x/polls/views.py b/tests/frontendIntegration/django2x/polls/views.py index f044ce808..a6f45c12b 100644 --- a/tests/frontendIntegration/django2x/polls/views.py +++ b/tests/frontendIntegration/django2x/polls/views.py @@ -434,6 +434,11 @@ def get_info(request: HttpRequest): return HttpResponse("") +def check_rid_no_session(request: HttpRequest): + rid = request.headers.get("rid") # type: ignore + return HttpResponse("fail" if rid is None else "success") + + @custom_decorator_for_update_jwt() @verify_session() def update_jwt(request: HttpRequest): diff --git a/tests/frontendIntegration/django3x/polls/urls.py b/tests/frontendIntegration/django3x/polls/urls.py index 0ac62fb25..c5e764cf8 100644 --- a/tests/frontendIntegration/django3x/polls/urls.py +++ b/tests/frontendIntegration/django3x/polls/urls.py @@ -14,6 +14,7 @@ name="multipleInterceptors", ), path("", views.get_info, name="/"), # type: ignore + path("check-rid-no-session", views.check_rid_no_session, name="check-rid-no-session"), # type: ignore path("update-jwt", views.update_jwt, name="update_jwt"), # type: ignore path("update-jwt-with-handle", views.update_jwt_with_handle, name="update_jwt_with_handle"), # type: ignore path("session-claims-error", views.session_claim_error_api, name="session_claim_error_api"), # type: ignore diff --git a/tests/frontendIntegration/django3x/polls/views.py b/tests/frontendIntegration/django3x/polls/views.py index 5c86f330f..05fd0b33f 100644 --- a/tests/frontendIntegration/django3x/polls/views.py +++ b/tests/frontendIntegration/django3x/polls/views.py @@ -438,6 +438,11 @@ async def get_info(request: HttpRequest): return HttpResponse("") +def check_rid_no_session(request: HttpRequest): + rid = request.headers.get("rid") # type: ignore + return HttpResponse("fail" if rid is None else "success") + + @custom_decorator_for_update_jwt() @verify_session() async def update_jwt(request: HttpRequest): diff --git a/tests/frontendIntegration/fastapi-server/app.py b/tests/frontendIntegration/fastapi-server/app.py index 56792896b..66fc798fc 100644 --- a/tests/frontendIntegration/fastapi-server/app.py +++ b/tests/frontendIntegration/fastapi-server/app.py @@ -317,6 +317,12 @@ async def get_info(r_session: SessionContainer = Depends(verify_session())): ) +@app.get("/check-rid-no-session") +def check_rid_no_session_api(request: Request): + rid = request.headers.get("rid") + return PlainTextResponse("fail" if rid is None else "success") + + @app.options("/update-jwt") def update_options(): return send_options_api_response() diff --git a/tests/frontendIntegration/flask-server/app.py b/tests/frontendIntegration/flask-server/app.py index 3a4c9442c..91d223ec2 100644 --- a/tests/frontendIntegration/flask-server/app.py +++ b/tests/frontendIntegration/flask-server/app.py @@ -336,6 +336,12 @@ def get_info(): return resp +@app.route("/check-rid-no-session", methods=["GET"]) # type: ignore +def check_rid_no_session(): + rid = request.headers.get("rid") + return "fail" if rid is None or not rid.startswith("anti-csrf") else "success" + + @app.route("/update-jwt", methods=["OPTIONS"]) # type: ignore def update_options(): return send_options_api_response()