Mercurial > kallithea

view tox.ini @ 5811:9b74296e6af6 stable

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
auth: further sanitize requests to prevent GET CSRF (CVE-2016-3691) Routes allows GET requests to override the HTTP method, which breaks the Kallithea CSRF protection (which only applies to POST requests). This commit blocks such GET request, preventing CSRF attacks.
author Søren Løvborg <sorenl@unity3d.com>
date Tue, 19 Apr 2016 18:02:56 +0200
parents 768989c595aa
children 6a83b399bb3c
line wrap: on
line source

[tox]
minversion = 1.8
envlist = py{26,27}-{pytest,nose}

[testenv]
setenv =
    PYTHONHASHSEED = 0
deps =
    nose: nose
    pytest: pytest
commands =
    nose: nosetests {posargs}
    pytest: py.test {posargs}