1 package club.wpia.gigi;
3 import static org.junit.Assert.*;
5 import java.io.IOException;
6 import java.net.HttpURLConnection;
10 import club.wpia.gigi.testUtils.ManagedTest;
12 public class TestSecurityHeaders extends ManagedTest {
15 public void testSTS() throws IOException {
16 HttpURLConnection uc = get(null, "/");
17 assertNotNull(uc.getHeaderField("Strict-Transport-Security"));
20 public void testCSP() throws IOException {
21 HttpURLConnection uc = get(null, "/");
22 assertNotNull(uc.getHeaderField("Content-Security-Policy"));
25 public void testAllowOrigin() throws IOException {
26 HttpURLConnection uc = get(null, "/");
27 assertNotNull(uc.getHeaderField("Access-Control-Allow-Origin"));