From 353a4a1af3165b2c59319865350d70a99105269c Mon Sep 17 00:00:00 2001
From: TheAifam5 <theaifam5@gmail.com>
Date: Mon, 9 Aug 2021 16:53:21 +0200
Subject: feat: Add --unsafely-treat-insecure-origin-as-secure flag to disable
 SSL verification (#11324)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

This commit adds "--unsafely-treat-insecure-origin-as-secure" flag
that allows to disable SSL verification for all domains, or specific
domains if they were passed as an argument to the flag.

Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
---
 cli/tests/cafile_ts_fetch_unsafe_ssl.ts.out    |  2 ++
 cli/tests/cafile_url_imports_unsafe_ssl.ts.out |  3 +++
 cli/tests/integration/mod.rs                   | 13 +++++++++++++
 3 files changed, 18 insertions(+)
 create mode 100644 cli/tests/cafile_ts_fetch_unsafe_ssl.ts.out
 create mode 100644 cli/tests/cafile_url_imports_unsafe_ssl.ts.out

(limited to 'cli/tests')

diff --git a/cli/tests/cafile_ts_fetch_unsafe_ssl.ts.out b/cli/tests/cafile_ts_fetch_unsafe_ssl.ts.out
new file mode 100644
index 000000000..f0b63833a
--- /dev/null
+++ b/cli/tests/cafile_ts_fetch_unsafe_ssl.ts.out
@@ -0,0 +1,2 @@
+DANGER: SSL ceritificate validation is disabled for all domains
+Hello
diff --git a/cli/tests/cafile_url_imports_unsafe_ssl.ts.out b/cli/tests/cafile_url_imports_unsafe_ssl.ts.out
new file mode 100644
index 000000000..3f6a0c07f
--- /dev/null
+++ b/cli/tests/cafile_url_imports_unsafe_ssl.ts.out
@@ -0,0 +1,3 @@
+DANGER: SSL ceritificate validation is disabled for: localhost
+Hello
+success
diff --git a/cli/tests/integration/mod.rs b/cli/tests/integration/mod.rs
index cc016382f..938d40125 100644
--- a/cli/tests/integration/mod.rs
+++ b/cli/tests/integration/mod.rs
@@ -474,6 +474,19 @@ fn broken_stdout() {
 //   http_server: true,
 // });
 
+itest!(cafile_url_imports_unsafe_ssl {
+  args: "run --quiet --reload --unsafely-treat-insecure-origin-as-secure=localhost cafile_url_imports.ts",
+  output: "cafile_url_imports_unsafe_ssl.ts.out",
+  http_server: true,
+});
+
+itest!(cafile_ts_fetch_unsafe_ssl {
+  args:
+    "run --quiet --reload --allow-net --unsafely-treat-insecure-origin-as-secure cafile_ts_fetch.ts",
+  output: "cafile_ts_fetch_unsafe_ssl.ts.out",
+  http_server: true,
+});
+
 #[test]
 #[ignore]
 fn cafile_env_fetch() {
-- 
cgit v1.2.3