/usr/share/perl5/Test/CGI/Multipart.pm is in libtest-cgi-multipart-perl 0.0.3-1.
This file is owned by root:root, with mode 0o644.
The actual contents of the file can be viewed below.
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 139 140 141 142 143 144 145 146 147 148 149 150 151 152 153 154 155 156 157 158 159 160 161 162 163 164 165 166 167 168 169 170 171 172 173 174 175 176 177 178 179 180 181 182 183 184 185 186 187 188 189 190 191 192 193 194 195 196 197 198 199 200 201 202 203 204 205 206 207 208 209 210 211 212 213 214 215 216 217 218 219 220 221 222 223 224 225 226 227 228 229 230 231 232 233 234 235 236 237 238 239 240 241 242 243 244 245 246 247 248 249 250 251 252 253 254 255 256 257 258 259 260 261 262 263 264 265 266 267 268 269 270 271 272 273 274 275 276 277 278 279 280 281 282 283 284 285 286 287 288 289 290 291 292 293 294 295 296 297 298 299 300 301 302 303 304 305 306 307 308 309 310 311 312 313 314 315 316 317 318 319 320 321 322 323 324 325 326 327 328 329 330 331 332 333 334 335 336 337 338 339 340 341 342 343 344 345 346 347 348 349 350 351 352 353 354 355 356 357 358 359 360 361 362 363 364 365 366 367 368 369 370 371 372 373 374 375 376 377 378 379 380 381 382 383 384 385 386 387 388 389 390 391 392 393 394 395 396 397 398 399 400 401 402 403 404 405 406 407 408 409 410 411 412 413 414 415 416 417 418 419 420 421 422 423 424 425 426 427 428 429 430 431 432 433 434 435 436 437 438 439 440 441 442 443 444 445 446 447 448 449 450 451 452 453 454 455 456 457 458 459 460 461 462 463 464 465 466 467 468 469 470 471 472 473 474 475 476 477 478 479 480 481 482 483 484 485 486 487 488 489 490 491 492 493 494 495 496 497 498 499 500 501 502 503 504 505 506 507 508 509 510 511 512 513 514 515 516 517 518 519 520 521 522 523 524 525 526 527 528 529 530 531 532 533 534 535 536 537 538 539 540 541 542 543 544 545 546 547 548 549 550 551 552 | package Test::CGI::Multipart;
use warnings;
use strict;
use Carp;
use UNIVERSAL::require;
use Params::Validate qw(:all);
use MIME::Entity;
use Readonly;
require 5.006_001; # we use 3-arg open in places
use version; our $VERSION = qv('0.0.3');
# Module implementation here
# Make callbacks a package variable as then loading callbacks
# will be prettier.
my @callbacks;
# Parameter specs
# Note the purpose of these spcs is to protect our data structures.
# It should not protect the code that will be tested
# as that must look after itself.
Readonly my $NAME_SPEC => {type=>SCALAR};
Readonly my $VALUE_SPEC => {type=>SCALAR|ARRAYREF};
Readonly my $UA_SPEC => {type=>SCALAR, default=> 'Test::CGI::Multipart'};
Readonly my $CGI_SPEC => {
type=>SCALAR,
default=>'CGI',
regex=> qr{
\A # start of string
(?:
\w
|(?:\:\:) # Module name separator
)+
\z # end of string
}xms
};
Readonly my $TYPE_SPEC => {
type=>SCALAR,
optional=>1,
regex=> qr{
\A # start of string
[\w\-]+ # major type
\/ # MIME type separator
[\w\-]+ # sub-type
\z # end of string
}xms
};
Readonly my $FILE_SPEC => {
type=>SCALAR,
};
Readonly my $MIME_SPEC => {
type=>OBJECT,
isa=>'MIME::Entity',
};
Readonly my $CODE_SPEC => {
type=>CODEREF,
};
# MIME parsing states
Readonly my $TYPE_STATE => 0;
Readonly my $HEADER_STATE => 1;
Readonly my $DATA_STATE=> 2;
Readonly my $EOL => "\015\012";
sub new {
my $class = shift;
my $self = {
file_index=>0,
params=>{},
};
bless $self, $class;
return $self;
}
sub set_param {
my $self = shift;
my %params = validate(@_, {name=>$NAME_SPEC, value=>$VALUE_SPEC});
my @values = ref $params{value} eq 'ARRAY'
? @{$params{value}}
: $params{value}
;
$self->{params}->{$params{name}} = \@values;
return;
}
sub upload_file {
my $self = shift;
my %params = @_;
my $params = \%params;
foreach my $code (@callbacks) {
$params = &$code($params);
}
$self->_upload_file(%$params);
return;
}
sub _upload_file {
my $self = shift;
my %params = validate(@_, {
name=>$NAME_SPEC,
value=>$VALUE_SPEC,
file=>$FILE_SPEC,
type=>$TYPE_SPEC
});
my $name = $params{name};
if (!exists $self->{params}->{$name}) {
$self->{params}->{$name} = {};
}
if (ref $self->{params}->{$name} ne 'HASH') {
croak "mismatch: is $name a file upload or not";
}
my $file_index = $self->{file_index};
$self->{params}->{$name}->{$file_index} = \%params;
$self->{file_index}++;
return;
}
sub get_param {
my $self = shift;
my %params = validate(@_, {name=>$NAME_SPEC});
my $name = $params{name};
if (ref $self->{params}->{$name} eq 'HASH') {
return values %{$self->{params}->{$name}};
}
return @{$self->{params}->{$name}};
}
sub get_names {
my $self = shift;
return keys %{$self->{params}};
}
sub create_cgi {
use autodie qw(open);
my $self = shift;
my %params = validate(@_, {cgi=>$CGI_SPEC, ua=>$UA_SPEC});
my $mime = $self->_mime_data;
my $mime_str = $mime->stringify;
my $mime_string = $self->_normalize1($mime_str);
my $boundary = $mime->head->multipart_boundary;
$ENV{REQUEST_METHOD}='POST';
$ENV{CONTENT_TYPE}="multipart/form-data; boundary=$boundary";
$ENV{CONTENT_LENGTH}=length($mime_string);
$ENV{HTTP_USER_AGENT}=$params{ua};
# Would like to localize these but this causes problems with CGI::Simple.
local *STDIN;
open(STDIN, '<', \$mime_string);
binmode STDIN;
$params{cgi}->require;
if ($params{cgi} eq 'CGI::Simple') {
$CGI::Simple::DISABLE_UPLOADS = 0;
}
if ($params{cgi} eq 'CGI') {
CGI::initialize_globals();
}
if ($params{cgi} eq 'CGI::Minimal') {
CGI::Minimal::reset_globals();
}
my $cgi = $params{cgi}->new;
return $cgi;
}
sub _normalize1 {
my $self = shift;
my $mime_string = shift;
$mime_string =~ s{([\w-]+:\s+[^\n]+)\n\n}{$1$EOL$EOL}xmsg;
$mime_string =~ s{\n([\w-]+:\s+)}{$EOL$1}xmsg;
$mime_string =~ s{\n(-------)}{$EOL$1}xmsg;
return $mime_string;
}
sub _mime_data {
my $self = shift;
my $mime = $self->_create_multipart;
foreach my $name ($self->get_names) {
my $value = $self->{params}->{$name};
if (ref($value) eq "ARRAY") {
foreach my $v (@$value) {
$self->_attach_field(
mime=>$mime,
name=>$name,
value=>$v,
);
}
}
elsif(ref($value) eq "HASH") {
$self->_encode_upload(mime=>$mime,values=>$value);
}
else {
croak "unexpected data structure";
}
}
# Required so at least we don't have an empty MIME structure.
# And lynx at least does send it.
# CGI.pm seems to strip it out where as the others seem to pass it on.
$self->_attach_field(
mime=>$mime,
name=>'.submit',
value=>'Submit',
);
return $mime;
}
sub _attach_field {
my $self = shift;
my %params = validate(@_, {
mime => $MIME_SPEC,
name=>$NAME_SPEC,
value=>$VALUE_SPEC,
}
);
$params{mime}->attach(
'Content-Disposition'=>"form-data; name=\"$params{name}\"",
Data=>$params{value},
);
return;
}
sub _create_multipart {
my $self = shift;
my %params = validate(@_, {});
return MIME::Entity->build(
'Type'=>"multipart/form-data",
);
}
sub _encode_upload {
my $self = shift;
my %params = validate(@_, {
mime => $MIME_SPEC,
values => {type=>HASHREF}
});
my %values = %{$params{values}};
foreach my $k (keys %values) {
$self->_attach_file(
mime=>$params{mime},
%{$values{$k}}
);
}
return;
}
sub _attach_file {
my $self = shift;
my %params = validate(@_, {
mime => $MIME_SPEC,
file=>$FILE_SPEC,
type=>$TYPE_SPEC,
name=>$NAME_SPEC,
value=>$VALUE_SPEC,
}
);
my %attach = (
'Content-Disposition'=>
"form-data; name=\"$params{name}\"; filename=\"$params{file}\"",
Data=>$params{value},
Encoding=>'binary',
);
if ($params{type}) {
$attach{Type} = $params{type};
}
$params{mime}->attach(
%attach
);
return;
}
sub register_callback {
my $self = shift;
my %params = validate(@_, {
callback => $CODE_SPEC,
}
);
push @callbacks, $params{callback};
return;
}
1; # Magic true value required at end of module
__END__
=head1 NAME
Test::CGI::Multipart - Test posting of multi-part form data
=head1 VERSION
This document describes Test::CGI::Multipart version 0.0.3
=head1 SYNOPSIS
use Test::CGI::Multipart;
my $tcm = Test::CGI::Multipart;
# specify the form parameters
$tcm->set_param(name='email',value=>'jim@hacker.com');
$tcm->set_param(name=>'pets',value=> ['Rex', 'Oscar', 'Bidgie', 'Fish']);
$tcm->set_param(name=>'first_name',value=>'Jim');
$tcm->set_param(name=>'last_name',value=>'Hacker');
$tcm->upload_file(
name=>'file1',
file=>'made_up_filename.txt',
value=>$content
);
$tcm->upload_file(
name=>'file1',
file=>'made_up_filename.blah',
value=>$content_blah,
type=>'application/blah'
);
# Behind the scenes this will fake the browser and web server behaviour
# with regard to environment variables, MIME format and standard input.
my $cgi = $tcm->create_cgi;
# Okay now we have a CGI object which we can pass into the code
# that needs testing and run the form handling various tests.
=head1 DESCRIPTION
It is quite difficult to write test code to capture the behaviour
of CGI or similar objects handling forms that include a file upload.
Such code needs to harvest the parameters, build file content in MIME
format, set the environment variables accordingly and pump it into the
the standard input of the required CGI object. This module provides
simple methods so that having prepared suitable content, the test script
can simulate the submission of web forms including file uploads.
However we also recognise that a test script is not always the best place
to prepare content. Rather a test script would rather specify requirements
for a file a upload: type, size, mismatches between the file name and its
contents and so on. This module cannot hope to provide such open ended
functionality but it can provide extension mechanisms.
This module works with L<CGI> (the default), L<CGI::Minimal> and
L<CGI::Simple>. In principle it ought to work with all equivalent modules
however each module has a slightly different interface when it comes
to file uploads and so requires slightly different test code.
=head1 INTERFACE
Several of the methods below take named parameters. For convenience we define those parameters here:
=over
=item C<cgi>
This option defines the CGI module. It should be a scalar consisting only
of alphanumeric characters and C<::>. It defaults to 'CGI'.
=item C<name>
This is the name of form parameter. It must be a scalar.
=item C<value>
This is the value of the form parameter. It should either be
a scalar or an array reference of scalars.
=item C<file>
Where a form parameter represents a file, this is the name of that file.
=item C<type>
The MIME type of the content. This defaults to 'text/plain'.
=item C<ua>
The HTTP_USER_AGENT environment variable. This defaults to 'Test::CGI::Multipart'.
=back
=head2 new
An instance of this class might best be thought of as a "CGI object factory".
The constructor takes no parameters.
=head2 create_cgi
This returns a CGI object created according to the specification encapsulated in the object. The exact mechanics are as follows:
=over
=item The parameters are packaged up in MIME format.
=item The environment variables are set.
=item A pipe is created. The far end of the pipe is attached to our standard
input and the MIME content is pushed through the pipe.
=item The appropriate CGI class is required.
=item Uploads are enabled if the CGI class is L<CGI::Simple>.
=item Global variables are reset for L<CGI> and L<CGI::Minimal>.
=item The CGI object is created and returned.
=back
As far as I can see this simulates what happens when a CGI script processes a multi-part POST form. One can specify a different CGI class using the C<cgi> named parameter. One can set the HTTP_USER_AGENT environment variable with the C<ua> parameter.
=head2 set_param
This can be used to set a single form parameter. It takes two named arguments C<name> and C<value>. Note that this method overrides any previous settings including file uploads.
=head2 get_param
This retrieves a single form parameter. It takes a single named
parameter: C<name>. The data returned will be a list either of scalar
values or (in the case of a file upload) of HASHREFs. The HASHREFs would have
the following fields: C<file>, C<value> and C<type> representing the parameter
name, the file name, the content and the MIME type respectively.
=head2 get_names
This returns a list of stashed parameter names.
=head2 upload_file
In the absence of any defined callbacks, this method takes three mandatory
named parameters: C<name>, C<file> and C<value> and one optional parameter
C<type>. If there are any callbacks then the parameters are passed through each
of the callbacks and must meet the standard parameter requirements by the time
all the callbacks have been called.
Unlike the C<set_param> method this will not override previous
settings for this parameter but will add. However setting a normal parameter
and then an upload on the same name will throw an error.
=head2 register_callback
Callbacks are used by the C<upload_file> method, to allow a file to be specified
by properties rather than strict content. This method takes a single named
parameter called C<callback>, which adds that callback to an internal array
of callbacks. The idea being that the C<upload_file> method can take any
arguments you like so long as after all the callbacks have been applied, the
parameters consist of C<name>, C<file>, C<value> and possibly C<type>.
A callback should take and return a single hash reference.
=head1 DIAGNOSTICS
=over
=item C<< unexpected data structure >>
During the construction of the MIME data, the internal
data structure turned out to have unexpected features.
Since we control that data structure that should not happen.
=item C<< mismatch: is %s a file upload or not >>
The parameter was being used for both for file upload and normal
parameters.
=back
=head1 CONFIGURATION AND ENVIRONMENT
Test::CGI::Multipart requires no configuration files or environment variables.
However it should be noted that the module will overwrite the following
environment variables:
=over
=item REQUEST_METHOD
=item CONTENT_LENGTH
=item CONTENT_TYPE
=item HTTP_USER_AGENT
=back
=head1 INCOMPATIBILITIES
I would like to get this working with L<CGI::Lite::Request> and L<Apache::Request> if that makes sense. So far I have not managed that.
=head1 BUGS AND LIMITATIONS
No bugs have been reported.
Please report any bugs or feature requests to
C<bug-test-cgi-multipart@rt.cpan.org>, or through the web interface at
L<http://rt.cpan.org>.
This module depends upon L<MIME::Tools>. Unfortunately that module
does not handle newlines quite correctly. That seems to work fine for
email but does not work with L<CGI>. I have looked at L<MIME::Fast>
and L<MIME::Lite> but L<MIME::Tools> combined with a hack seems the best
that can be done at the moment. Sooner or later someone is going to hit
the limitations of that hack.
=head1 AUTHOR
Nicholas Bamber C<< <nicholas@periapt.co.uk> >>
=head1 LICENCE AND COPYRIGHT
Copyright (c) 2010, Nicholas Bamber C<< <nicholas@periapt.co.uk> >>. All rights reserved.
This module is free software; you can redistribute it and/or
modify it under the same terms as Perl itself. See L<perlartistic>.
=head1 DISCLAIMER OF WARRANTY
BECAUSE THIS SOFTWARE IS LICENSED FREE OF CHARGE, THERE IS NO WARRANTY
FOR THE SOFTWARE, TO THE EXTENT PERMITTED BY APPLICABLE LAW. EXCEPT WHEN
OTHERWISE STATED IN WRITING THE COPYRIGHT HOLDERS AND/OR OTHER PARTIES
PROVIDE THE SOFTWARE "AS IS" WITHOUT WARRANTY OF ANY KIND, EITHER
EXPRESSED OR IMPLIED, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE. THE
ENTIRE RISK AS TO THE QUALITY AND PERFORMANCE OF THE SOFTWARE IS WITH
YOU. SHOULD THE SOFTWARE PROVE DEFECTIVE, YOU ASSUME THE COST OF ALL
NECESSARY SERVICING, REPAIR, OR CORRECTION.
IN NO EVENT UNLESS REQUIRED BY APPLICABLE LAW OR AGREED TO IN WRITING
WILL ANY COPYRIGHT HOLDER, OR ANY OTHER PARTY WHO MAY MODIFY AND/OR
REDISTRIBUTE THE SOFTWARE AS PERMITTED BY THE ABOVE LICENCE, BE
LIABLE TO YOU FOR DAMAGES, INCLUDING ANY GENERAL, SPECIAL, INCIDENTAL,
OR CONSEQUENTIAL DAMAGES ARISING OUT OF THE USE OR INABILITY TO USE
THE SOFTWARE (INCLUDING BUT NOT LIMITED TO LOSS OF DATA OR DATA BEING
RENDERED INACCURATE OR LOSSES SUSTAINED BY YOU OR THIRD PARTIES OR A
FAILURE OF THE SOFTWARE TO OPERATE WITH ANY OTHER SOFTWARE), EVEN IF
SUCH HOLDER OR OTHER PARTY HAS BEEN ADVISED OF THE POSSIBILITY OF
SUCH DAMAGES.
|