admin/n8n-enterprise-unlocked
1
0
Fork 0
mirror of https://github.com/Abdulazizzn/n8n-enterprise-unlocked.git synced 2025-12-17 18:12:04 +00:00
Code Issues Packages Projects Releases Wiki Activity

feat: Prevent webhook url takeover (#14783)

Browse Source
This commit is contained in:
Michael Kret
2025-04-28 14:29:32 +03:00
committed by GitHub
parent bc6f98928e
commit be53453def
13 changed files with 407 additions and 7 deletions
Download Patch File Download Diff File Expand all files Collapse all files

65
packages/frontend/editor-ui/src/components/WorkflowActivationConflictingWebhookModal.test.ts Normal file
View File

@@ -0,0 +1,65 @@
import { createTestingPinia } from '@pinia/testing';
import { createComponentRenderer } from '@/__tests__/render';
import WorkflowActivationConflictingWebhookModal from '@/components/WorkflowActivationConflictingWebhookModal.vue';
import { WORKFLOW_ACTIVATION_CONFLICTING_WEBHOOK_MODAL_KEY } from '@/constants';
import { waitFor } from '@testing-library/vue';
vi.mock('@/stores/ui.store', () => {
return {
useUIStore: vi.fn(() => ({
closeModal: vi.fn(),
})),
};
});
vi.mock('@/stores/root.store', () => {
return {
useRootStore: vi.fn(() => ({
webhookUrl: 'http://webhook-base',
urlBaseEditor: 'http://editor-base',
})),
};
});
const renderComponent = createComponentRenderer(WorkflowActivationConflictingWebhookModal, {
global: {
stubs: {
Modal: {
template:
'<div role="dialog"><slot name="header" /><slot name="content" /><slot name="footer" /></div>',
},
},
},
});
describe('WorkflowActivationConflictingWebhookModal', () => {
beforeEach(() => {
createTestingPinia();
});
it('should render modal', async () => {
const props = {
modalName: WORKFLOW_ACTIVATION_CONFLICTING_WEBHOOK_MODAL_KEY,
data: {
triggerName: 'Trigger in this workflow',
workflowName: 'Test Workflow',
workflowId: '123',
webhookPath: 'webhook-path',
method: 'GET',
node: 'Node in workflow',
},
};
const wrapper = renderComponent({ props });
await waitFor(() => {
expect(wrapper.queryByTestId('conflicting-webhook-callout')).toBeInTheDocument();
});
expect(wrapper.getByTestId('conflicting-webhook-callout')).toHaveTextContent(
"A webhook trigger 'Node in workflow' in the workflow 'Test Workflow' uses a conflicting URL path, so this workflow cannot be activated",
);
expect(wrapper.getByTestId('conflicting-webhook-path')).toHaveTextContent(
'http://webhook-base/webhook-path',
);
});
});