Add smoke test

DataDog · Feb 16, 2024 · 11583a1 · 11583a1
1 parent ffada9c
commit 11583a1
Showing 1 changed file with 12 additions and 0 deletions.
diff --git a/...sts/iast-util/src/testFixtures/groovy/datadog/smoketest/AbstractIastSpringBootTest.groovy b/...sts/iast-util/src/testFixtures/groovy/datadog/smoketest/AbstractIastSpringBootTest.groovy
@@ -943,6 +943,18 @@ abstract class AbstractIastSpringBootTest extends AbstractIastServerSmokeTest {
       && vul.location.method == 'reflectionInjectionField'}
   }
 
+  void "Check session rewriting"() {
+    setup:
+    String url = "http://localhost:${httpPort}/greeting;jsessionid=1234"
+    def request = new Request.Builder().url(url).get().build()
+
+    when:
+    client.newCall(request).execute()
+
+    then:
+    hasVulnerability { vul -> vul.type == 'SESSION_REWRITING'}
+  }
+
 
 
 }