From f5efdeb3495f0de7c82c7d1139fe136e4bc05db4 Mon Sep 17 00:00:00 2001
From: Rob Austein <sra@hactrn.net>
Date: Mon, 26 Oct 2015 21:30:12 +0000
Subject: Add warning about CSRF issues when simulating multiple GUI instances
 under yamltest.  No obvious way to tell Django's CSRF protection to allow
 this, not entirely sure we'd want to do so even if we could.

svn path=/branches/tk705/; revision=6154
---
 ca/tests/yamltest.py | 4 ++++
 1 file changed, 4 insertions(+)

(limited to 'ca')

diff --git a/ca/tests/yamltest.py b/ca/tests/yamltest.py
index ae87f949..3740cbf6 100755
--- a/ca/tests/yamltest.py
+++ b/ca/tests/yamltest.py
@@ -947,16 +947,20 @@ try:
         if args.run_gui:
             print
             print 'GUI user "root", password "fnord"'
+            gui_count = 0
             for d in db:
                 if not d.is_hosted:
                     url = "http://127.0.0.1:%d/rpki/" % (8000 + d.engine)
                     print "GUI URL", url, "for", d.name
                     if not args.no_browser:
+                        gui_count += 1
                         if d is db.root:
                             webbrowser.open_new(url)
                         else:
                             webbrowser.open_new_tab(url)
                         time.sleep(2)
+            if gui_count > 1:
+                print "Warning: Logging into more than one GUI instance at once will probably fail due to CSRF protection"
 
         # Wait until something terminates.
 
-- 
cgit v1.2.3