Simulate the DefectDojo Response Headers

Signed-off-by: Sven Strittmatter <sven.strittmatter@iteratec.com>

Author: Weltraumschaf

src/test/java/io/securecodebox/persistence/defectdojo/service/EndpointServiceTest.java

@@ -13,8 +13,7 @@
 
 import static com.github.tomakehurst.wiremock.client.WireMock.*;
 import static org.hamcrest.MatcherAssert.assertThat;
-import static org.hamcrest.Matchers.containsInAnyOrder;
-import static org.hamcrest.Matchers.hasSize;
+import static org.hamcrest.Matchers.*;
 import static org.junit.jupiter.api.Assertions.assertAll;
 
 /**
@@ -61,11 +60,13 @@ final class EndpointServiceTest extends WireMockBaseTestCase {
 
   @Test
   void search() throws URISyntaxException, IOException {
+    final var response = readFixtureFile("EndpointService_response_fixture.json");
     stubFor(
       get("/api/v2/endpoints/?offset=0&limit=100")
         .willReturn(
           ok()
-            .withBody(readFixtureFile("EndpointService_response_fixture.json"))
+            .withHeaders(responseHeaders(response.length()))
+            .withBody(response)
         )
     );
 
@@ -79,11 +80,13 @@ void search() throws URISyntaxException, IOException {
 
   @Test
   void search_withQueryParams() throws URISyntaxException, IOException {
+    final var response = readFixtureFile("EndpointService_response_fixture.json");
     stubFor(
       get("/api/v2/endpoints/?limit=100&bar=42&offset=0&foo=23")
         .willReturn(
           ok()
-            .withBody(readFixtureFile("EndpointService_response_fixture.json"))
+            .withHeaders(responseHeaders(response.length()))
+            .withBody(response)
         )
     );
     final var params = new HashMap<String, Object>();

src/test/java/io/securecodebox/persistence/defectdojo/service/WireMockBaseTestCase.java

@@ -3,13 +3,18 @@
 // SPDX-License-Identifier: Apache-2.0
 package io.securecodebox.persistence.defectdojo.service;
 
+import com.github.tomakehurst.wiremock.http.HttpHeader;
+import com.github.tomakehurst.wiremock.http.HttpHeaders;
 import com.github.tomakehurst.wiremock.junit5.WireMockTest;
 import io.securecodebox.persistence.defectdojo.config.Config;
 import lombok.Getter;
 import lombok.experimental.Accessors;
 
 import java.io.IOException;
 import java.nio.charset.StandardCharsets;
+import java.time.ZoneId;
+import java.time.ZonedDateTime;
+import java.time.format.DateTimeFormatter;
 import java.util.Objects;
 
 /**
@@ -34,4 +39,24 @@ String readFixtureFile(String fixtureFile) throws IOException {
       return new String(bytes, StandardCharsets.UTF_8);
     }
   }
+
+  HttpHeaders responseHeaders(int contentLength) {
+    return HttpHeaders.noHeaders().plus(
+      new HttpHeader("date", now()),
+      new HttpHeader("content-type", "application/json"),
+      new HttpHeader("content-length", String.valueOf(contentLength)),
+      new HttpHeader("allow", "GET, PUT, PATCH, DELETE, HEAD, OPTIONS"),
+      new HttpHeader("x-frame-options", "DENY"),
+      new HttpHeader("x-content-type-options", "nosniff"),
+      new HttpHeader("referrer-policy", "same-origin"),
+      new HttpHeader("cross-origin-opener-policy", "same-origin"),
+      new HttpHeader("vary", "Cookie"),
+      new HttpHeader("strict-transport-security", "max-age=31536000; includeSubDomains")
+    );
+  }
+
+  String now() {
+    return ZonedDateTime.now(ZoneId.of("Europe/Berlin"))
+      .format(DateTimeFormatter.RFC_1123_DATE_TIME);
+  }
 }