9 years ago · 4364611961
--- a/app/models/agents/webhook_agent.rb
+++ b/app/models/agents/webhook_agent.rb
@@ -39,7 +39,7 @@ module Agents
 
                 
              
 
                     def receive_web_request(params, method, format)
              
 
                       secret = params.delete('secret')
              
 
                -      verbs = (options['verbs'] ? options['verbs'] : 'post').split(';')
              
 
                +      verbs = (options['verbs'] ? options['verbs'] : 'post').split(/[,;]/).map { |x| x.strip.downcase }
              
 
                       return ["Please use #{verbs.join('/').upcase} requests only", 401] unless verbs.include?(method)
              
 
                       return ["Not Authorized", 401] unless secret == interpolated['secret']
              
 
                 
              
--- a/spec/models/agents/webhook_agent_spec.rb
+++ b/spec/models/agents/webhook_agent_spec.rb
@@ -164,6 +164,36 @@ describe Agents::WebhookAgent do
 
                 
              
 
                       end
              
 
                 
              
 
                +      context "flaky content with commas" do
              
 
                +
              
 
                +        before { agent.options['verbs'] = ';;  PUT,POST; gEt , ;' }
              
 
                +
              
 
                +        it "should accept PUT" do
              
 
                +          out = nil
              
 
                +          expect {
              
 
                +            out = agent.receive_web_request({ 'secret' => 'foobar', 'some_key' => payload }, "put", "text/html")
              
 
                +          }.to change { Event.count }.by(1)
              
 
                +          expect(out).to eq(['Event Created', 201])
              
 
                +        end
              
 
                +
              
 
                +        it "should accept GET" do
              
 
                +          out = nil
              
 
                +          expect {
              
 
                +            out = agent.receive_web_request({ 'secret' => 'foobar', 'some_key' => payload }, "get", "text/html")
              
 
                +          }.to change { Event.count }.by(1)
              
 
                +          expect(out).to eq(['Event Created', 201])
              
 
                +        end
              
 
                +
              
 
                +        it "should accept POST" do
              
 
                +          out = nil
              
 
                +          expect {
              
 
                +            out = agent.receive_web_request({ 'secret' => 'foobar', 'some_key' => payload }, "post", "text/html")
              
 
                +          }.to change { Event.count }.by(1)
              
 
                +          expect(out).to eq(['Event Created', 201])
              
 
                +        end
              
 
                +
              
 
                +      end
              
 
                +
              
 
                     end
              
 
                 
              
 
                   end