akanealw/caddy-proxy-manager
1
0
Fork 0
Code Issues Pull Requests Actions 3 Packages Projects Releases Wiki Activity
Files
92fa1cb9d8c7cff1b98123181f3c8ec49d4ac0d2
caddy-proxy-manager/tests/unit/cert-domain-match.test.ts
fuomag9 92fa1cb9d8 Fix duplicate certificate display for wildcard-covered subdomains 
When a wildcard cert (e.g. *.domain.de) existed and a proxy host was created
for a subdomain (e.g. sub.domain.de) without explicitly linking it, the
certificates page showed it as a separate ACME entry. Now hosts covered by
an existing wildcard cert are attributed to that cert's "Used by" list instead.

Closes #110

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
2026-04-18 12:10:17 +02:00

63 lines
2.4 KiB
TypeScript
Raw Blame History

import { describe, it, expect } from 'vitest';
import { isDomainCoveredByWildcard, isDomainCoveredByCert } from '@/src/lib/cert-domain-match';
describe('isDomainCoveredByWildcard', () => {
it('wildcard *.example.com covers sub.example.com', () => {
expect(isDomainCoveredByWildcard('sub.example.com', ['*.example.com'])).toBe(true);
});
it('wildcard *.example.com does not cover example.com itself', () => {
expect(isDomainCoveredByWildcard('example.com', ['*.example.com'])).toBe(false);
});
it('wildcard *.example.com does not cover deep subdomain sub.sub.example.com', () => {
expect(isDomainCoveredByWildcard('sub.sub.example.com', ['*.example.com'])).toBe(false);
});
it('wildcard *.example.com does not cover unrelated.com', () => {
expect(isDomainCoveredByWildcard('unrelated.com', ['*.example.com'])).toBe(false);
});
it('returns false when no wildcards present', () => {
expect(isDomainCoveredByWildcard('sub.example.com', ['example.com', 'other.com'])).toBe(false);
});
it('wildcard *.domain.de covers app.domain.de', () => {
expect(isDomainCoveredByWildcard('app.domain.de', ['*.domain.de'])).toBe(true);
});
it('does not match partial suffix (notexample.com)', () => {
expect(isDomainCoveredByWildcard('notexample.com', ['*.example.com'])).toBe(false);
});
});
describe('isDomainCoveredByCert', () => {
const certDomains = ['domain.de', '*.domain.de'];
it('exact match: domain.de is covered', () => {
expect(isDomainCoveredByCert('domain.de', certDomains)).toBe(true);
});
it('wildcard match: sub.domain.de is covered', () => {
expect(isDomainCoveredByCert('sub.domain.de', certDomains)).toBe(true);
});
it('deep subdomain: a.b.domain.de is NOT covered', () => {
expect(isDomainCoveredByCert('a.b.domain.de', certDomains)).toBe(false);
});
it('unrelated domain is NOT covered', () => {
expect(isDomainCoveredByCert('other.com', certDomains)).toBe(false);
});
it('works with only wildcard (no explicit base)', () => {
expect(isDomainCoveredByCert('sub.example.com', ['*.example.com'])).toBe(true);
expect(isDomainCoveredByCert('example.com', ['*.example.com'])).toBe(false);
});
it('works with only explicit domain (no wildcard)', () => {
expect(isDomainCoveredByCert('example.com', ['example.com'])).toBe(true);
expect(isDomainCoveredByCert('sub.example.com', ['example.com'])).toBe(false);
});
});
Reference in New Issue View Git Blame Copy Permalink