@@ -53,7 +53,7 @@ module Webrat def authenticity_token return unless onclick && onclick.include?("s.setAttribute('name', 'authenticity_token');") && - onclick =~ /s\.setAttribute\('value', '([a-f0-9]{40})'\);/ + ( onclick =~ /s\.setAttribute\('value', '([a-f0-9]{40})'\);/ || onclick =~ /s\.setAttribute\('value', '(.{44})'\);/ ) $LAST_MATCH_INFO.captures.first end lib/webrat/core/elements/link.rb @@ -143,6 +143,27 @@ describe "click_link" do webrat_session.should_receive(:post).with("/posts", "authenticity_token" => "aa79cb354597a60a3786e7e291ed4f74d77d3a62") click_link "Posts" end + + it "should click rails 2.3.4 javascript links with authenticity tokens" do + with_html <<-HTML + <html> + <a href="/posts" onclick="var f = document.createElement('form'); + f.style.display = 'none'; + this.parentNode.appendChild(f); + f.method = 'POST'; + f.action = this.href; + var s = document.createElement('input'); + s.setAttribute('type', 'hidden'); + s.setAttribute('name', 'authenticity_token'); + s.setAttribute('value', 'aa79cb354597a60a3786e7e291ed4f74d77d3a62=/$a'); + f.appendChild(s); + f.submit(); + return false;">Posts</a> + </html> + HTML + webrat_session.should_receive(:post).with("/posts", "authenticity_token" => "aa79cb354597a60a3786e7e291ed4f74d77d3a62=/$a") + click_link "Posts" + end it "should click rails javascript delete links" do with_html <<-HTML spec/public/click_link_spec.rb f51b745e89b316f06cecf19afeccc5475419b92e Jonathan Weiss jw@innerewut.de http://github.com/jweiss/webrat/commit/96f2f34518d2c4333fe9773cd019f41fa15292c1 96f2f34518d2c4333fe9773cd019f41fa15292c1 2009-11-09T08:32:46-08:00 2009-11-09T08:32:46-08:00 add support for Rails 2.3.4 form authenticity tokens 057d6ab7c53878ec5442899da163b2124c7feafc Jonathan Weiss jw@innerewut.de