Additional default security scan permitted patterns.

Lombiq · Jan 24, 2025 · 234ecbb · 234ecbb
1 parent a66af27
commit 234ecbb
Showing 1 changed file with 5 additions and 0 deletions.
diff --git a/Lombiq.Tests.UI/SecurityScanning/OrchardCoreUITestExecutorConfigurationExtensions.cs b/Lombiq.Tests.UI/SecurityScanning/OrchardCoreUITestExecutorConfigurationExtensions.cs
@@ -58,6 +58,11 @@ public static Func<IWebApplicationInstance, Task> CreateAppLogAssertionForSecuri
             // Thrown from Microsoft.AspNetCore.Authentication.AuthenticationService.ChallengeAsync() when ZAP sends
             // invalid authentication challenges.
             "System.InvalidOperationException: No authentication handler is registered for the scheme",
+            // This error is generated when testing the error page is enabled. It is expected.
+            "System.InvalidOperationException: This action intentionally causes an exception!",
+            // If the middleware is enabled, logs like this are emitted next to every exception even if they are
+            // already suppressed by one of these patterns.
+            "Lombiq.Tests.UI.Shortcuts.Middlewares.ExceptionContextLoggingMiddleware: HTTP request when the exception",
         };
 
         permittedErrorLinePatterns.AddRange(additionalPermittedErrorLinePatterns);