#2172 new

Functional tests return HTTP 200 for not found resources

Reported by santos | April 30th, 2018 @ 06:48 PM




Ubuntu 16.04.4 LTS, Java 1.8.0_171-b11


When testing a not found resource via a functional test, HTTP 200 is returned instead of HTTP 404.


  1. play new example
  2. cd example
  3. In method testThatIndexPageWorks of class test/ApplicationTest.java, replace
Response response = GET("/");


Response response = GET("/notfound");
  1. play test
  2. Open a browser at http://localhost:9000/@tests?select=ApplicationTest.class
  3. Press the “Start !” button

The test fails with:

Failure, Response status expected:<404> but was:<200>.


In method makeRequest of class FunctionalTest, if the action resolution fails the thrown NotFound result is not applied to the response, which remains unchanged with its status set to 200, making unavailable resources seem available to functional tests.

No comments found

Please Sign in or create a free account to add a new ticket.

With your very own profile, you can contribute to projects, track your activity, watch tickets, receive and update tickets through your email and much more.

New-ticket Create new ticket

Create your profile

Help contribute to this project by taking a few moments to create your personal profile. Create your profile »

<h2>Play framework</h2>

Play makes it easier to build Web applications with Java. It is a clean alternative to bloated Enterprise Java stacks. It focuses on developer productivity and targets RESTful architectures. Learn more on the <a href="http://www.playframework.org">http://www.playframework.org</a> website.<br><br>

<h2>Source code is hosted on github</h2>Check out our repository at <a href="http://github.com/playframework/play">http://github.com/playframework/play</a><br><br>

<h2>Contributing, creating a patch</h2> Please read the <a href="http://play.lighthouseapp.com/projects/57987/contributor-guide">contributor guide</a><br><br>

<h2>Reporting Security Vulnerabilities</h2> Since all bug reports are public, please report any security vulnerability directly to <em>guillaume dot bort at gmail dot com</em>.<br><br>

<h2>Creating a bug report</h2> Bug reports are incredibly helpful, so take time to report bugs and request features in our ticket tracker. We’re always grateful for patches to Play’s code. Indeed, bug reports with attached patches will get fixed far quickly than those without any.<br><br>

Please include as much relevant information as possible including the exact framework version you're using and a code snippet that reproduces the problem.<br><br>

Don't have too much expectations. Unless the bug is really a serious "everything is broken" thing, you're creating a ticket to start a discussion. Having a patch (or a branch on Github we can pull from) is better, but then again we'll only pull high quality branches that make sense to be in the core of Play.