2019-07-20 10:26:52 +00:00
|
|
|
package api_test
|
|
|
|
|
|
|
|
import (
|
2019-07-26 09:34:44 +00:00
|
|
|
"bytes"
|
|
|
|
"encoding/json"
|
|
|
|
"fmt"
|
|
|
|
"net"
|
2019-07-20 10:26:52 +00:00
|
|
|
"net/http"
|
2019-07-26 09:34:44 +00:00
|
|
|
"net/http/httptest"
|
|
|
|
"os"
|
2019-07-20 10:26:52 +00:00
|
|
|
"path/filepath"
|
|
|
|
"runtime"
|
2019-07-26 09:34:44 +00:00
|
|
|
"strconv"
|
2019-07-20 10:26:52 +00:00
|
|
|
"testing"
|
2019-07-26 09:34:44 +00:00
|
|
|
"time"
|
|
|
|
|
|
|
|
"github.com/go-chi/render"
|
|
|
|
_ "github.com/go-sql-driver/mysql"
|
|
|
|
_ "github.com/lib/pq"
|
|
|
|
_ "github.com/mattn/go-sqlite3"
|
|
|
|
"github.com/rs/zerolog"
|
2019-07-20 10:26:52 +00:00
|
|
|
|
|
|
|
"github.com/drakkan/sftpgo/api"
|
2019-07-26 09:34:44 +00:00
|
|
|
"github.com/drakkan/sftpgo/config"
|
2019-07-20 10:26:52 +00:00
|
|
|
"github.com/drakkan/sftpgo/dataprovider"
|
2019-07-26 09:34:44 +00:00
|
|
|
"github.com/drakkan/sftpgo/logger"
|
|
|
|
"github.com/drakkan/sftpgo/sftpd"
|
2019-07-20 10:26:52 +00:00
|
|
|
)
|
|
|
|
|
|
|
|
const (
|
2019-07-26 09:34:44 +00:00
|
|
|
defaultUsername = "test_user"
|
|
|
|
defaultPassword = "test_password"
|
|
|
|
testPubKey = "ssh-rsa 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 nicola@p1"
|
|
|
|
logSender = "APITesting"
|
|
|
|
userPath = "/api/v1/user"
|
|
|
|
activeConnectionsPath = "/api/v1/sftp_connection"
|
|
|
|
quotaScanPath = "/api/v1/quota_scan"
|
2019-07-20 10:26:52 +00:00
|
|
|
)
|
|
|
|
|
|
|
|
var (
|
|
|
|
defaultPerms = []string{dataprovider.PermAny}
|
|
|
|
homeBasePath string
|
2019-07-26 09:34:44 +00:00
|
|
|
testServer *httptest.Server
|
2019-07-20 10:26:52 +00:00
|
|
|
)
|
|
|
|
|
2019-07-26 09:34:44 +00:00
|
|
|
func TestMain(m *testing.M) {
|
2019-07-20 10:26:52 +00:00
|
|
|
if runtime.GOOS == "windows" {
|
|
|
|
homeBasePath = "C:\\"
|
|
|
|
} else {
|
|
|
|
homeBasePath = "/tmp"
|
|
|
|
}
|
2019-07-26 09:34:44 +00:00
|
|
|
configDir := ".."
|
|
|
|
logfilePath := filepath.Join(configDir, "sftpgo_api_test.log")
|
|
|
|
confName := "sftpgo.conf"
|
2019-07-31 12:11:44 +00:00
|
|
|
logger.InitLogger(logfilePath, 5, 1, 28, false, zerolog.DebugLevel)
|
2019-07-26 09:34:44 +00:00
|
|
|
configFilePath := filepath.Join(configDir, confName)
|
|
|
|
config.LoadConfig(configFilePath)
|
|
|
|
providerConf := config.GetProviderConf()
|
|
|
|
|
|
|
|
err := dataprovider.Initialize(providerConf, configDir)
|
|
|
|
if err != nil {
|
|
|
|
logger.Warn(logSender, "error initializing data provider: %v", err)
|
|
|
|
os.Exit(1)
|
|
|
|
}
|
|
|
|
dataProvider := dataprovider.GetProvider()
|
|
|
|
httpdConf := config.GetHTTPDConfig()
|
|
|
|
router := api.GetHTTPRouter()
|
|
|
|
|
|
|
|
httpdConf.BindPort = 8081
|
|
|
|
api.SetBaseURL("http://127.0.0.1:8081")
|
|
|
|
|
|
|
|
sftpd.SetDataProvider(dataProvider)
|
|
|
|
api.SetDataProvider(dataProvider)
|
|
|
|
|
|
|
|
go func() {
|
|
|
|
logger.Debug(logSender, "initializing HTTP server with config %+v", httpdConf)
|
|
|
|
s := &http.Server{
|
|
|
|
Addr: fmt.Sprintf("%s:%d", httpdConf.BindAddress, httpdConf.BindPort),
|
|
|
|
Handler: router,
|
|
|
|
ReadTimeout: 300 * time.Second,
|
|
|
|
WriteTimeout: 300 * time.Second,
|
|
|
|
MaxHeaderBytes: 1 << 20, // 1MB
|
|
|
|
}
|
|
|
|
if err := s.ListenAndServe(); err != nil {
|
|
|
|
logger.Error(logSender, "could not start HTTP server: %v", err)
|
|
|
|
}
|
|
|
|
}()
|
|
|
|
|
|
|
|
testServer = httptest.NewServer(api.GetHTTPRouter())
|
|
|
|
defer testServer.Close()
|
|
|
|
|
|
|
|
waitTCPListening(fmt.Sprintf("%s:%d", httpdConf.BindAddress, httpdConf.BindPort))
|
|
|
|
|
|
|
|
exitCode := m.Run()
|
|
|
|
os.Remove(logfilePath)
|
|
|
|
os.Exit(exitCode)
|
|
|
|
}
|
|
|
|
|
2019-07-20 10:26:52 +00:00
|
|
|
func TestBasicUserHandling(t *testing.T) {
|
|
|
|
user, err := api.AddUser(getTestUser(), http.StatusOK)
|
|
|
|
if err != nil {
|
|
|
|
t.Errorf("unable to add user: %v", err)
|
|
|
|
}
|
|
|
|
user.MaxSessions = 10
|
|
|
|
user.QuotaSize = 4096
|
|
|
|
user.QuotaFiles = 2
|
|
|
|
user.UploadBandwidth = 128
|
|
|
|
user.DownloadBandwidth = 64
|
|
|
|
user, err = api.UpdateUser(user, http.StatusOK)
|
|
|
|
if err != nil {
|
|
|
|
t.Errorf("unable to update user: %v", err)
|
|
|
|
}
|
|
|
|
users, err := api.GetUsers(0, 0, defaultUsername, http.StatusOK)
|
|
|
|
if err != nil {
|
|
|
|
t.Errorf("unable to get users: %v", err)
|
|
|
|
}
|
|
|
|
if len(users) != 1 {
|
|
|
|
t.Errorf("number of users mismatch, expected: 1, actual: %v", len(users))
|
|
|
|
}
|
|
|
|
err = api.RemoveUser(user, http.StatusOK)
|
|
|
|
if err != nil {
|
|
|
|
t.Errorf("unable to remove: %v", err)
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
func TestAddUserNoCredentials(t *testing.T) {
|
|
|
|
u := getTestUser()
|
|
|
|
u.Password = ""
|
2019-08-01 20:42:46 +00:00
|
|
|
u.PublicKey = []string{}
|
2019-07-20 10:26:52 +00:00
|
|
|
_, err := api.AddUser(u, http.StatusBadRequest)
|
|
|
|
if err != nil {
|
|
|
|
t.Errorf("unexpected error adding user with no credentials: %v", err)
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
func TestAddUserNoUsername(t *testing.T) {
|
|
|
|
u := getTestUser()
|
|
|
|
u.Username = ""
|
|
|
|
_, err := api.AddUser(u, http.StatusBadRequest)
|
|
|
|
if err != nil {
|
|
|
|
t.Errorf("unexpected error adding user with no home dir: %v", err)
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
func TestAddUserNoHomeDir(t *testing.T) {
|
|
|
|
u := getTestUser()
|
|
|
|
u.HomeDir = ""
|
|
|
|
_, err := api.AddUser(u, http.StatusBadRequest)
|
|
|
|
if err != nil {
|
|
|
|
t.Errorf("unexpected error adding user with no home dir: %v", err)
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
func TestAddUserInvalidHomeDir(t *testing.T) {
|
|
|
|
u := getTestUser()
|
|
|
|
u.HomeDir = "relative_path"
|
|
|
|
_, err := api.AddUser(u, http.StatusBadRequest)
|
|
|
|
if err != nil {
|
|
|
|
t.Errorf("unexpected error adding user with invalid home dir: %v", err)
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
func TestAddUserNoPerms(t *testing.T) {
|
|
|
|
u := getTestUser()
|
|
|
|
u.Permissions = []string{}
|
|
|
|
_, err := api.AddUser(u, http.StatusBadRequest)
|
|
|
|
if err != nil {
|
|
|
|
t.Errorf("unexpected error adding user with no perms: %v", err)
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
func TestAddUserInvalidPerms(t *testing.T) {
|
|
|
|
u := getTestUser()
|
|
|
|
u.Permissions = []string{"invalidPerm"}
|
|
|
|
_, err := api.AddUser(u, http.StatusBadRequest)
|
|
|
|
if err != nil {
|
|
|
|
t.Errorf("unexpected error adding user with no perms: %v", err)
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2019-07-31 15:06:12 +00:00
|
|
|
func TestUserPublicKey(t *testing.T) {
|
|
|
|
u := getTestUser()
|
|
|
|
invalidPubKey := "invalid"
|
|
|
|
validPubKey := "ssh-rsa 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 nicola@p1"
|
2019-08-01 20:42:46 +00:00
|
|
|
u.PublicKey = []string{invalidPubKey}
|
2019-07-31 15:06:12 +00:00
|
|
|
_, err := api.AddUser(u, http.StatusBadRequest)
|
|
|
|
if err != nil {
|
|
|
|
t.Errorf("unexpected error adding user with invalid pub key: %v", err)
|
|
|
|
}
|
2019-08-01 20:42:46 +00:00
|
|
|
u.PublicKey = []string{validPubKey}
|
2019-07-31 15:06:12 +00:00
|
|
|
user, err := api.AddUser(u, http.StatusOK)
|
|
|
|
if err != nil {
|
|
|
|
t.Errorf("unable to add user: %v", err)
|
|
|
|
}
|
2019-08-01 20:42:46 +00:00
|
|
|
user.PublicKey = []string{validPubKey, invalidPubKey}
|
2019-07-31 15:06:12 +00:00
|
|
|
_, err = api.UpdateUser(user, http.StatusBadRequest)
|
|
|
|
if err != nil {
|
|
|
|
t.Errorf("update user with invalid public key must fail: %v", err)
|
|
|
|
}
|
2019-08-01 20:42:46 +00:00
|
|
|
user.PublicKey = []string{validPubKey, validPubKey, validPubKey}
|
2019-07-31 15:06:12 +00:00
|
|
|
_, err = api.UpdateUser(user, http.StatusOK)
|
|
|
|
if err != nil {
|
|
|
|
t.Errorf("unable to update user: %v", err)
|
|
|
|
}
|
|
|
|
err = api.RemoveUser(user, http.StatusOK)
|
|
|
|
if err != nil {
|
|
|
|
t.Errorf("unable to remove: %v", err)
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2019-07-20 10:26:52 +00:00
|
|
|
func TestUpdateUser(t *testing.T) {
|
|
|
|
user, err := api.AddUser(getTestUser(), http.StatusOK)
|
|
|
|
if err != nil {
|
|
|
|
t.Errorf("unable to add user: %v", err)
|
|
|
|
}
|
|
|
|
user.HomeDir = filepath.Join(homeBasePath, "testmod")
|
|
|
|
user.UID = 33
|
|
|
|
user.GID = 101
|
|
|
|
user.MaxSessions = 10
|
|
|
|
user.QuotaSize = 4096
|
|
|
|
user.QuotaFiles = 2
|
|
|
|
user.Permissions = []string{dataprovider.PermCreateDirs, dataprovider.PermDelete, dataprovider.PermDownload}
|
|
|
|
user.UploadBandwidth = 1024
|
|
|
|
user.DownloadBandwidth = 512
|
|
|
|
user, err = api.UpdateUser(user, http.StatusOK)
|
|
|
|
if err != nil {
|
|
|
|
t.Errorf("unable to update user: %v", err)
|
|
|
|
}
|
|
|
|
err = api.RemoveUser(user, http.StatusOK)
|
|
|
|
if err != nil {
|
|
|
|
t.Errorf("unable to remove: %v", err)
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
func TestUpdateUserNoCredentials(t *testing.T) {
|
|
|
|
user, err := api.AddUser(getTestUser(), http.StatusOK)
|
|
|
|
if err != nil {
|
|
|
|
t.Errorf("unable to add user: %v", err)
|
|
|
|
}
|
|
|
|
user.Password = ""
|
2019-08-01 20:42:46 +00:00
|
|
|
user.PublicKey = []string{}
|
2019-07-20 19:17:53 +00:00
|
|
|
// password and public key will be omitted from json serialization if empty and so they will remain unchanged
|
2019-07-20 10:26:52 +00:00
|
|
|
// and no validation error will be raised
|
|
|
|
_, err = api.UpdateUser(user, http.StatusOK)
|
|
|
|
if err != nil {
|
|
|
|
t.Errorf("unexpected error updating user with no credentials: %v", err)
|
|
|
|
}
|
|
|
|
err = api.RemoveUser(user, http.StatusOK)
|
|
|
|
if err != nil {
|
|
|
|
t.Errorf("unable to remove: %v", err)
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
func TestUpdateUserEmptyHomeDir(t *testing.T) {
|
|
|
|
user, err := api.AddUser(getTestUser(), http.StatusOK)
|
|
|
|
if err != nil {
|
|
|
|
t.Errorf("unable to add user: %v", err)
|
|
|
|
}
|
|
|
|
user.HomeDir = ""
|
|
|
|
_, err = api.UpdateUser(user, http.StatusBadRequest)
|
|
|
|
if err != nil {
|
|
|
|
t.Errorf("unexpected error updating user with empty home dir: %v", err)
|
|
|
|
}
|
|
|
|
err = api.RemoveUser(user, http.StatusOK)
|
|
|
|
if err != nil {
|
|
|
|
t.Errorf("unable to remove: %v", err)
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
func TestUpdateUserInvalidHomeDir(t *testing.T) {
|
|
|
|
user, err := api.AddUser(getTestUser(), http.StatusOK)
|
|
|
|
if err != nil {
|
|
|
|
t.Errorf("unable to add user: %v", err)
|
|
|
|
}
|
|
|
|
user.HomeDir = "relative_path"
|
|
|
|
_, err = api.UpdateUser(user, http.StatusBadRequest)
|
|
|
|
if err != nil {
|
|
|
|
t.Errorf("unexpected error updating user with empty home dir: %v", err)
|
|
|
|
}
|
|
|
|
err = api.RemoveUser(user, http.StatusOK)
|
|
|
|
if err != nil {
|
|
|
|
t.Errorf("unable to remove: %v", err)
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
func TestUpdateNonExistentUser(t *testing.T) {
|
|
|
|
_, err := api.UpdateUser(getTestUser(), http.StatusNotFound)
|
|
|
|
if err != nil {
|
|
|
|
t.Errorf("unable to update user: %v", err)
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
func TestGetNonExistentUser(t *testing.T) {
|
|
|
|
_, err := api.GetUserByID(0, http.StatusNotFound)
|
|
|
|
if err != nil {
|
|
|
|
t.Errorf("unable to get user: %v", err)
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
func TestDeleteNonExistentUser(t *testing.T) {
|
|
|
|
err := api.RemoveUser(getTestUser(), http.StatusNotFound)
|
|
|
|
if err != nil {
|
|
|
|
t.Errorf("unable to remove user: %v", err)
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
func TestAddDuplicateUser(t *testing.T) {
|
|
|
|
user, err := api.AddUser(getTestUser(), http.StatusOK)
|
|
|
|
if err != nil {
|
|
|
|
t.Errorf("unable to add user: %v", err)
|
|
|
|
}
|
|
|
|
_, err = api.AddUser(getTestUser(), http.StatusInternalServerError)
|
|
|
|
if err != nil {
|
|
|
|
t.Errorf("unable to add second user: %v", err)
|
|
|
|
}
|
|
|
|
err = api.RemoveUser(user, http.StatusOK)
|
|
|
|
if err != nil {
|
|
|
|
t.Errorf("unable to remove user: %v", err)
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
func TestGetUsers(t *testing.T) {
|
|
|
|
user1, err := api.AddUser(getTestUser(), http.StatusOK)
|
|
|
|
if err != nil {
|
|
|
|
t.Errorf("unable to add user: %v", err)
|
|
|
|
}
|
|
|
|
u := getTestUser()
|
|
|
|
u.Username = defaultUsername + "1"
|
|
|
|
user2, err := api.AddUser(u, http.StatusOK)
|
|
|
|
if err != nil {
|
|
|
|
t.Errorf("unable to add second user: %v", err)
|
|
|
|
}
|
|
|
|
users, err := api.GetUsers(0, 0, "", http.StatusOK)
|
|
|
|
if err != nil {
|
|
|
|
t.Errorf("unable to get users: %v", err)
|
|
|
|
}
|
|
|
|
if len(users) < 2 {
|
|
|
|
t.Errorf("at least 2 users are expected")
|
|
|
|
}
|
|
|
|
users, err = api.GetUsers(1, 0, "", http.StatusOK)
|
2019-07-20 19:17:53 +00:00
|
|
|
if err != nil {
|
|
|
|
t.Errorf("unable to get users: %v", err)
|
|
|
|
}
|
2019-07-20 10:26:52 +00:00
|
|
|
if len(users) != 1 {
|
2019-07-26 09:34:44 +00:00
|
|
|
t.Errorf("1 user is expected")
|
2019-07-20 10:26:52 +00:00
|
|
|
}
|
|
|
|
users, err = api.GetUsers(1, 1, "", http.StatusOK)
|
2019-07-20 19:17:53 +00:00
|
|
|
if err != nil {
|
|
|
|
t.Errorf("unable to get users: %v", err)
|
|
|
|
}
|
2019-07-20 10:26:52 +00:00
|
|
|
if len(users) != 1 {
|
2019-07-26 09:34:44 +00:00
|
|
|
t.Errorf("1 user is expected")
|
2019-07-20 10:26:52 +00:00
|
|
|
}
|
|
|
|
err = api.RemoveUser(user1, http.StatusOK)
|
|
|
|
if err != nil {
|
|
|
|
t.Errorf("unable to remove user: %v", err)
|
|
|
|
}
|
|
|
|
err = api.RemoveUser(user2, http.StatusOK)
|
|
|
|
if err != nil {
|
|
|
|
t.Errorf("unable to remove user: %v", err)
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
func TestGetQuotaScans(t *testing.T) {
|
|
|
|
_, err := api.GetQuotaScans(http.StatusOK)
|
|
|
|
if err != nil {
|
|
|
|
t.Errorf("unable to get quota scans: %v", err)
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
func TestStartQuotaScan(t *testing.T) {
|
|
|
|
user, err := api.AddUser(getTestUser(), http.StatusOK)
|
|
|
|
if err != nil {
|
|
|
|
t.Errorf("unable to add user: %v", err)
|
|
|
|
}
|
|
|
|
err = api.StartQuotaScan(user, http.StatusCreated)
|
|
|
|
if err != nil {
|
|
|
|
t.Errorf("unable to start quota scan: %v", err)
|
|
|
|
}
|
|
|
|
err = api.RemoveUser(user, http.StatusOK)
|
|
|
|
if err != nil {
|
|
|
|
t.Errorf("unable to remove user: %v", err)
|
|
|
|
}
|
|
|
|
}
|
2019-07-26 09:34:44 +00:00
|
|
|
|
2019-08-03 11:19:00 +00:00
|
|
|
func TestGetSFTPConnections(t *testing.T) {
|
|
|
|
_, err := api.GetSFTPConnections(http.StatusOK)
|
|
|
|
if err != nil {
|
|
|
|
t.Errorf("unable to get sftp connections: %v", err)
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
func TestCloseActiveSFTPConnection(t *testing.T) {
|
|
|
|
err := api.CloseSFTPConnection("non_existent_id", http.StatusNotFound)
|
|
|
|
if err != nil {
|
|
|
|
t.Errorf("unexpected error closing non existent sftp connection: %v", err)
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2019-07-26 09:34:44 +00:00
|
|
|
// test using mock http server
|
|
|
|
|
|
|
|
func TestBasicUserHandlingMock(t *testing.T) {
|
|
|
|
user := getTestUser()
|
|
|
|
userAsJSON := getUserAsJSON(t, user)
|
|
|
|
req, _ := http.NewRequest(http.MethodPost, userPath, bytes.NewBuffer(userAsJSON))
|
|
|
|
rr := executeRequest(req)
|
|
|
|
checkResponseCode(t, http.StatusOK, rr.Code)
|
|
|
|
err := render.DecodeJSON(rr.Body, &user)
|
|
|
|
if err != nil {
|
|
|
|
t.Errorf("Error get user: %v", err)
|
|
|
|
}
|
|
|
|
req, _ = http.NewRequest(http.MethodPost, userPath, bytes.NewBuffer(userAsJSON))
|
|
|
|
rr = executeRequest(req)
|
|
|
|
checkResponseCode(t, http.StatusInternalServerError, rr.Code)
|
|
|
|
user.MaxSessions = 10
|
|
|
|
user.UploadBandwidth = 128
|
|
|
|
userAsJSON = getUserAsJSON(t, user)
|
|
|
|
req, _ = http.NewRequest(http.MethodPut, userPath+"/"+strconv.FormatInt(user.ID, 10), bytes.NewBuffer(userAsJSON))
|
|
|
|
rr = executeRequest(req)
|
|
|
|
checkResponseCode(t, http.StatusOK, rr.Code)
|
|
|
|
|
|
|
|
req, _ = http.NewRequest(http.MethodGet, userPath+"/"+strconv.FormatInt(user.ID, 10), nil)
|
|
|
|
rr = executeRequest(req)
|
|
|
|
checkResponseCode(t, http.StatusOK, rr.Code)
|
|
|
|
|
|
|
|
var updatedUser dataprovider.User
|
|
|
|
err = render.DecodeJSON(rr.Body, &updatedUser)
|
|
|
|
if err != nil {
|
|
|
|
t.Errorf("Error decoding updated user: %v", err)
|
|
|
|
}
|
|
|
|
if user.MaxSessions != updatedUser.MaxSessions || user.UploadBandwidth != updatedUser.UploadBandwidth {
|
|
|
|
t.Errorf("Error modifying user actual: %v, %v", updatedUser.MaxSessions, updatedUser.UploadBandwidth)
|
|
|
|
}
|
|
|
|
req, _ = http.NewRequest(http.MethodDelete, userPath+"/"+strconv.FormatInt(user.ID, 10), nil)
|
|
|
|
rr = executeRequest(req)
|
|
|
|
checkResponseCode(t, http.StatusOK, rr.Code)
|
|
|
|
}
|
|
|
|
|
|
|
|
func TestGetUserByIdInvalidParamsMock(t *testing.T) {
|
|
|
|
req, _ := http.NewRequest(http.MethodGet, userPath+"/0", nil)
|
|
|
|
rr := executeRequest(req)
|
|
|
|
checkResponseCode(t, http.StatusNotFound, rr.Code)
|
|
|
|
req, _ = http.NewRequest(http.MethodGet, userPath+"/a", nil)
|
|
|
|
rr = executeRequest(req)
|
|
|
|
checkResponseCode(t, http.StatusBadRequest, rr.Code)
|
|
|
|
}
|
|
|
|
|
|
|
|
func TestAddUserNoUsernameMock(t *testing.T) {
|
|
|
|
user := getTestUser()
|
|
|
|
user.Username = ""
|
|
|
|
userAsJSON := getUserAsJSON(t, user)
|
|
|
|
req, _ := http.NewRequest(http.MethodPost, userPath, bytes.NewBuffer(userAsJSON))
|
|
|
|
rr := executeRequest(req)
|
|
|
|
checkResponseCode(t, http.StatusBadRequest, rr.Code)
|
|
|
|
}
|
|
|
|
|
|
|
|
func TestAddUserInvalidHomeDirMock(t *testing.T) {
|
|
|
|
user := getTestUser()
|
|
|
|
user.HomeDir = "relative_path"
|
|
|
|
userAsJSON := getUserAsJSON(t, user)
|
|
|
|
req, _ := http.NewRequest(http.MethodPost, userPath, bytes.NewBuffer(userAsJSON))
|
|
|
|
rr := executeRequest(req)
|
|
|
|
checkResponseCode(t, http.StatusBadRequest, rr.Code)
|
|
|
|
}
|
|
|
|
|
|
|
|
func TestAddUserInvalidPermsMock(t *testing.T) {
|
|
|
|
user := getTestUser()
|
|
|
|
user.Permissions = []string{}
|
|
|
|
userAsJSON := getUserAsJSON(t, user)
|
|
|
|
req, _ := http.NewRequest(http.MethodPost, userPath, bytes.NewBuffer(userAsJSON))
|
|
|
|
rr := executeRequest(req)
|
|
|
|
checkResponseCode(t, http.StatusBadRequest, rr.Code)
|
|
|
|
}
|
|
|
|
|
|
|
|
func TestAddUserInvalidJsonMock(t *testing.T) {
|
|
|
|
req, _ := http.NewRequest(http.MethodPost, userPath, bytes.NewBuffer([]byte("invalid json")))
|
|
|
|
rr := executeRequest(req)
|
|
|
|
checkResponseCode(t, http.StatusBadRequest, rr.Code)
|
|
|
|
}
|
|
|
|
|
|
|
|
func TestUpdateUserInvalidJsonMock(t *testing.T) {
|
|
|
|
user := getTestUser()
|
|
|
|
userAsJSON := getUserAsJSON(t, user)
|
|
|
|
req, _ := http.NewRequest(http.MethodPost, userPath, bytes.NewBuffer(userAsJSON))
|
|
|
|
rr := executeRequest(req)
|
|
|
|
checkResponseCode(t, http.StatusOK, rr.Code)
|
|
|
|
err := render.DecodeJSON(rr.Body, &user)
|
|
|
|
if err != nil {
|
|
|
|
t.Errorf("Error get user: %v", err)
|
|
|
|
}
|
|
|
|
req, _ = http.NewRequest(http.MethodPut, userPath+"/"+strconv.FormatInt(user.ID, 10), bytes.NewBuffer([]byte("Invalid json")))
|
|
|
|
rr = executeRequest(req)
|
|
|
|
checkResponseCode(t, http.StatusBadRequest, rr.Code)
|
|
|
|
req, _ = http.NewRequest(http.MethodDelete, userPath+"/"+strconv.FormatInt(user.ID, 10), nil)
|
|
|
|
rr = executeRequest(req)
|
|
|
|
checkResponseCode(t, http.StatusOK, rr.Code)
|
|
|
|
}
|
|
|
|
|
|
|
|
func TestUpdateUserInvalidParamsMock(t *testing.T) {
|
|
|
|
user := getTestUser()
|
|
|
|
userAsJSON := getUserAsJSON(t, user)
|
|
|
|
req, _ := http.NewRequest(http.MethodPost, userPath, bytes.NewBuffer(userAsJSON))
|
|
|
|
rr := executeRequest(req)
|
|
|
|
checkResponseCode(t, http.StatusOK, rr.Code)
|
|
|
|
err := render.DecodeJSON(rr.Body, &user)
|
|
|
|
if err != nil {
|
|
|
|
t.Errorf("Error get user: %v", err)
|
|
|
|
}
|
|
|
|
user.HomeDir = ""
|
|
|
|
userAsJSON = getUserAsJSON(t, user)
|
|
|
|
req, _ = http.NewRequest(http.MethodPut, userPath+"/"+strconv.FormatInt(user.ID, 10), bytes.NewBuffer(userAsJSON))
|
|
|
|
rr = executeRequest(req)
|
|
|
|
checkResponseCode(t, http.StatusBadRequest, rr.Code)
|
|
|
|
userID := user.ID
|
|
|
|
user.ID = 0
|
|
|
|
userAsJSON = getUserAsJSON(t, user)
|
|
|
|
req, _ = http.NewRequest(http.MethodPut, userPath+"/"+strconv.FormatInt(userID, 10), bytes.NewBuffer(userAsJSON))
|
|
|
|
rr = executeRequest(req)
|
|
|
|
checkResponseCode(t, http.StatusBadRequest, rr.Code)
|
|
|
|
user.ID = userID
|
|
|
|
req, _ = http.NewRequest(http.MethodPut, userPath+"/0", bytes.NewBuffer(userAsJSON))
|
|
|
|
rr = executeRequest(req)
|
|
|
|
checkResponseCode(t, http.StatusNotFound, rr.Code)
|
|
|
|
req, _ = http.NewRequest(http.MethodPut, userPath+"/a", bytes.NewBuffer(userAsJSON))
|
|
|
|
rr = executeRequest(req)
|
|
|
|
checkResponseCode(t, http.StatusBadRequest, rr.Code)
|
|
|
|
req, _ = http.NewRequest(http.MethodDelete, userPath+"/"+strconv.FormatInt(user.ID, 10), nil)
|
|
|
|
rr = executeRequest(req)
|
|
|
|
checkResponseCode(t, http.StatusOK, rr.Code)
|
|
|
|
}
|
|
|
|
|
|
|
|
func TestGetUsersMock(t *testing.T) {
|
|
|
|
user := getTestUser()
|
|
|
|
userAsJSON := getUserAsJSON(t, user)
|
|
|
|
req, _ := http.NewRequest(http.MethodPost, userPath, bytes.NewBuffer(userAsJSON))
|
|
|
|
rr := executeRequest(req)
|
|
|
|
checkResponseCode(t, http.StatusOK, rr.Code)
|
|
|
|
err := render.DecodeJSON(rr.Body, &user)
|
|
|
|
if err != nil {
|
|
|
|
t.Errorf("Error get user: %v", err)
|
|
|
|
}
|
|
|
|
req, _ = http.NewRequest(http.MethodGet, userPath+"?limit=510&offset=0&order=ASC&username="+defaultUsername, nil)
|
|
|
|
rr = executeRequest(req)
|
|
|
|
checkResponseCode(t, http.StatusOK, rr.Code)
|
|
|
|
var users []dataprovider.User
|
|
|
|
err = render.DecodeJSON(rr.Body, &users)
|
|
|
|
if err != nil {
|
|
|
|
t.Errorf("Error decoding users: %v", err)
|
|
|
|
}
|
|
|
|
if len(users) != 1 {
|
|
|
|
t.Errorf("1 user is expected")
|
|
|
|
}
|
|
|
|
req, _ = http.NewRequest(http.MethodGet, userPath+"?limit=a&offset=0&order=ASC", nil)
|
|
|
|
rr = executeRequest(req)
|
|
|
|
checkResponseCode(t, http.StatusBadRequest, rr.Code)
|
|
|
|
req, _ = http.NewRequest(http.MethodGet, userPath+"?limit=1&offset=a&order=ASC", nil)
|
|
|
|
rr = executeRequest(req)
|
|
|
|
checkResponseCode(t, http.StatusBadRequest, rr.Code)
|
|
|
|
req, _ = http.NewRequest(http.MethodGet, userPath+"?limit=1&offset=0&order=ASCa", nil)
|
|
|
|
rr = executeRequest(req)
|
|
|
|
checkResponseCode(t, http.StatusBadRequest, rr.Code)
|
|
|
|
|
|
|
|
req, _ = http.NewRequest(http.MethodDelete, userPath+"/"+strconv.FormatInt(user.ID, 10), nil)
|
|
|
|
rr = executeRequest(req)
|
|
|
|
checkResponseCode(t, http.StatusOK, rr.Code)
|
|
|
|
}
|
|
|
|
|
|
|
|
func TestDeleteUserInvalidParamsMock(t *testing.T) {
|
|
|
|
req, _ := http.NewRequest(http.MethodDelete, userPath+"/0", nil)
|
|
|
|
rr := executeRequest(req)
|
|
|
|
checkResponseCode(t, http.StatusNotFound, rr.Code)
|
|
|
|
req, _ = http.NewRequest(http.MethodDelete, userPath+"/a", nil)
|
|
|
|
rr = executeRequest(req)
|
|
|
|
checkResponseCode(t, http.StatusBadRequest, rr.Code)
|
|
|
|
}
|
|
|
|
|
|
|
|
func TestGetQuotaScansMock(t *testing.T) {
|
|
|
|
req, err := http.NewRequest("GET", quotaScanPath, nil)
|
|
|
|
if err != nil {
|
|
|
|
t.Errorf("error get quota scan: %v", err)
|
|
|
|
}
|
|
|
|
rr := executeRequest(req)
|
|
|
|
checkResponseCode(t, http.StatusOK, rr.Code)
|
|
|
|
}
|
|
|
|
|
|
|
|
func TestStartQuotaScanMock(t *testing.T) {
|
|
|
|
user := getTestUser()
|
|
|
|
userAsJSON := getUserAsJSON(t, user)
|
|
|
|
req, _ := http.NewRequest(http.MethodPost, userPath, bytes.NewBuffer(userAsJSON))
|
|
|
|
rr := executeRequest(req)
|
|
|
|
checkResponseCode(t, http.StatusOK, rr.Code)
|
|
|
|
err := render.DecodeJSON(rr.Body, &user)
|
|
|
|
if err != nil {
|
|
|
|
t.Errorf("Error get user: %v", err)
|
|
|
|
}
|
|
|
|
_, err = os.Stat(user.HomeDir)
|
|
|
|
if err == nil {
|
|
|
|
os.Remove(user.HomeDir)
|
|
|
|
}
|
|
|
|
userAsJSON = getUserAsJSON(t, user)
|
|
|
|
req, _ = http.NewRequest(http.MethodPost, quotaScanPath, bytes.NewBuffer(userAsJSON))
|
|
|
|
rr = executeRequest(req)
|
|
|
|
checkResponseCode(t, http.StatusCreated, rr.Code)
|
|
|
|
|
|
|
|
req, _ = http.NewRequest(http.MethodGet, quotaScanPath, nil)
|
|
|
|
rr = executeRequest(req)
|
|
|
|
checkResponseCode(t, http.StatusOK, rr.Code)
|
|
|
|
var scans []sftpd.ActiveQuotaScan
|
|
|
|
err = render.DecodeJSON(rr.Body, &scans)
|
|
|
|
if err != nil {
|
|
|
|
t.Errorf("Error get active scans: %v", err)
|
|
|
|
}
|
|
|
|
for len(scans) > 0 {
|
|
|
|
req, _ = http.NewRequest(http.MethodGet, quotaScanPath, nil)
|
|
|
|
rr = executeRequest(req)
|
|
|
|
checkResponseCode(t, http.StatusOK, rr.Code)
|
|
|
|
err = render.DecodeJSON(rr.Body, &scans)
|
|
|
|
if err != nil {
|
|
|
|
t.Errorf("Error get active scans: %v", err)
|
|
|
|
break
|
|
|
|
}
|
|
|
|
}
|
|
|
|
_, err = os.Stat(user.HomeDir)
|
|
|
|
if err != nil && os.IsNotExist(err) {
|
|
|
|
os.MkdirAll(user.HomeDir, 0777)
|
|
|
|
}
|
|
|
|
req, _ = http.NewRequest(http.MethodPost, quotaScanPath, bytes.NewBuffer(userAsJSON))
|
|
|
|
rr = executeRequest(req)
|
|
|
|
checkResponseCode(t, http.StatusCreated, rr.Code)
|
|
|
|
req, _ = http.NewRequest(http.MethodDelete, userPath+"/"+strconv.FormatInt(user.ID, 10), nil)
|
|
|
|
rr = executeRequest(req)
|
|
|
|
checkResponseCode(t, http.StatusOK, rr.Code)
|
|
|
|
}
|
|
|
|
|
|
|
|
func TestStartQuotaScanBadUserMock(t *testing.T) {
|
|
|
|
user := getTestUser()
|
|
|
|
userAsJSON := getUserAsJSON(t, user)
|
|
|
|
req, _ := http.NewRequest(http.MethodPost, quotaScanPath, bytes.NewBuffer(userAsJSON))
|
|
|
|
rr := executeRequest(req)
|
|
|
|
checkResponseCode(t, http.StatusNotFound, rr.Code)
|
|
|
|
}
|
|
|
|
|
|
|
|
func TestStartQuotaScanNonExistentUserMock(t *testing.T) {
|
|
|
|
req, _ := http.NewRequest(http.MethodPost, quotaScanPath, bytes.NewBuffer([]byte("invalid json")))
|
|
|
|
rr := executeRequest(req)
|
|
|
|
checkResponseCode(t, http.StatusBadRequest, rr.Code)
|
|
|
|
}
|
|
|
|
|
|
|
|
func TestGetSFTPConnectionsMock(t *testing.T) {
|
|
|
|
req, _ := http.NewRequest(http.MethodGet, activeConnectionsPath, nil)
|
|
|
|
rr := executeRequest(req)
|
|
|
|
checkResponseCode(t, http.StatusOK, rr.Code)
|
|
|
|
}
|
|
|
|
|
|
|
|
func TestDeleteActiveConnectionMock(t *testing.T) {
|
|
|
|
req, _ := http.NewRequest(http.MethodDelete, activeConnectionsPath+"/connectionID", nil)
|
|
|
|
rr := executeRequest(req)
|
|
|
|
checkResponseCode(t, http.StatusNotFound, rr.Code)
|
|
|
|
}
|
|
|
|
|
|
|
|
func TestNotFoundMock(t *testing.T) {
|
|
|
|
req, _ := http.NewRequest(http.MethodGet, "/non/existing/path", nil)
|
|
|
|
rr := executeRequest(req)
|
|
|
|
checkResponseCode(t, http.StatusNotFound, rr.Code)
|
|
|
|
}
|
|
|
|
|
|
|
|
func TestMethodNotAllowedMock(t *testing.T) {
|
|
|
|
req, _ := http.NewRequest(http.MethodPost, activeConnectionsPath, nil)
|
|
|
|
rr := executeRequest(req)
|
|
|
|
checkResponseCode(t, http.StatusMethodNotAllowed, rr.Code)
|
|
|
|
}
|
2019-07-26 13:08:08 +00:00
|
|
|
|
|
|
|
func waitTCPListening(address string) {
|
|
|
|
for {
|
|
|
|
conn, err := net.Dial("tcp", address)
|
|
|
|
if err != nil {
|
2019-07-31 12:11:44 +00:00
|
|
|
logger.WarnToConsole("tcp server %v not listening: %v\n", address, err)
|
2019-07-26 13:08:08 +00:00
|
|
|
time.Sleep(100 * time.Millisecond)
|
|
|
|
continue
|
|
|
|
}
|
2019-07-31 12:11:44 +00:00
|
|
|
logger.InfoToConsole("tcp server %v now listening\n", address)
|
2019-07-26 13:08:08 +00:00
|
|
|
defer conn.Close()
|
|
|
|
break
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
func getTestUser() dataprovider.User {
|
|
|
|
return dataprovider.User{
|
|
|
|
Username: defaultUsername,
|
|
|
|
Password: defaultPassword,
|
|
|
|
HomeDir: filepath.Join(homeBasePath, defaultUsername),
|
|
|
|
Permissions: defaultPerms,
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
func getUserAsJSON(t *testing.T, user dataprovider.User) []byte {
|
|
|
|
json, err := json.Marshal(user)
|
|
|
|
if err != nil {
|
|
|
|
t.Errorf("error get user as json: %v", err)
|
|
|
|
return []byte("{}")
|
|
|
|
}
|
|
|
|
return json
|
|
|
|
}
|
|
|
|
|
|
|
|
func executeRequest(req *http.Request) *httptest.ResponseRecorder {
|
|
|
|
rr := httptest.NewRecorder()
|
|
|
|
testServer.Config.Handler.ServeHTTP(rr, req)
|
|
|
|
return rr
|
|
|
|
}
|
|
|
|
|
|
|
|
func checkResponseCode(t *testing.T, expected, actual int) {
|
|
|
|
if expected != actual {
|
|
|
|
t.Errorf("Expected response code %d. Got %d", expected, actual)
|
|
|
|
}
|
|
|
|
}
|