2019-10-07 16:19:01 +00:00
|
|
|
package httpd
|
2019-07-26 09:34:44 +00:00
|
|
|
|
|
|
|
import (
|
2019-08-08 19:42:07 +00:00
|
|
|
"context"
|
2019-07-26 09:34:44 +00:00
|
|
|
"fmt"
|
2019-10-09 09:48:54 +00:00
|
|
|
"html/template"
|
2020-02-03 23:08:00 +00:00
|
|
|
"io/ioutil"
|
2019-07-26 09:34:44 +00:00
|
|
|
"net/http"
|
2019-08-08 19:42:07 +00:00
|
|
|
"net/http/httptest"
|
2020-01-31 18:04:00 +00:00
|
|
|
"net/url"
|
2020-01-19 06:41:05 +00:00
|
|
|
"os"
|
2020-02-03 23:08:00 +00:00
|
|
|
"path/filepath"
|
|
|
|
"runtime"
|
2020-01-31 18:04:00 +00:00
|
|
|
"strings"
|
2019-07-26 09:34:44 +00:00
|
|
|
"testing"
|
|
|
|
|
|
|
|
"github.com/drakkan/sftpgo/dataprovider"
|
2020-01-19 06:41:05 +00:00
|
|
|
"github.com/drakkan/sftpgo/sftpd"
|
|
|
|
"github.com/drakkan/sftpgo/utils"
|
2020-02-23 10:30:26 +00:00
|
|
|
"github.com/drakkan/sftpgo/vfs"
|
2019-08-08 19:42:07 +00:00
|
|
|
"github.com/go-chi/chi"
|
2019-07-26 09:34:44 +00:00
|
|
|
)
|
|
|
|
|
2019-08-03 11:19:00 +00:00
|
|
|
const (
|
|
|
|
invalidURL = "http://foo\x7f.com/"
|
|
|
|
inactiveURL = "http://127.0.0.1:12345"
|
|
|
|
)
|
|
|
|
|
2019-07-26 09:34:44 +00:00
|
|
|
func TestGetRespStatus(t *testing.T) {
|
|
|
|
var err error
|
|
|
|
err = &dataprovider.MethodDisabledError{}
|
|
|
|
respStatus := getRespStatus(err)
|
|
|
|
if respStatus != http.StatusForbidden {
|
|
|
|
t.Errorf("wrong resp status extected: %d got: %d", http.StatusForbidden, respStatus)
|
|
|
|
}
|
|
|
|
err = fmt.Errorf("generic error")
|
|
|
|
respStatus = getRespStatus(err)
|
|
|
|
if respStatus != http.StatusInternalServerError {
|
|
|
|
t.Errorf("wrong resp status extected: %d got: %d", http.StatusInternalServerError, respStatus)
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
func TestCheckResponse(t *testing.T) {
|
2019-08-04 19:37:31 +00:00
|
|
|
err := checkResponse(http.StatusOK, http.StatusCreated)
|
2019-07-26 09:34:44 +00:00
|
|
|
if err == nil {
|
|
|
|
t.Errorf("check must fail")
|
|
|
|
}
|
2019-08-04 19:37:31 +00:00
|
|
|
err = checkResponse(http.StatusBadRequest, http.StatusBadRequest)
|
2019-07-26 09:34:44 +00:00
|
|
|
if err != nil {
|
|
|
|
t.Errorf("test must succeed, error: %v", err)
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
func TestCheckUser(t *testing.T) {
|
2019-12-30 17:37:50 +00:00
|
|
|
expected := &dataprovider.User{}
|
|
|
|
actual := &dataprovider.User{}
|
2019-07-26 09:34:44 +00:00
|
|
|
actual.Password = "password"
|
|
|
|
err := checkUser(expected, actual)
|
|
|
|
if err == nil {
|
|
|
|
t.Errorf("actual password must be nil")
|
|
|
|
}
|
|
|
|
actual.Password = ""
|
|
|
|
err = checkUser(expected, actual)
|
|
|
|
if err == nil {
|
|
|
|
t.Errorf("actual ID must be > 0")
|
|
|
|
}
|
|
|
|
expected.ID = 1
|
|
|
|
actual.ID = 2
|
|
|
|
err = checkUser(expected, actual)
|
|
|
|
if err == nil {
|
|
|
|
t.Errorf("actual ID must be equal to expected ID")
|
|
|
|
}
|
|
|
|
expected.ID = 2
|
|
|
|
actual.ID = 2
|
2019-12-25 17:20:19 +00:00
|
|
|
expected.Permissions = make(map[string][]string)
|
|
|
|
expected.Permissions["/"] = []string{dataprovider.PermCreateDirs, dataprovider.PermDelete, dataprovider.PermDownload}
|
|
|
|
actual.Permissions = make(map[string][]string)
|
2019-12-30 17:37:50 +00:00
|
|
|
err = checkUser(expected, actual)
|
|
|
|
if err == nil {
|
|
|
|
t.Errorf("Permissions are not equal")
|
|
|
|
}
|
2019-12-25 17:20:19 +00:00
|
|
|
actual.Permissions["/"] = []string{dataprovider.PermCreateDirs, dataprovider.PermCreateSymlinks}
|
2019-07-26 09:34:44 +00:00
|
|
|
err = checkUser(expected, actual)
|
|
|
|
if err == nil {
|
|
|
|
t.Errorf("Permissions are not equal")
|
|
|
|
}
|
2019-12-25 17:20:19 +00:00
|
|
|
expected.Permissions["/"] = append(expected.Permissions["/"], dataprovider.PermRename)
|
|
|
|
err = checkUser(expected, actual)
|
|
|
|
if err == nil {
|
|
|
|
t.Errorf("Permissions are not equal")
|
|
|
|
}
|
|
|
|
expected.Permissions = make(map[string][]string)
|
|
|
|
expected.Permissions["/somedir"] = []string{dataprovider.PermAny}
|
|
|
|
actual.Permissions = make(map[string][]string)
|
|
|
|
actual.Permissions["/otherdir"] = []string{dataprovider.PermCreateDirs, dataprovider.PermCreateSymlinks}
|
2019-07-26 09:34:44 +00:00
|
|
|
err = checkUser(expected, actual)
|
|
|
|
if err == nil {
|
|
|
|
t.Errorf("Permissions are not equal")
|
|
|
|
}
|
2019-12-30 17:37:50 +00:00
|
|
|
expected.Permissions = make(map[string][]string)
|
|
|
|
actual.Permissions = make(map[string][]string)
|
2020-02-19 21:39:30 +00:00
|
|
|
actual.FsConfig.Provider = 1
|
|
|
|
err = checkUser(expected, actual)
|
|
|
|
if err == nil {
|
|
|
|
t.Errorf("Fs providers are not equal")
|
|
|
|
}
|
2020-02-23 10:30:26 +00:00
|
|
|
actual.FsConfig.Provider = 0
|
|
|
|
expected.VirtualFolders = append(expected.VirtualFolders, vfs.VirtualFolder{
|
|
|
|
VirtualPath: "/vdir",
|
|
|
|
MappedPath: os.TempDir(),
|
|
|
|
})
|
|
|
|
err = checkUser(expected, actual)
|
|
|
|
if err == nil {
|
|
|
|
t.Errorf("Virtual folders are not equal")
|
|
|
|
}
|
|
|
|
actual.VirtualFolders = append(actual.VirtualFolders, vfs.VirtualFolder{
|
|
|
|
VirtualPath: "/vdir1",
|
|
|
|
MappedPath: os.TempDir(),
|
|
|
|
})
|
|
|
|
err = checkUser(expected, actual)
|
|
|
|
if err == nil {
|
|
|
|
t.Errorf("Virtual folders are not equal")
|
|
|
|
}
|
2020-02-19 21:39:30 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
func TestCompareUserFilters(t *testing.T) {
|
|
|
|
expected := &dataprovider.User{}
|
|
|
|
actual := &dataprovider.User{}
|
|
|
|
actual.ID = 1
|
|
|
|
expected.ID = 1
|
2019-12-30 17:37:50 +00:00
|
|
|
expected.Filters.AllowedIP = []string{}
|
|
|
|
actual.Filters.AllowedIP = []string{"192.168.1.2/32"}
|
2020-02-19 21:39:30 +00:00
|
|
|
err := checkUser(expected, actual)
|
2019-12-30 17:37:50 +00:00
|
|
|
if err == nil {
|
|
|
|
t.Errorf("AllowedIP are not equal")
|
|
|
|
}
|
|
|
|
expected.Filters.AllowedIP = []string{"192.168.1.3/32"}
|
|
|
|
err = checkUser(expected, actual)
|
|
|
|
if err == nil {
|
|
|
|
t.Errorf("AllowedIP contents are not equal")
|
|
|
|
}
|
|
|
|
expected.Filters.AllowedIP = []string{}
|
|
|
|
actual.Filters.AllowedIP = []string{}
|
|
|
|
expected.Filters.DeniedIP = []string{}
|
|
|
|
actual.Filters.DeniedIP = []string{"192.168.1.2/32"}
|
|
|
|
err = checkUser(expected, actual)
|
|
|
|
if err == nil {
|
|
|
|
t.Errorf("DeniedIP are not equal")
|
|
|
|
}
|
|
|
|
expected.Filters.DeniedIP = []string{"192.168.1.3/32"}
|
|
|
|
err = checkUser(expected, actual)
|
|
|
|
if err == nil {
|
|
|
|
t.Errorf("DeniedIP contents are not equal")
|
|
|
|
}
|
2020-01-19 06:41:05 +00:00
|
|
|
expected.Filters.DeniedIP = []string{}
|
|
|
|
actual.Filters.DeniedIP = []string{}
|
2020-02-19 21:39:30 +00:00
|
|
|
expected.Filters.DeniedLoginMethods = []string{}
|
|
|
|
actual.Filters.DeniedLoginMethods = []string{dataprovider.SSHLoginMethodPublicKey}
|
2020-01-19 06:41:05 +00:00
|
|
|
err = checkUser(expected, actual)
|
|
|
|
if err == nil {
|
2020-02-19 21:39:30 +00:00
|
|
|
t.Errorf("Denied login methods are not equal")
|
|
|
|
}
|
|
|
|
expected.Filters.DeniedLoginMethods = []string{dataprovider.SSHLoginMethodPassword}
|
|
|
|
err = checkUser(expected, actual)
|
|
|
|
if err == nil {
|
|
|
|
t.Errorf("Denied login methods contents are not equal")
|
2020-01-19 06:41:05 +00:00
|
|
|
}
|
2020-03-01 21:10:29 +00:00
|
|
|
expected.Filters.DeniedLoginMethods = []string{}
|
|
|
|
actual.Filters.DeniedLoginMethods = []string{}
|
|
|
|
expected.Filters.FileExtensions = append(expected.Filters.FileExtensions, dataprovider.ExtensionsFilter{
|
|
|
|
Path: "/",
|
|
|
|
AllowedExtensions: []string{".jpg", ".png"},
|
|
|
|
DeniedExtensions: []string{".zip", ".rar"},
|
|
|
|
})
|
|
|
|
err = checkUser(expected, actual)
|
|
|
|
if err == nil {
|
|
|
|
t.Errorf("file extensons are not equal")
|
|
|
|
}
|
|
|
|
actual.Filters.FileExtensions = append(actual.Filters.FileExtensions, dataprovider.ExtensionsFilter{
|
|
|
|
Path: "/sub",
|
|
|
|
AllowedExtensions: []string{".jpg", ".png"},
|
|
|
|
DeniedExtensions: []string{".zip", ".rar"},
|
|
|
|
})
|
|
|
|
err = checkUser(expected, actual)
|
|
|
|
if err == nil {
|
|
|
|
t.Errorf("file extensons contents are not equal")
|
|
|
|
}
|
|
|
|
actual.Filters.FileExtensions[0] = dataprovider.ExtensionsFilter{
|
|
|
|
Path: "/",
|
|
|
|
AllowedExtensions: []string{".jpg"},
|
|
|
|
DeniedExtensions: []string{".zip", ".rar"},
|
|
|
|
}
|
|
|
|
err = checkUser(expected, actual)
|
|
|
|
if err == nil {
|
|
|
|
t.Errorf("file extensons contents are not equal")
|
|
|
|
}
|
|
|
|
actual.Filters.FileExtensions[0] = dataprovider.ExtensionsFilter{
|
|
|
|
Path: "/",
|
|
|
|
AllowedExtensions: []string{".tiff", ".png"},
|
|
|
|
DeniedExtensions: []string{".zip", ".rar"},
|
|
|
|
}
|
|
|
|
err = checkUser(expected, actual)
|
|
|
|
if err == nil {
|
|
|
|
t.Errorf("file extensons contents are not equal")
|
|
|
|
}
|
|
|
|
actual.Filters.FileExtensions[0] = dataprovider.ExtensionsFilter{
|
|
|
|
Path: "/",
|
|
|
|
AllowedExtensions: []string{".jpg", ".png"},
|
|
|
|
DeniedExtensions: []string{".tar.gz", ".rar"},
|
|
|
|
}
|
|
|
|
err = checkUser(expected, actual)
|
|
|
|
if err == nil {
|
|
|
|
t.Errorf("file extensons contents are not equal")
|
|
|
|
}
|
2019-07-26 09:34:44 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
func TestCompareUserFields(t *testing.T) {
|
2019-12-30 17:37:50 +00:00
|
|
|
expected := &dataprovider.User{}
|
|
|
|
actual := &dataprovider.User{}
|
2019-12-25 17:20:19 +00:00
|
|
|
expected.Permissions = make(map[string][]string)
|
|
|
|
actual.Permissions = make(map[string][]string)
|
2019-07-26 09:34:44 +00:00
|
|
|
expected.Username = "test"
|
|
|
|
err := compareEqualsUserFields(expected, actual)
|
|
|
|
if err == nil {
|
|
|
|
t.Errorf("Username does not match")
|
|
|
|
}
|
|
|
|
expected.Username = ""
|
|
|
|
expected.HomeDir = "homedir"
|
|
|
|
err = compareEqualsUserFields(expected, actual)
|
|
|
|
if err == nil {
|
|
|
|
t.Errorf("HomeDir does not match")
|
|
|
|
}
|
|
|
|
expected.HomeDir = ""
|
|
|
|
expected.UID = 1
|
|
|
|
err = compareEqualsUserFields(expected, actual)
|
|
|
|
if err == nil {
|
|
|
|
t.Errorf("UID does not match")
|
|
|
|
}
|
|
|
|
expected.UID = 0
|
|
|
|
expected.GID = 1
|
|
|
|
err = compareEqualsUserFields(expected, actual)
|
|
|
|
if err == nil {
|
|
|
|
t.Errorf("GID does not match")
|
|
|
|
}
|
|
|
|
expected.GID = 0
|
|
|
|
expected.MaxSessions = 2
|
|
|
|
err = compareEqualsUserFields(expected, actual)
|
|
|
|
if err == nil {
|
|
|
|
t.Errorf("MaxSessions do not match")
|
|
|
|
}
|
|
|
|
expected.MaxSessions = 0
|
|
|
|
expected.QuotaSize = 4096
|
|
|
|
err = compareEqualsUserFields(expected, actual)
|
|
|
|
if err == nil {
|
|
|
|
t.Errorf("QuotaSize does not match")
|
|
|
|
}
|
|
|
|
expected.QuotaSize = 0
|
|
|
|
expected.QuotaFiles = 2
|
|
|
|
err = compareEqualsUserFields(expected, actual)
|
|
|
|
if err == nil {
|
|
|
|
t.Errorf("QuotaFiles do not match")
|
|
|
|
}
|
|
|
|
expected.QuotaFiles = 0
|
2019-12-25 17:20:19 +00:00
|
|
|
expected.Permissions["/"] = []string{dataprovider.PermCreateDirs}
|
2019-07-26 09:34:44 +00:00
|
|
|
err = compareEqualsUserFields(expected, actual)
|
|
|
|
if err == nil {
|
|
|
|
t.Errorf("Permissions are not equal")
|
|
|
|
}
|
|
|
|
expected.Permissions = nil
|
|
|
|
expected.UploadBandwidth = 64
|
|
|
|
err = compareEqualsUserFields(expected, actual)
|
|
|
|
if err == nil {
|
|
|
|
t.Errorf("UploadBandwidth does not match")
|
|
|
|
}
|
|
|
|
expected.UploadBandwidth = 0
|
|
|
|
expected.DownloadBandwidth = 128
|
|
|
|
err = compareEqualsUserFields(expected, actual)
|
|
|
|
if err == nil {
|
|
|
|
t.Errorf("DownloadBandwidth does not match")
|
|
|
|
}
|
2019-11-13 10:36:21 +00:00
|
|
|
expected.DownloadBandwidth = 0
|
|
|
|
expected.Status = 1
|
|
|
|
err = compareEqualsUserFields(expected, actual)
|
|
|
|
if err == nil {
|
|
|
|
t.Errorf("Status does not match")
|
|
|
|
}
|
|
|
|
expected.Status = 0
|
|
|
|
expected.ExpirationDate = 123
|
|
|
|
err = compareEqualsUserFields(expected, actual)
|
|
|
|
if err == nil {
|
|
|
|
t.Errorf("Expiration date does not match")
|
|
|
|
}
|
2019-07-26 09:34:44 +00:00
|
|
|
}
|
2019-08-03 11:19:00 +00:00
|
|
|
|
2020-01-19 06:41:05 +00:00
|
|
|
func TestCompareUserFsConfig(t *testing.T) {
|
|
|
|
expected := &dataprovider.User{}
|
|
|
|
actual := &dataprovider.User{}
|
|
|
|
expected.FsConfig.Provider = 1
|
|
|
|
err := compareUserFsConfig(expected, actual)
|
|
|
|
if err == nil {
|
|
|
|
t.Errorf("Provider does not match")
|
|
|
|
}
|
|
|
|
expected.FsConfig.Provider = 0
|
|
|
|
expected.FsConfig.S3Config.Bucket = "bucket"
|
|
|
|
err = compareUserFsConfig(expected, actual)
|
|
|
|
if err == nil {
|
|
|
|
t.Errorf("S3 bucket does not match")
|
|
|
|
}
|
|
|
|
expected.FsConfig.S3Config.Bucket = ""
|
|
|
|
expected.FsConfig.S3Config.Region = "region"
|
|
|
|
err = compareUserFsConfig(expected, actual)
|
|
|
|
if err == nil {
|
|
|
|
t.Errorf("S3 region does not match")
|
|
|
|
}
|
|
|
|
expected.FsConfig.S3Config.Region = ""
|
|
|
|
expected.FsConfig.S3Config.AccessKey = "access key"
|
|
|
|
err = compareUserFsConfig(expected, actual)
|
|
|
|
if err == nil {
|
|
|
|
t.Errorf("S3 access key does not match")
|
|
|
|
}
|
|
|
|
expected.FsConfig.S3Config.AccessKey = ""
|
|
|
|
actual.FsConfig.S3Config.AccessSecret = "access secret"
|
|
|
|
err = compareUserFsConfig(expected, actual)
|
|
|
|
if err == nil {
|
|
|
|
t.Errorf("S3 access secret does not match")
|
|
|
|
}
|
|
|
|
secret, _ := utils.EncryptData("access secret")
|
|
|
|
actual.FsConfig.S3Config.AccessSecret = ""
|
|
|
|
expected.FsConfig.S3Config.AccessSecret = secret
|
|
|
|
err = compareUserFsConfig(expected, actual)
|
|
|
|
if err == nil {
|
|
|
|
t.Errorf("S3 access secret does not match")
|
|
|
|
}
|
|
|
|
expected.FsConfig.S3Config.AccessSecret = utils.RemoveDecryptionKey(secret)
|
|
|
|
actual.FsConfig.S3Config.AccessSecret = utils.RemoveDecryptionKey(secret) + "a"
|
|
|
|
err = compareUserFsConfig(expected, actual)
|
|
|
|
if err == nil {
|
|
|
|
t.Errorf("S3 access secret does not match")
|
|
|
|
}
|
|
|
|
expected.FsConfig.S3Config.AccessSecret = "test"
|
|
|
|
actual.FsConfig.S3Config.AccessSecret = ""
|
|
|
|
err = compareUserFsConfig(expected, actual)
|
|
|
|
if err == nil {
|
|
|
|
t.Errorf("S3 access secret does not match")
|
|
|
|
}
|
|
|
|
expected.FsConfig.S3Config.AccessSecret = ""
|
|
|
|
actual.FsConfig.S3Config.AccessSecret = ""
|
|
|
|
expected.FsConfig.S3Config.Endpoint = "http://127.0.0.1:9000/"
|
|
|
|
err = compareUserFsConfig(expected, actual)
|
|
|
|
if err == nil {
|
|
|
|
t.Errorf("S3 endpoint does not match")
|
|
|
|
}
|
|
|
|
expected.FsConfig.S3Config.Endpoint = ""
|
|
|
|
expected.FsConfig.S3Config.StorageClass = "Standard"
|
|
|
|
err = compareUserFsConfig(expected, actual)
|
|
|
|
if err == nil {
|
|
|
|
t.Errorf("S3 storage class does not match")
|
|
|
|
}
|
2020-01-19 22:23:09 +00:00
|
|
|
expected.FsConfig.S3Config.StorageClass = ""
|
|
|
|
expected.FsConfig.S3Config.KeyPrefix = "somedir/subdir"
|
|
|
|
err = compareUserFsConfig(expected, actual)
|
|
|
|
if err == nil {
|
|
|
|
t.Errorf("S3 key prefix does not match")
|
|
|
|
}
|
2020-01-31 18:04:00 +00:00
|
|
|
expected.FsConfig.S3Config.KeyPrefix = ""
|
2020-03-13 16:28:55 +00:00
|
|
|
expected.FsConfig.S3Config.UploadPartSize = 10
|
|
|
|
err = compareUserFsConfig(expected, actual)
|
|
|
|
if err == nil {
|
|
|
|
t.Errorf("S3 upload part size does not match")
|
|
|
|
}
|
|
|
|
expected.FsConfig.S3Config.UploadPartSize = 0
|
2020-03-13 18:13:58 +00:00
|
|
|
expected.FsConfig.S3Config.UploadConcurrency = 3
|
|
|
|
err = compareUserFsConfig(expected, actual)
|
|
|
|
if err == nil {
|
|
|
|
t.Errorf("S3 upload concurrency does not match")
|
|
|
|
}
|
2020-02-19 08:41:15 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
func TestCompareUserGCSConfig(t *testing.T) {
|
|
|
|
expected := &dataprovider.User{}
|
|
|
|
actual := &dataprovider.User{}
|
2020-01-31 18:04:00 +00:00
|
|
|
expected.FsConfig.GCSConfig.KeyPrefix = "somedir/subdir"
|
2020-02-19 08:41:15 +00:00
|
|
|
err := compareUserFsConfig(expected, actual)
|
2020-01-31 18:04:00 +00:00
|
|
|
if err == nil {
|
|
|
|
t.Errorf("GCS key prefix does not match")
|
|
|
|
}
|
|
|
|
expected.FsConfig.GCSConfig.KeyPrefix = ""
|
|
|
|
expected.FsConfig.GCSConfig.Bucket = "bucket"
|
|
|
|
err = compareUserFsConfig(expected, actual)
|
|
|
|
if err == nil {
|
|
|
|
t.Errorf("GCS bucket does not match")
|
|
|
|
}
|
|
|
|
expected.FsConfig.GCSConfig.Bucket = ""
|
|
|
|
expected.FsConfig.GCSConfig.StorageClass = "Standard"
|
|
|
|
err = compareUserFsConfig(expected, actual)
|
|
|
|
if err == nil {
|
|
|
|
t.Errorf("GCS storage class does not match")
|
|
|
|
}
|
|
|
|
expected.FsConfig.GCSConfig.StorageClass = ""
|
2020-02-19 08:41:15 +00:00
|
|
|
expected.FsConfig.GCSConfig.AutomaticCredentials = 1
|
|
|
|
err = compareUserFsConfig(expected, actual)
|
|
|
|
if err == nil {
|
|
|
|
t.Errorf("GCS automatic credentials does not match")
|
|
|
|
}
|
|
|
|
expected.FsConfig.GCSConfig.AutomaticCredentials = 0
|
2020-01-31 18:04:00 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
func TestGCSWebInvalidFormFile(t *testing.T) {
|
|
|
|
form := make(url.Values)
|
|
|
|
form.Set("username", "test_username")
|
|
|
|
form.Set("fs_provider", "2")
|
|
|
|
req, _ := http.NewRequest(http.MethodPost, webUserPath, strings.NewReader(form.Encode()))
|
|
|
|
req.Header.Set("Content-Type", "application/x-www-form-urlencoded")
|
|
|
|
req.ParseForm()
|
|
|
|
_, err := getFsConfigFromUserPostFields(req)
|
|
|
|
if err != http.ErrNotMultipart {
|
|
|
|
t.Errorf("unexpected error: %v", err)
|
|
|
|
}
|
2020-01-19 06:41:05 +00:00
|
|
|
}
|
|
|
|
|
2019-08-03 11:19:00 +00:00
|
|
|
func TestApiCallsWithBadURL(t *testing.T) {
|
|
|
|
oldBaseURL := httpBaseURL
|
2020-02-03 23:08:00 +00:00
|
|
|
oldAuthUsername := authUsername
|
|
|
|
oldAuthPassword := authPassword
|
|
|
|
SetBaseURLAndCredentials(invalidURL, oldAuthUsername, oldAuthPassword)
|
2019-08-03 11:19:00 +00:00
|
|
|
u := dataprovider.User{}
|
2019-08-04 19:37:31 +00:00
|
|
|
_, _, err := UpdateUser(u, http.StatusBadRequest)
|
2019-08-03 11:19:00 +00:00
|
|
|
if err == nil {
|
2019-12-27 22:12:44 +00:00
|
|
|
t.Error("request with invalid URL must fail")
|
2019-08-03 11:19:00 +00:00
|
|
|
}
|
2019-08-04 19:37:31 +00:00
|
|
|
_, err = RemoveUser(u, http.StatusNotFound)
|
2019-08-03 11:19:00 +00:00
|
|
|
if err == nil {
|
2019-12-27 22:12:44 +00:00
|
|
|
t.Error("request with invalid URL must fail")
|
2019-08-03 11:19:00 +00:00
|
|
|
}
|
2019-08-04 19:37:31 +00:00
|
|
|
_, _, err = GetUsers(1, 0, "", http.StatusBadRequest)
|
|
|
|
if err == nil {
|
2019-12-27 22:12:44 +00:00
|
|
|
t.Error("request with invalid URL must fail")
|
2019-08-04 19:37:31 +00:00
|
|
|
}
|
2019-08-24 12:41:15 +00:00
|
|
|
_, err = CloseConnection("non_existent_id", http.StatusNotFound)
|
2019-08-03 11:19:00 +00:00
|
|
|
if err == nil {
|
2019-12-27 22:12:44 +00:00
|
|
|
t.Error("request with invalid URL must fail")
|
|
|
|
}
|
2020-02-02 21:20:39 +00:00
|
|
|
_, _, err = Dumpdata("backup.json", "", http.StatusBadRequest)
|
2019-12-27 22:12:44 +00:00
|
|
|
if err == nil {
|
|
|
|
t.Error("request with invalid URL must fail")
|
|
|
|
}
|
2020-01-31 18:10:45 +00:00
|
|
|
_, _, err = Loaddata("/tmp/backup.json", "", "", http.StatusBadRequest)
|
2019-12-27 22:12:44 +00:00
|
|
|
if err == nil {
|
|
|
|
t.Error("request with invalid URL must fail")
|
2019-08-03 11:19:00 +00:00
|
|
|
}
|
2020-02-03 23:08:00 +00:00
|
|
|
SetBaseURLAndCredentials(oldBaseURL, oldAuthUsername, oldAuthPassword)
|
2019-08-03 11:19:00 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
func TestApiCallToNotListeningServer(t *testing.T) {
|
|
|
|
oldBaseURL := httpBaseURL
|
2020-02-03 23:08:00 +00:00
|
|
|
oldAuthUsername := authUsername
|
|
|
|
oldAuthPassword := authPassword
|
|
|
|
SetBaseURLAndCredentials(inactiveURL, oldAuthUsername, oldAuthPassword)
|
2019-08-03 11:19:00 +00:00
|
|
|
u := dataprovider.User{}
|
2019-08-04 19:37:31 +00:00
|
|
|
_, _, err := AddUser(u, http.StatusBadRequest)
|
2019-08-03 11:19:00 +00:00
|
|
|
if err == nil {
|
|
|
|
t.Errorf("request to an inactive URL must fail")
|
|
|
|
}
|
2019-08-04 19:37:31 +00:00
|
|
|
_, _, err = UpdateUser(u, http.StatusNotFound)
|
2019-08-03 11:19:00 +00:00
|
|
|
if err == nil {
|
|
|
|
t.Errorf("request to an inactive URL must fail")
|
|
|
|
}
|
2019-08-04 19:37:31 +00:00
|
|
|
_, err = RemoveUser(u, http.StatusNotFound)
|
2019-08-03 11:19:00 +00:00
|
|
|
if err == nil {
|
|
|
|
t.Errorf("request to an inactive URL must fail")
|
|
|
|
}
|
2019-08-04 19:37:31 +00:00
|
|
|
_, _, err = GetUserByID(-1, http.StatusNotFound)
|
2019-08-03 11:19:00 +00:00
|
|
|
if err == nil {
|
|
|
|
t.Errorf("request to an inactive URL must fail")
|
|
|
|
}
|
2019-08-04 19:37:31 +00:00
|
|
|
_, _, err = GetUsers(100, 0, "", http.StatusOK)
|
2019-08-03 11:19:00 +00:00
|
|
|
if err == nil {
|
|
|
|
t.Errorf("request to an inactive URL must fail")
|
|
|
|
}
|
2019-08-04 19:37:31 +00:00
|
|
|
_, _, err = GetQuotaScans(http.StatusOK)
|
2019-08-03 11:19:00 +00:00
|
|
|
if err == nil {
|
|
|
|
t.Errorf("request to an inactive URL must fail")
|
|
|
|
}
|
2019-08-04 19:37:31 +00:00
|
|
|
_, err = StartQuotaScan(u, http.StatusNotFound)
|
2019-08-03 11:19:00 +00:00
|
|
|
if err == nil {
|
|
|
|
t.Errorf("request to an inactive URL must fail")
|
|
|
|
}
|
2019-08-24 12:41:15 +00:00
|
|
|
_, _, err = GetConnections(http.StatusOK)
|
2019-08-03 11:19:00 +00:00
|
|
|
if err == nil {
|
|
|
|
t.Errorf("request to an inactive URL must fail")
|
|
|
|
}
|
2019-08-24 12:41:15 +00:00
|
|
|
_, err = CloseConnection("non_existent_id", http.StatusNotFound)
|
2019-08-03 11:19:00 +00:00
|
|
|
if err == nil {
|
|
|
|
t.Errorf("request to an inactive URL must fail")
|
|
|
|
}
|
2019-08-08 08:01:33 +00:00
|
|
|
_, _, err = GetVersion(http.StatusOK)
|
|
|
|
if err == nil {
|
|
|
|
t.Errorf("request to an inactive URL must fail")
|
|
|
|
}
|
2019-11-14 17:48:01 +00:00
|
|
|
_, _, err = GetProviderStatus(http.StatusOK)
|
|
|
|
if err == nil {
|
|
|
|
t.Errorf("request to an inactive URL must fail")
|
|
|
|
}
|
2020-02-02 21:20:39 +00:00
|
|
|
_, _, err = Dumpdata("backup.json", "0", http.StatusOK)
|
2019-12-27 22:12:44 +00:00
|
|
|
if err == nil {
|
|
|
|
t.Errorf("request to an inactive URL must fail")
|
|
|
|
}
|
2020-01-31 18:10:45 +00:00
|
|
|
_, _, err = Loaddata("/tmp/backup.json", "", "", http.StatusOK)
|
2019-12-27 22:12:44 +00:00
|
|
|
if err == nil {
|
|
|
|
t.Errorf("request to an inactive URL must fail")
|
|
|
|
}
|
2020-02-03 23:08:00 +00:00
|
|
|
SetBaseURLAndCredentials(oldBaseURL, oldAuthUsername, oldAuthPassword)
|
|
|
|
}
|
|
|
|
|
|
|
|
func TestBasicAuth(t *testing.T) {
|
|
|
|
oldAuthUsername := authUsername
|
|
|
|
oldAuthPassword := authPassword
|
|
|
|
authUserFile := filepath.Join(os.TempDir(), "http_users.txt")
|
|
|
|
authUserData := []byte("test1:$2y$05$bcHSED7aO1cfLto6ZdDBOOKzlwftslVhtpIkRhAtSa4GuLmk5mola\n")
|
|
|
|
ioutil.WriteFile(authUserFile, authUserData, 0666)
|
|
|
|
httpAuth, _ = newBasicAuthProvider(authUserFile)
|
|
|
|
_, _, err := GetVersion(http.StatusUnauthorized)
|
|
|
|
if err != nil {
|
|
|
|
t.Errorf("unexpected error: %v", err)
|
|
|
|
}
|
|
|
|
SetBaseURLAndCredentials(httpBaseURL, "test1", "password1")
|
|
|
|
_, _, err = GetVersion(http.StatusOK)
|
|
|
|
if err != nil {
|
|
|
|
t.Errorf("unexpected error: %v", err)
|
|
|
|
}
|
|
|
|
SetBaseURLAndCredentials(httpBaseURL, "test1", "wrong_password")
|
|
|
|
resp, _ := sendHTTPRequest(http.MethodGet, buildURLRelativeToBase(metricsPath), nil, "")
|
|
|
|
defer resp.Body.Close()
|
|
|
|
if resp.StatusCode != http.StatusUnauthorized {
|
|
|
|
t.Errorf("request with wrong password must fail, status code: %v", resp.StatusCode)
|
|
|
|
}
|
|
|
|
authUserData = append(authUserData, []byte("test2:$apr1$gLnIkRIf$Xr/6aJfmIrihP4b2N2tcs/\n")...)
|
|
|
|
ioutil.WriteFile(authUserFile, authUserData, 0666)
|
|
|
|
SetBaseURLAndCredentials(httpBaseURL, "test2", "password2")
|
|
|
|
_, _, err = GetVersion(http.StatusOK)
|
|
|
|
if err != nil {
|
|
|
|
t.Errorf("unexpected error: %v", err)
|
|
|
|
}
|
|
|
|
SetBaseURLAndCredentials(httpBaseURL, "test2", "wrong_password")
|
|
|
|
_, _, err = GetVersion(http.StatusOK)
|
|
|
|
if err == nil {
|
|
|
|
t.Error("request with wrong password must fail")
|
|
|
|
}
|
|
|
|
authUserData = append(authUserData, []byte("test3:$apr1$gLnIkRIf$Xr/6$aJfmIr$ihP4b2N2tcs/\n")...)
|
|
|
|
ioutil.WriteFile(authUserFile, authUserData, 0666)
|
|
|
|
SetBaseURLAndCredentials(httpBaseURL, "test3", "wrong_password")
|
|
|
|
_, _, err = GetVersion(http.StatusUnauthorized)
|
|
|
|
if err != nil {
|
|
|
|
t.Errorf("unexpected error: %v", err)
|
|
|
|
}
|
|
|
|
authUserData = append(authUserData, []byte("test4:$invalid$gLnIkRIf$Xr/6$aJfmIr$ihP4b2N2tcs/\n")...)
|
|
|
|
ioutil.WriteFile(authUserFile, authUserData, 0666)
|
|
|
|
SetBaseURLAndCredentials(httpBaseURL, "test3", "password2")
|
|
|
|
_, _, err = GetVersion(http.StatusUnauthorized)
|
|
|
|
if err != nil {
|
|
|
|
t.Errorf("unexpected error: %v", err)
|
|
|
|
}
|
|
|
|
if runtime.GOOS != "windows" {
|
|
|
|
authUserData = append(authUserData, []byte("test5:$apr1$gLnIkRIf$Xr/6aJfmIrihP4b2N2tcs/\n")...)
|
|
|
|
ioutil.WriteFile(authUserFile, authUserData, 0666)
|
|
|
|
os.Chmod(authUserFile, 0001)
|
|
|
|
SetBaseURLAndCredentials(httpBaseURL, "test5", "password2")
|
|
|
|
_, _, err = GetVersion(http.StatusUnauthorized)
|
|
|
|
if err != nil {
|
|
|
|
t.Errorf("unexpected error: %v", err)
|
|
|
|
}
|
|
|
|
os.Chmod(authUserFile, 0666)
|
|
|
|
|
|
|
|
}
|
|
|
|
authUserData = append(authUserData, []byte("\"foo\"bar\"\r\n")...)
|
|
|
|
ioutil.WriteFile(authUserFile, authUserData, 0666)
|
|
|
|
SetBaseURLAndCredentials(httpBaseURL, "test2", "password2")
|
|
|
|
_, _, err = GetVersion(http.StatusUnauthorized)
|
|
|
|
if err != nil {
|
|
|
|
t.Errorf("unexpected error: %v", err)
|
|
|
|
}
|
|
|
|
os.Remove(authUserFile)
|
|
|
|
SetBaseURLAndCredentials(httpBaseURL, oldAuthUsername, oldAuthPassword)
|
|
|
|
httpAuth, _ = newBasicAuthProvider("")
|
2019-08-03 11:19:00 +00:00
|
|
|
}
|
2019-08-08 19:42:07 +00:00
|
|
|
|
2019-08-24 12:41:15 +00:00
|
|
|
func TestCloseConnectionHandler(t *testing.T) {
|
2019-08-08 19:42:07 +00:00
|
|
|
req, _ := http.NewRequest(http.MethodDelete, activeConnectionsPath+"/connectionID", nil)
|
|
|
|
rctx := chi.NewRouteContext()
|
|
|
|
rctx.URLParams.Add("connectionID", "")
|
|
|
|
req = req.WithContext(context.WithValue(req.Context(), chi.RouteCtxKey, rctx))
|
|
|
|
rr := httptest.NewRecorder()
|
2019-08-24 12:41:15 +00:00
|
|
|
handleCloseConnection(rr, req)
|
2019-08-08 19:42:07 +00:00
|
|
|
if rr.Code != http.StatusBadRequest {
|
|
|
|
t.Errorf("Expected response code 400. Got %d", rr.Code)
|
|
|
|
}
|
|
|
|
}
|
2019-10-07 16:19:01 +00:00
|
|
|
|
|
|
|
func TestRenderInvalidTemplate(t *testing.T) {
|
|
|
|
tmpl, err := template.New("test").Parse("{{.Count}}")
|
|
|
|
if err != nil {
|
|
|
|
t.Errorf("error making test template: %v", err)
|
|
|
|
} else {
|
|
|
|
templates["no_match"] = tmpl
|
|
|
|
rw := httptest.NewRecorder()
|
|
|
|
renderTemplate(rw, "no_match", map[string]string{})
|
|
|
|
if rw.Code != http.StatusInternalServerError {
|
|
|
|
t.Errorf("invalid template rendering must fail")
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
2020-01-19 06:41:05 +00:00
|
|
|
|
|
|
|
func TestQuotaScanInvalidFs(t *testing.T) {
|
|
|
|
user := dataprovider.User{
|
|
|
|
Username: "test",
|
|
|
|
HomeDir: os.TempDir(),
|
|
|
|
FsConfig: dataprovider.Filesystem{
|
|
|
|
Provider: 1,
|
|
|
|
},
|
|
|
|
}
|
|
|
|
sftpd.AddQuotaScan(user.Username)
|
|
|
|
err := doQuotaScan(user)
|
|
|
|
if err == nil {
|
|
|
|
t.Error("quota scan with bad fs must fail")
|
|
|
|
}
|
|
|
|
}
|