Test authentication

etr · etr · commit 6e85f70a7321 · 2019-01-03T02:44:28.000Z
diff --git a/src/webserver.cpp b/src/webserver.cpp
@@ -749,7 +749,9 @@ void webserver::end_request_construction(
         user = MHD_basic_auth_get_username_password(connection, &pass);
     }
     if(digest_auth_enabled)
+    {
         digested_user = MHD_digest_auth_get_username(connection);
+    }
     mr->dhr->set_version(version);
     const MHD_ConnectionInfo * conninfo = MHD_get_connection_info(
             connection,
diff --git a/test/Makefile.am b/test/Makefile.am
@@ -19,14 +19,15 @@
 LDADD = $(top_builddir)/src/libhttpserver.la
 AM_CPPFLAGS = -I$(top_srcdir)/src -I$(top_srcdir)/src/httpserver/
 METASOURCES = AUTO
-check_PROGRAMS = basic http_utils threaded string_utilities http_endpoint ban_system ws_start_stop
+check_PROGRAMS = basic http_utils threaded string_utilities http_endpoint ban_system ws_start_stop authentication
 
 MOSTLYCLEANFILES = *.gcda *.gcno *.gcov
 
 basic_SOURCES = integ/basic.cpp 
 threaded_SOURCES = integ/threaded.cpp
 ban_system_SOURCES = integ/ban_system.cpp
 ws_start_stop_SOURCES = integ/ws_start_stop.cpp
+authentication_SOURCES = integ/authentication.cpp
 http_utils_SOURCES = unit/http_utils_test.cpp
 string_utilities_SOURCES = unit/string_utilities_test.cpp
 http_endpoint_SOURCES = unit/http_endpoint_test.cpp
diff --git a/test/integ/authentication.cpp b/test/integ/authentication.cpp
@@ -0,0 +1,176 @@
+/*
+     This file is part of libhttpserver
+     Copyright (C) 2011-2019 Sebastiano Merlino
+
+     This library is free software; you can redistribute it and/or
+     modify it under the terms of the GNU Lesser General Public
+     License as published by the Free Software Foundation; either
+     version 2.1 of the License, or (at your option) any later version.
+
+     This library is distributed in the hope that it will be useful,
+     but WITHOUT ANY WARRANTY; without even the implied warranty of
+     MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
+     Lesser General Public License for more details.
+
+     You should have received a copy of the GNU Lesser General Public
+     License along with this library; if not, write to the Free Software
+     Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301
+     USA
+*/
+
+#if defined(__MINGW32__) || defined(__CYGWIN32__)
+#define _WINDOWS
+#undef _WIN32_WINNT
+#define _WIN32_WINNT 0x600
+#include <winsock2.h>
+#include <ws2tcpip.h>
+#else
+#include <arpa/inet.h>
+#endif
+
+#include "littletest.hpp"
+#include <curl/curl.h>
+#include <netinet/in.h>
+#include <sys/socket.h>
+#include "httpserver.hpp"
+
+#define MY_OPAQUE "11733b200778ce33060f31c9af70a870ba96ddd4"
+
+using namespace std;
+using namespace httpserver;
+
+size_t writefunc(void *ptr, size_t size, size_t nmemb, std::string *s)
+{
+    s->append((char*) ptr, size*nmemb);
+    return size*nmemb;
+}
+
+class user_pass_resource : public httpserver::http_resource
+{
+    public:
+        const httpserver::http_response render_GET(const httpserver::http_request& req)
+        {
+            return httpserver::http_response_builder(req.get_user() + " " + req.get_pass(), 200, "text/plain").string_response();
+        }
+};
+
+class digest_resource : public httpserver::http_resource
+{
+    public:
+        const httpserver::http_response render_GET(const httpserver::http_request& req)
+        {
+            if (req.get_digested_user() == "") {
+                return httpserver::http_response_builder("FAIL").digest_auth_fail_response("test@example.com", MY_OPAQUE, true);
+            }
+            else
+            {
+                bool reload_nonce = false;;
+                if(!req.check_digest_auth("test@example.com", "mypass", 300, reload_nonce))
+                {
+                    return httpserver::http_response_builder("FAIL").digest_auth_fail_response("test@example.com", MY_OPAQUE, reload_nonce);
+                }
+            }
+            return httpserver::http_response_builder("SUCCESS", 200, "text/plain").string_response();
+        }
+};
+
+LT_BEGIN_SUITE(authentication_suite)
+    void set_up()
+    {
+    }
+
+    void tear_down()
+    {
+    }
+LT_END_SUITE(authentication_suite)
+
+LT_BEGIN_AUTO_TEST(authentication_suite, base_auth)
+    webserver ws = create_webserver(8080);
+
+    user_pass_resource* user_pass = new user_pass_resource();
+    ws.register_resource("base", user_pass);
+    ws.start(false);
+
+    curl_global_init(CURL_GLOBAL_ALL);
+    std::string s;
+    CURL *curl = curl_easy_init();
+    CURLcode res;
+    curl_easy_setopt(curl, CURLOPT_USERNAME, "myuser");
+    curl_easy_setopt(curl, CURLOPT_PASSWORD, "mypass");
+    curl_easy_setopt(curl, CURLOPT_URL, "localhost:8080/base");
+    curl_easy_setopt(curl, CURLOPT_HTTPGET, 1L);
+    curl_easy_setopt(curl, CURLOPT_WRITEFUNCTION, writefunc);
+    curl_easy_setopt(curl, CURLOPT_WRITEDATA, &s);
+    res = curl_easy_perform(curl);
+    LT_ASSERT_EQ(res, 0);
+    LT_CHECK_EQ(s, "myuser mypass");
+    curl_easy_cleanup(curl);
+
+    ws.stop();
+LT_END_AUTO_TEST(base_auth)
+
+LT_BEGIN_AUTO_TEST(authentication_suite, digest_auth)
+    webserver ws = create_webserver(8080)
+        .digest_auth_random("myrandom")
+        .nonce_nc_size(300);
+
+    digest_resource* digest = new digest_resource();
+    ws.register_resource("base", digest);
+    ws.start(false);
+
+    curl_global_init(CURL_GLOBAL_ALL);
+    std::string s;
+    CURL *curl = curl_easy_init();
+    CURLcode res;
+    curl_easy_setopt(curl, CURLOPT_HTTPAUTH, CURLAUTH_DIGEST);
+    curl_easy_setopt(curl, CURLOPT_USERPWD, "myuser:mypass");
+    curl_easy_setopt(curl, CURLOPT_URL, "localhost:8080/base");
+    curl_easy_setopt(curl, CURLOPT_HTTPGET, 1L);
+    curl_easy_setopt(curl, CURLOPT_WRITEFUNCTION, writefunc);
+    curl_easy_setopt(curl, CURLOPT_WRITEDATA, &s);
+    curl_easy_setopt(curl, CURLOPT_TIMEOUT, 150L);
+    curl_easy_setopt(curl, CURLOPT_CONNECTTIMEOUT, 150L);
+    curl_easy_setopt(curl, CURLOPT_HTTP_VERSION, CURL_HTTP_VERSION_1_1);
+    curl_easy_setopt(curl, CURLOPT_NOSIGNAL, 1);
+    res = curl_easy_perform(curl);
+    LT_ASSERT_EQ(res, 0);
+    LT_CHECK_EQ(s, "SUCCESS");
+    curl_easy_cleanup(curl);
+
+    ws.stop();
+LT_END_AUTO_TEST(digest_auth)
+
+LT_BEGIN_AUTO_TEST(authentication_suite, digest_auth_wrong_pass)
+    webserver ws = create_webserver(8080)
+        .digest_auth_random("myrandom")
+        .nonce_nc_size(300);
+
+    digest_resource* digest = new digest_resource();
+    ws.register_resource("base", digest);
+    ws.start(false);
+
+    curl_global_init(CURL_GLOBAL_ALL);
+    std::string s;
+    CURL *curl = curl_easy_init();
+    CURLcode res;
+    curl_easy_setopt(curl, CURLOPT_HTTPAUTH, CURLAUTH_DIGEST);
+    curl_easy_setopt(curl, CURLOPT_USERPWD, "myuser:wrongpass");
+    curl_easy_setopt(curl, CURLOPT_URL, "localhost:8080/base");
+    curl_easy_setopt(curl, CURLOPT_HTTPGET, 1L);
+    curl_easy_setopt(curl, CURLOPT_WRITEFUNCTION, writefunc);
+    curl_easy_setopt(curl, CURLOPT_WRITEDATA, &s);
+    curl_easy_setopt(curl, CURLOPT_TIMEOUT, 150L);
+    curl_easy_setopt(curl, CURLOPT_CONNECTTIMEOUT, 150L);
+    curl_easy_setopt(curl, CURLOPT_HTTP_VERSION, CURL_HTTP_VERSION_1_1);
+    curl_easy_setopt(curl, CURLOPT_NOSIGNAL, 1);
+    res = curl_easy_perform(curl);
+    LT_ASSERT_EQ(res, 0);
+    LT_CHECK_EQ(s, "FAIL");
+    curl_easy_cleanup(curl);
+
+    ws.stop();
+LT_END_AUTO_TEST(digest_auth_wrong_pass)
+
+LT_BEGIN_AUTO_TEST_ENV()
+    AUTORUN_TESTS()
+LT_END_AUTO_TEST_ENV()
