kanidm/tests/proto_v1_test.rs

extern crate actix;
use actix::prelude::*;

extern crate rsidm;
use rsidm::config::Configuration;
use rsidm::constants::UUID_ADMIN;
use rsidm::core::create_server_core;
use rsidm::proto::v1::{
    AuthCredential, AuthRequest, AuthResponse, AuthState, AuthStep, CreateRequest, Entry,
    OperationResponse, WhoamiRequest,
};

extern crate reqwest;

extern crate futures;
// use futures::future;
// use futures::future::Future;

use std::sync::atomic::{AtomicUsize, Ordering};
use std::sync::mpsc;
use std::thread;

extern crate env_logger;
extern crate tokio;

static PORT_ALLOC: AtomicUsize = AtomicUsize::new(8080);

// Test external behaviorus of the service.

fn run_test(test_fn: fn(reqwest::Client, &str) -> ()) {
    let _ = env_logger::builder().is_test(true).try_init();
    let (tx, rx) = mpsc::channel();
    let port = PORT_ALLOC.fetch_add(1, Ordering::SeqCst);
    let mut config = Configuration::new();
    config.address = format!("127.0.0.1:{}", port);
    // Setup the config ...

    thread::spawn(move || {
        // Spawn a thread for the test runner, this should have a unique
        // port....
        System::run(move || {
            create_server_core(config);

            // This appears to be bind random ...
            // let srv = srv.bind("127.0.0.1:0").unwrap();
            let _ = tx.send(System::current());
        });
    });
    let sys = rx.recv().unwrap();
    System::set_current(sys.clone());

    // Do we need any fixtures?
    // Yes probably, but they'll need to be futures as well ...
    // later we could accept fixture as it's own future for re-use

    // Setup the client, and the address we selected.
    let client = reqwest::Client::builder()
        .cookie_store(true)
        .build()
        .expect("Unexpected reqwest builder failure!");
    let addr = format!("http://127.0.0.1:{}", port);

    test_fn(client, addr.as_str());

    // We DO NOT need teardown, as sqlite is in mem
    // let the tables hit the floor
    let _ = sys.stop();
}

#[test]
fn test_server_proto() {
    run_test(|client: reqwest::Client, addr: &str| {
        let e: Entry = serde_json::from_str(
            r#"{
            "attrs": {
                "class": ["person"],
                "name": ["testperson"],
                "description": ["testperson"],
                "displayname": ["testperson"]
            }
        }"#,
        )
        .unwrap();

        let c = CreateRequest {
            entries: vec![e],
            user_uuid: UUID_ADMIN.to_string(),
        };

        let dest = format!("{}/v1/create", addr);

        let mut response = client
            .post(dest.as_str())
            .body(serde_json::to_string(&c).unwrap())
            .send()
            .unwrap();

        println!("{:?}", response);
        let r: OperationResponse = serde_json::from_str(response.text().unwrap().as_str()).unwrap();

        println!("{:?}", r);

        // deserialise the response here
        // check it's valid.

        ()
    });
}

#[test]
fn test_server_whoami_anonymous() {
    run_test(|client: reqwest::Client, addr: &str| {
        // First show we are un-authenticated.
        let whoami_dest = format!("{}/v1/whoami", addr);
        let auth_dest = format!("{}/v1/auth", addr);

        let response = client.get(whoami_dest.as_str()).send().unwrap();

        // https://docs.rs/reqwest/0.9.15/reqwest/struct.Response.html
        println!("{:?}", response);

        assert!(response.status() == reqwest::StatusCode::UNAUTHORIZED);

        // Now login as anonymous

        // Setup the auth initialisation
        let auth_init = AuthRequest {
            step: AuthStep::Init("anonymous".to_string(), None),
        };

        let mut response = client
            .post(auth_dest.as_str())
            .body(serde_json::to_string(&auth_init).unwrap())
            .send()
            .unwrap();
        assert!(response.status() == reqwest::StatusCode::OK);
        // Check that we got the next step
        let r: AuthResponse = serde_json::from_str(response.text().unwrap().as_str()).unwrap();
        println!("==> AUTHRESPONSE ==> {:?}", r);

        assert!(match &r.state {
            AuthState::Continue(all_list) => {
                // Check anonymous is present? It will fail on next step if not ...
                true
            }
            _ => false,
        });

        // Send the credentials required now
        let auth_anon = AuthRequest {
            step: AuthStep::Creds(vec![AuthCredential::Anonymous]),
        };

        let mut response = client
            .post(auth_dest.as_str())
            .body(serde_json::to_string(&auth_anon).unwrap())
            .send()
            .unwrap();
        assert!(response.status() == reqwest::StatusCode::OK);
        // Check that we got the next step
        let r: AuthResponse = serde_json::from_str(response.text().unwrap().as_str()).unwrap();
        println!("==> AUTHRESPONSE ==> {:?}", r);

        assert!(match &r.state {
            AuthState::Success(uat) => {
                println!("==> Authed as uat; {:?}", uat);
                true
            }
            _ => false,
        });

        // Now do a whoami.
        let mut response = client.get(whoami_dest.as_str()).send().unwrap();
        println!("WHOAMI -> {}", response.text().unwrap().as_str());
        println!("WHOAMI STATUS -> {}", response.status());
        assert!(response.status() == reqwest::StatusCode::OK);

        // Check the json now ... response.json()
    });
}

// Test hitting all auth-required endpoints and assert they give unauthorized.

/*
#[test]
fn test_be_create_user() {
    run_test!(|log, server: actix::Addr<QueryServer>| {
        let r1 = server.search();
        assert!(r1.len() == 0);

        let cr = server.create();
        assert!(cr.is_ok());

        let r2 = server.search();
        assert!(r2.len() == 1);

        future::ok(())
    });
}
*/
Begin datastructure and work on the core server 2018-10-03 13:21:21 +02:00			`extern crate actix;`
			`use actix::prelude::*;`

			`extern crate rsidm;`
Improvements to integration test 2018-11-26 07:13:22 +01:00			`use rsidm::config::Configuration;`
20190508 UUID on entry (#50) * Make UUID a proper type on entries * Add auth and ID data to relevant structures - this means we can start access controls! 2019-05-15 02:36:18 +02:00			`use rsidm::constants::UUID_ADMIN;`
Improvements to integration test 2018-11-26 07:13:22 +01:00			`use rsidm::core::create_server_core;`
20190607 authentication (#55) Implement #2 anonymous authentication. This also puts into place the majority of the authentication framework, and starts to build the IDM layers ontop of the DB engine. 2019-07-12 07:28:46 +02:00			`use rsidm::proto::v1::{`
			`AuthCredential, AuthRequest, AuthResponse, AuthState, AuthStep, CreateRequest, Entry,`
			`OperationResponse, WhoamiRequest,`
			`};`
Begin datastructure and work on the core server 2018-10-03 13:21:21 +02:00
Improvements to integration test 2018-11-26 07:13:22 +01:00			`extern crate reqwest;`

Begin datastructure and work on the core server 2018-10-03 13:21:21 +02:00			`extern crate futures;`
Implement memberof with direct/indirect tracking and testcases. (#48) * Implement memberof with direct/indirect tracking and testcases. 2019-05-08 02:39:46 +02:00			`// use futures::future;`
			`// use futures::future::Future;`
Begin datastructure and work on the core server 2018-10-03 13:21:21 +02:00
20190607 authentication (#55) Implement #2 anonymous authentication. This also puts into place the majority of the authentication framework, and starts to build the IDM layers ontop of the DB engine. 2019-07-12 07:28:46 +02:00			`use std::sync::atomic::{AtomicUsize, Ordering};`
Improvements to integration test 2018-11-26 07:13:22 +01:00			`use std::sync::mpsc;`
			`use std::thread;`

20190607 authentication (#55) Implement #2 anonymous authentication. This also puts into place the majority of the authentication framework, and starts to build the IDM layers ontop of the DB engine. 2019-07-12 07:28:46 +02:00			`extern crate env_logger;`
Begin datastructure and work on the core server 2018-10-03 13:21:21 +02:00			`extern crate tokio;`

20190607 authentication (#55) Implement #2 anonymous authentication. This also puts into place the majority of the authentication framework, and starts to build the IDM layers ontop of the DB engine. 2019-07-12 07:28:46 +02:00			`static PORT_ALLOC: AtomicUsize = AtomicUsize::new(8080);`

initial 2018-09-29 09:54:16 +02:00			`// Test external behaviorus of the service.`

20190607 authentication (#55) Implement #2 anonymous authentication. This also puts into place the majority of the authentication framework, and starts to build the IDM layers ontop of the DB engine. 2019-07-12 07:28:46 +02:00			`fn run_test(test_fn: fn(reqwest::Client, &str) -> ()) {`
			`let _ = env_logger::builder().is_test(true).try_init();`
			`let (tx, rx) = mpsc::channel();`
			`let port = PORT_ALLOC.fetch_add(1, Ordering::SeqCst);`
			`let mut config = Configuration::new();`
			`config.address = format!("127.0.0.1:{}", port);`
			`// Setup the config ...`

			`thread::spawn(move \|\| {`
			`// Spawn a thread for the test runner, this should have a unique`
			`// port....`
			`System::run(move \|\| {`
			`create_server_core(config);`

			`// This appears to be bind random ...`
			`// let srv = srv.bind("127.0.0.1:0").unwrap();`
			`let _ = tx.send(System::current());`
			`});`
			`});`
			`let sys = rx.recv().unwrap();`
			`System::set_current(sys.clone());`
Improvements to integration test 2018-11-26 07:13:22 +01:00
20190607 authentication (#55) Implement #2 anonymous authentication. This also puts into place the majority of the authentication framework, and starts to build the IDM layers ontop of the DB engine. 2019-07-12 07:28:46 +02:00			`// Do we need any fixtures?`
			`// Yes probably, but they'll need to be futures as well ...`
			`// later we could accept fixture as it's own future for re-use`
initial 2018-09-29 09:54:16 +02:00
20190607 authentication (#55) Implement #2 anonymous authentication. This also puts into place the majority of the authentication framework, and starts to build the IDM layers ontop of the DB engine. 2019-07-12 07:28:46 +02:00			`// Setup the client, and the address we selected.`
			`let client = reqwest::Client::builder()`
			`.cookie_store(true)`
			`.build()`
			`.expect("Unexpected reqwest builder failure!");`
			`let addr = format!("http://127.0.0.1:{}", port);`
Improvements to integration test 2018-11-26 07:13:22 +01:00
20190607 authentication (#55) Implement #2 anonymous authentication. This also puts into place the majority of the authentication framework, and starts to build the IDM layers ontop of the DB engine. 2019-07-12 07:28:46 +02:00			`test_fn(client, addr.as_str());`

			`// We DO NOT need teardown, as sqlite is in mem`
			`// let the tables hit the floor`
			`let _ = sys.stop();`
initial 2018-09-29 09:54:16 +02:00			`}`

			`#[test]`
Improvements to integration test 2018-11-26 07:13:22 +01:00			`fn test_server_proto() {`
20190607 authentication (#55) Implement #2 anonymous authentication. This also puts into place the majority of the authentication framework, and starts to build the IDM layers ontop of the DB engine. 2019-07-12 07:28:46 +02:00			`run_test(\|client: reqwest::Client, addr: &str\| {`
Add support for working server integration test! 2018-11-27 11:48:21 +01:00			`let e: Entry = serde_json::from_str(`
			`r#"{`
			`"attrs": {`
			`"class": ["person"],`
			`"name": ["testperson"],`
			`"description": ["testperson"],`
			`"displayname": ["testperson"]`
			`}`
			`}"#,`
			`)`
			`.unwrap();`

20190508 UUID on entry (#50) * Make UUID a proper type on entries * Add auth and ID data to relevant structures - this means we can start access controls! 2019-05-15 02:36:18 +02:00			`let c = CreateRequest {`
			`entries: vec![e],`
			`user_uuid: UUID_ADMIN.to_string(),`
			`};`
Improvements to integration test 2018-11-26 07:13:22 +01:00
20190607 authentication (#55) Implement #2 anonymous authentication. This also puts into place the majority of the authentication framework, and starts to build the IDM layers ontop of the DB engine. 2019-07-12 07:28:46 +02:00			`let dest = format!("{}/v1/create", addr);`

Improvements to integration test 2018-11-26 07:13:22 +01:00			`let mut response = client`
20190607 authentication (#55) Implement #2 anonymous authentication. This also puts into place the majority of the authentication framework, and starts to build the IDM layers ontop of the DB engine. 2019-07-12 07:28:46 +02:00			`.post(dest.as_str())`
Improvements to integration test 2018-11-26 07:13:22 +01:00			`.body(serde_json::to_string(&c).unwrap())`
			`.send()`
			`.unwrap();`

			`println!("{:?}", response);`
Major refactor of proto handling 2019-03-01 07:15:31 +01:00			`let r: OperationResponse = serde_json::from_str(response.text().unwrap().as_str()).unwrap();`
Improvements to integration test 2018-11-26 07:13:22 +01:00
			`println!("{:?}", r);`

			`// deserialise the response here`
			`// check it's valid.`

			`()`
			`});`
Begin datastructure and work on the core server 2018-10-03 13:21:21 +02:00			`}`

20190607 authentication (#55) Implement #2 anonymous authentication. This also puts into place the majority of the authentication framework, and starts to build the IDM layers ontop of the DB engine. 2019-07-12 07:28:46 +02:00			`#[test]`
			`fn test_server_whoami_anonymous() {`
			`run_test(\|client: reqwest::Client, addr: &str\| {`
			`// First show we are un-authenticated.`
			`let whoami_dest = format!("{}/v1/whoami", addr);`
			`let auth_dest = format!("{}/v1/auth", addr);`

			`let response = client.get(whoami_dest.as_str()).send().unwrap();`

			`// https://docs.rs/reqwest/0.9.15/reqwest/struct.Response.html`
			`println!("{:?}", response);`

			`assert!(response.status() == reqwest::StatusCode::UNAUTHORIZED);`

			`// Now login as anonymous`

			`// Setup the auth initialisation`
			`let auth_init = AuthRequest {`
			`step: AuthStep::Init("anonymous".to_string(), None),`
			`};`

			`let mut response = client`
			`.post(auth_dest.as_str())`
			`.body(serde_json::to_string(&auth_init).unwrap())`
			`.send()`
			`.unwrap();`
			`assert!(response.status() == reqwest::StatusCode::OK);`
			`// Check that we got the next step`
			`let r: AuthResponse = serde_json::from_str(response.text().unwrap().as_str()).unwrap();`
			`println!("==> AUTHRESPONSE ==> {:?}", r);`

			`assert!(match &r.state {`
			`AuthState::Continue(all_list) => {`
			`// Check anonymous is present? It will fail on next step if not ...`
			`true`
			`}`
			`_ => false,`
			`});`

			`// Send the credentials required now`
			`let auth_anon = AuthRequest {`
			`step: AuthStep::Creds(vec![AuthCredential::Anonymous]),`
			`};`

			`let mut response = client`
			`.post(auth_dest.as_str())`
			`.body(serde_json::to_string(&auth_anon).unwrap())`
			`.send()`
			`.unwrap();`
			`assert!(response.status() == reqwest::StatusCode::OK);`
			`// Check that we got the next step`
			`let r: AuthResponse = serde_json::from_str(response.text().unwrap().as_str()).unwrap();`
			`println!("==> AUTHRESPONSE ==> {:?}", r);`

			`assert!(match &r.state {`
			`AuthState::Success(uat) => {`
			`println!("==> Authed as uat; {:?}", uat);`
			`true`
			`}`
			`_ => false,`
			`});`

			`// Now do a whoami.`
			`let mut response = client.get(whoami_dest.as_str()).send().unwrap();`
			`println!("WHOAMI -> {}", response.text().unwrap().as_str());`
			`println!("WHOAMI STATUS -> {}", response.status());`
			`assert!(response.status() == reqwest::StatusCode::OK);`

			`// Check the json now ... response.json()`
			`});`
			`}`

			`// Test hitting all auth-required endpoints and assert they give unauthorized.`

Begin datastructure and work on the core server 2018-10-03 13:21:21 +02:00			`/*`
			`#[test]`
			`fn test_be_create_user() {`
Begin adding query server tests 2018-11-07 08:27:11 +01:00			`run_test!(\|log, server: actix::Addr<QueryServer>\| {`
			`let r1 = server.search();`
			`assert!(r1.len() == 0);`

			`let cr = server.create();`
			`assert!(cr.is_ok());`

			`let r2 = server.search();`
			`assert!(r2.len() == 1);`

			`future::ok(())`
initial 2018-09-29 09:54:16 +02:00			`});`
			`}`
Begin datastructure and work on the core server 2018-10-03 13:21:21 +02:00			`*/`