websockify/tests/test_websocketproxy.py

# vim: tabstop=4 shiftwidth=4 softtabstop=4

# Copyright(c) 2015 Red Hat, Inc All Rights Reserved.
#
#    Licensed under the Apache License, Version 2.0 (the "License"); you may
#    not use this file except in compliance with the License. You may obtain
#    a copy of the License at
#
#         http://www.apache.org/licenses/LICENSE-2.0
#
#    Unless required by applicable law or agreed to in writing, software
#    distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
#    WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
#    License for the specific language governing permissions and limitations
#    under the License.

""" Unit tests for websocketproxy """

import sys
import unittest
import unittest
import socket
from io import StringIO
from io import BytesIO
from unittest.mock import patch, MagicMock

from websockify import websocketproxy
from websockify import token_plugins
from websockify import auth_plugins


class FakeSocket(object):
    def __init__(self, data=b''):
        self._data = data

    def recv(self, amt, flags=None):
        res = self._data[0:amt]
        if not (flags & socket.MSG_PEEK):
            self._data = self._data[amt:]

        return res

    def makefile(self, mode='r', buffsize=None):
        if 'b' in mode:
            return BytesIO(self._data)
        else:
            return StringIO(self._data.decode('latin_1'))


class FakeServer(object):
    class EClose(Exception):
        pass

    def __init__(self):
        self.token_plugin = None
        self.auth_plugin = None
        self.wrap_cmd = None
        self.ssl_target = None
        self.unix_target = None

class ProxyRequestHandlerTestCase(unittest.TestCase):
    def setUp(self):
        super(ProxyRequestHandlerTestCase, self).setUp()
        self.handler = websocketproxy.ProxyRequestHandler(
            FakeSocket(), "127.0.0.1", FakeServer())
        self.handler.path = "https://localhost:6080/websockify?token=blah"
        self.handler.headers = None
        patch('websockify.websockifyserver.WebSockifyServer.socket').start()

    def tearDown(self):
        patch.stopall()
        super(ProxyRequestHandlerTestCase, self).tearDown()

    def test_get_target(self):
        class TestPlugin(token_plugins.BasePlugin):
            def lookup(self, token):
                return ("some host", "some port")

        host, port = self.handler.get_target(
            TestPlugin(None))

        self.assertEqual(host, "some host")
        self.assertEqual(port, "some port")

    def test_get_target_unix_socket(self):
        class TestPlugin(token_plugins.BasePlugin):
            def lookup(self, token):
                return ("unix_socket", "/tmp/socket")

        _, socket = self.handler.get_target(
            TestPlugin(None))

        self.assertEqual(socket, "/tmp/socket")

    def test_get_target_raises_error_on_unknown_token(self):
        class TestPlugin(token_plugins.BasePlugin):
            def lookup(self, token):
                return None

        with self.assertRaises(FakeServer.EClose):
            self.handler.get_target(TestPlugin(None))

    @patch('websockify.websocketproxy.ProxyRequestHandler.send_auth_error', MagicMock())
    def test_token_plugin(self):
        class TestPlugin(token_plugins.BasePlugin):
            def lookup(self, token):
                return (self.source + token).split(',')

        self.handler.server.token_plugin = TestPlugin("somehost,")
        self.handler.validate_connection()

        self.assertEqual(self.handler.server.target_host, "somehost")
        self.assertEqual(self.handler.server.target_port, "blah")

    @patch('websockify.websocketproxy.ProxyRequestHandler.send_auth_error', MagicMock())
    def test_auth_plugin(self):
        class TestPlugin(auth_plugins.BasePlugin):
            def authenticate(self, headers, target_host, target_port):
                if target_host == self.source:
                    raise auth_plugins.AuthenticationError(response_msg="some_error")

        self.handler.server.auth_plugin = TestPlugin("somehost")
        self.handler.server.target_host = "somehost"
        self.handler.server.target_port = "someport"

        with self.assertRaises(auth_plugins.AuthenticationError):
            self.handler.auth_connection()

        self.handler.server.target_host = "someotherhost"
        self.handler.auth_connection()
Added unit tests for websocket and websocketproxy To run the unit tests just run tox from the top level directory which will try to run unit tests for most versions of python. Requires tox to be installed. To run tox for a specifice env, run tox -e<env> e.g. for python 2.7 run 'tox -epy27'. Co-authored-by: natsume.takashi@lab.ntt.co.jp 2013-09-20 17:04:52 +01:00			`# vim: tabstop=4 shiftwidth=4 softtabstop=4`

Update Tests and Test Plugins This commit updates the unit tests to work with the current code and adds in tests for the auth and token plugin functionality. 2015-05-06 18:49:13 +01:00			`# Copyright(c) 2015 Red Hat, Inc All Rights Reserved.`
Added unit tests for websocket and websocketproxy To run the unit tests just run tox from the top level directory which will try to run unit tests for most versions of python. Requires tox to be installed. To run tox for a specifice env, run tox -e<env> e.g. for python 2.7 run 'tox -epy27'. Co-authored-by: natsume.takashi@lab.ntt.co.jp 2013-09-20 17:04:52 +01:00			`#`
			`# Licensed under the Apache License, Version 2.0 (the "License"); you may`
			`# not use this file except in compliance with the License. You may obtain`
			`# a copy of the License at`
			`#`
			`# http://www.apache.org/licenses/LICENSE-2.0`
			`#`
			`# Unless required by applicable law or agreed to in writing, software`
			`# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT`
			`# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the`
			`# License for the specific language governing permissions and limitations`
			`# under the License.`

			`""" Unit tests for websocketproxy """`
Update Tests and Test Plugins This commit updates the unit tests to work with the current code and adds in tests for the auth and token plugin functionality. 2015-05-06 18:49:13 +01:00
Added JWT/JWS/JWE tokens capability 2019-01-17 13:53:01 +00:00			`import sys`
Added temp dir for unit test data and cleanup Unit test data will now go to a temporary dir that will be deleted once the test completes. The unit tests also setup a logger which will persist so that it can be inspected once tests complete. Also fixes a bug where instance var is missing from decode_hybi() Co-authored-by: natsume.takashi@lab.ntt.co.jp 2013-11-13 12:01:05 +00:00			`import unittest`
Update Tests and Test Plugins This commit updates the unit tests to work with the current code and adds in tests for the auth and token plugin functionality. 2015-05-06 18:49:13 +01:00			`import unittest`
			`import socket`
Remove support for older Python All active distributions should now support at least Python 3.4, so let's clean things up by removing older compatibility code. 2020-12-14 08:13:11 +00:00			`from io import StringIO`
			`from io import BytesIO`
Use patch() as a decorator in tests Cleaner and more robust. 2021-01-29 12:09:19 +00:00			`from unittest.mock import patch, MagicMock`
Remove support for older Python All active distributions should now support at least Python 3.4, so let's clean things up by removing older compatibility code. 2020-12-14 08:13:11 +00:00
Added unit tests for websocket and websocketproxy To run the unit tests just run tox from the top level directory which will try to run unit tests for most versions of python. Requires tox to be installed. To run tox for a specifice env, run tox -e<env> e.g. for python 2.7 run 'tox -epy27'. Co-authored-by: natsume.takashi@lab.ntt.co.jp 2013-09-20 17:04:52 +01:00			`from websockify import websocketproxy`
Update Tests and Test Plugins This commit updates the unit tests to work with the current code and adds in tests for the auth and token plugin functionality. 2015-05-06 18:49:13 +01:00			`from websockify import token_plugins`
			`from websockify import auth_plugins`
Added unit tests for websocket and websocketproxy To run the unit tests just run tox from the top level directory which will try to run unit tests for most versions of python. Requires tox to be installed. To run tox for a specifice env, run tox -e<env> e.g. for python 2.7 run 'tox -epy27'. Co-authored-by: natsume.takashi@lab.ntt.co.jp 2013-09-20 17:04:52 +01:00

Update Tests and Test Plugins This commit updates the unit tests to work with the current code and adds in tests for the auth and token plugin functionality. 2015-05-06 18:49:13 +01:00			`class FakeSocket(object):`
Remove support for older Python All active distributions should now support at least Python 3.4, so let's clean things up by removing older compatibility code. 2020-12-14 08:13:11 +00:00			`def __init__(self, data=b''):`
			`self._data = data`
Added unit tests for websocket and websocketproxy To run the unit tests just run tox from the top level directory which will try to run unit tests for most versions of python. Requires tox to be installed. To run tox for a specifice env, run tox -e<env> e.g. for python 2.7 run 'tox -epy27'. Co-authored-by: natsume.takashi@lab.ntt.co.jp 2013-09-20 17:04:52 +01:00
Update Tests and Test Plugins This commit updates the unit tests to work with the current code and adds in tests for the auth and token plugin functionality. 2015-05-06 18:49:13 +01:00			`def recv(self, amt, flags=None):`
			`res = self._data[0:amt]`
			`if not (flags & socket.MSG_PEEK):`
			`self._data = self._data[amt:]`

			`return res`

			`def makefile(self, mode='r', buffsize=None):`
			`if 'b' in mode:`
			`return BytesIO(self._data)`
			`else:`
			`return StringIO(self._data.decode('latin_1'))`
Added unit tests for websocket and websocketproxy To run the unit tests just run tox from the top level directory which will try to run unit tests for most versions of python. Requires tox to be installed. To run tox for a specifice env, run tox -e<env> e.g. for python 2.7 run 'tox -epy27'. Co-authored-by: natsume.takashi@lab.ntt.co.jp 2013-09-20 17:04:52 +01:00

Update Tests and Test Plugins This commit updates the unit tests to work with the current code and adds in tests for the auth and token plugin functionality. 2015-05-06 18:49:13 +01:00			`class FakeServer(object):`
			`class EClose(Exception):`
			`pass`
Added unit tests for websocket and websocketproxy To run the unit tests just run tox from the top level directory which will try to run unit tests for most versions of python. Requires tox to be installed. To run tox for a specifice env, run tox -e<env> e.g. for python 2.7 run 'tox -epy27'. Co-authored-by: natsume.takashi@lab.ntt.co.jp 2013-09-20 17:04:52 +01:00
Update Tests and Test Plugins This commit updates the unit tests to work with the current code and adds in tests for the auth and token plugin functionality. 2015-05-06 18:49:13 +01:00			`def __init__(self):`
			`self.token_plugin = None`
			`self.auth_plugin = None`
			`self.wrap_cmd = None`
			`self.ssl_target = None`
			`self.unix_target = None`
Added temp dir for unit test data and cleanup Unit test data will now go to a temporary dir that will be deleted once the test completes. The unit tests also setup a logger which will persist so that it can be inspected once tests complete. Also fixes a bug where instance var is missing from decode_hybi() Co-authored-by: natsume.takashi@lab.ntt.co.jp 2013-11-13 12:01:05 +00:00
Update Tests and Test Plugins This commit updates the unit tests to work with the current code and adds in tests for the auth and token plugin functionality. 2015-05-06 18:49:13 +01:00			`class ProxyRequestHandlerTestCase(unittest.TestCase):`
Added unit tests for websocket and websocketproxy To run the unit tests just run tox from the top level directory which will try to run unit tests for most versions of python. Requires tox to be installed. To run tox for a specifice env, run tox -e<env> e.g. for python 2.7 run 'tox -epy27'. Co-authored-by: natsume.takashi@lab.ntt.co.jp 2013-09-20 17:04:52 +01:00			`def setUp(self):`
Update Tests and Test Plugins This commit updates the unit tests to work with the current code and adds in tests for the auth and token plugin functionality. 2015-05-06 18:49:13 +01:00			`super(ProxyRequestHandlerTestCase, self).setUp()`
			`self.handler = websocketproxy.ProxyRequestHandler(`
Remove support for older Python All active distributions should now support at least Python 3.4, so let's clean things up by removing older compatibility code. 2020-12-14 08:13:11 +00:00			`FakeSocket(), "127.0.0.1", FakeServer())`
Update Tests and Test Plugins This commit updates the unit tests to work with the current code and adds in tests for the auth and token plugin functionality. 2015-05-06 18:49:13 +01:00			`self.handler.path = "https://localhost:6080/websockify?token=blah"`
			`self.handler.headers = None`
Convert tests from mox to mock mox is deprecated upstream in favour of mock 2020-08-21 09:50:11 +01:00			`patch('websockify.websockifyserver.WebSockifyServer.socket').start()`
Added unit tests for websocket and websocketproxy To run the unit tests just run tox from the top level directory which will try to run unit tests for most versions of python. Requires tox to be installed. To run tox for a specifice env, run tox -e<env> e.g. for python 2.7 run 'tox -epy27'. Co-authored-by: natsume.takashi@lab.ntt.co.jp 2013-09-20 17:04:52 +01:00
			`def tearDown(self):`
Convert tests from mox to mock mox is deprecated upstream in favour of mock 2020-08-21 09:50:11 +01:00			`patch.stopall()`
Update Tests and Test Plugins This commit updates the unit tests to work with the current code and adds in tests for the auth and token plugin functionality. 2015-05-06 18:49:13 +01:00			`super(ProxyRequestHandlerTestCase, self).tearDown()`

			`def test_get_target(self):`
			`class TestPlugin(token_plugins.BasePlugin):`
			`def lookup(self, token):`
			`return ("some host", "some port")`

			`host, port = self.handler.get_target(`
Added --host-token to allow choosing target by hostname. 2018-07-05 00:54:19 +01:00			`TestPlugin(None))`
Update Tests and Test Plugins This commit updates the unit tests to work with the current code and adds in tests for the auth and token plugin functionality. 2015-05-06 18:49:13 +01:00
			`self.assertEqual(host, "some host")`
			`self.assertEqual(port, "some port")`

Enable unix socket to work with token plugin This commit adds support to unix sockets in the token plugin, thus it is possible to have a token files like: token: unix_socket:/path/to/socket_file A single websockify instance will be able to handle multiple sockets. Signed-off-by: Jose Ricardo Ziviani <jose@ziviani.net> 2016-02-16 13:42:27 +00:00			`def test_get_target_unix_socket(self):`
			`class TestPlugin(token_plugins.BasePlugin):`
			`def lookup(self, token):`
			`return ("unix_socket", "/tmp/socket")`

			`_, socket = self.handler.get_target(`
Added --host-token to allow choosing target by hostname. 2018-07-05 00:54:19 +01:00			`TestPlugin(None))`
Enable unix socket to work with token plugin This commit adds support to unix sockets in the token plugin, thus it is possible to have a token files like: token: unix_socket:/path/to/socket_file A single websockify instance will be able to handle multiple sockets. Signed-off-by: Jose Ricardo Ziviani <jose@ziviani.net> 2016-02-16 13:42:27 +00:00
			`self.assertEqual(socket, "/tmp/socket")`

Update Tests and Test Plugins This commit updates the unit tests to work with the current code and adds in tests for the auth and token plugin functionality. 2015-05-06 18:49:13 +01:00			`def test_get_target_raises_error_on_unknown_token(self):`
			`class TestPlugin(token_plugins.BasePlugin):`
			`def lookup(self, token):`
			`return None`

Use assertRaises() as a context manager Makes the code a lot easier to read. 2021-01-29 12:10:16 +00:00			`with self.assertRaises(FakeServer.EClose):`
			`self.handler.get_target(TestPlugin(None))`
Update Tests and Test Plugins This commit updates the unit tests to work with the current code and adds in tests for the auth and token plugin functionality. 2015-05-06 18:49:13 +01:00
Use patch() as a decorator in tests Cleaner and more robust. 2021-01-29 12:09:19 +00:00			`@patch('websockify.websocketproxy.ProxyRequestHandler.send_auth_error', MagicMock())`
Update Tests and Test Plugins This commit updates the unit tests to work with the current code and adds in tests for the auth and token plugin functionality. 2015-05-06 18:49:13 +01:00			`def test_token_plugin(self):`
			`class TestPlugin(token_plugins.BasePlugin):`
			`def lookup(self, token):`
			`return (self.source + token).split(',')`

			`self.handler.server.token_plugin = TestPlugin("somehost,")`
Rework Auth Plugins to Support HTTP Auth This commit reworks auth plugins slightly to enable support for HTTP authentication. By raising an AuthenticationError, auth plugins can now return HTTP responses to the upgrade request (such as 401). Related to kanaka/noVNC#522 2015-08-25 21:44:24 +01:00			`self.handler.validate_connection()`
Update Tests and Test Plugins This commit updates the unit tests to work with the current code and adds in tests for the auth and token plugin functionality. 2015-05-06 18:49:13 +01:00
			`self.assertEqual(self.handler.server.target_host, "somehost")`
			`self.assertEqual(self.handler.server.target_port, "blah")`

Use patch() as a decorator in tests Cleaner and more robust. 2021-01-29 12:09:19 +00:00			`@patch('websockify.websocketproxy.ProxyRequestHandler.send_auth_error', MagicMock())`
Update Tests and Test Plugins This commit updates the unit tests to work with the current code and adds in tests for the auth and token plugin functionality. 2015-05-06 18:49:13 +01:00			`def test_auth_plugin(self):`
			`class TestPlugin(auth_plugins.BasePlugin):`
			`def authenticate(self, headers, target_host, target_port):`
			`if target_host == self.source:`
Rework Auth Plugins to Support HTTP Auth This commit reworks auth plugins slightly to enable support for HTTP authentication. By raising an AuthenticationError, auth plugins can now return HTTP responses to the upgrade request (such as 401). Related to kanaka/noVNC#522 2015-08-25 21:44:24 +01:00			`raise auth_plugins.AuthenticationError(response_msg="some_error")`
Update Tests and Test Plugins This commit updates the unit tests to work with the current code and adds in tests for the auth and token plugin functionality. 2015-05-06 18:49:13 +01:00
			`self.handler.server.auth_plugin = TestPlugin("somehost")`
			`self.handler.server.target_host = "somehost"`
			`self.handler.server.target_port = "someport"`

Use assertRaises() as a context manager Makes the code a lot easier to read. 2021-01-29 12:10:16 +00:00			`with self.assertRaises(auth_plugins.AuthenticationError):`
			`self.handler.auth_connection()`
Update Tests and Test Plugins This commit updates the unit tests to work with the current code and adds in tests for the auth and token plugin functionality. 2015-05-06 18:49:13 +01:00
			`self.handler.server.target_host = "someotherhost"`
Added --web-auth option to require authentication to access the webserver. BasicHTTPAuth plugin now issues 401 on bad credentials to allow the user to try again. 2018-07-05 00:48:08 +01:00			`self.handler.auth_connection()`
Update Tests and Test Plugins This commit updates the unit tests to work with the current code and adds in tests for the auth and token plugin functionality. 2015-05-06 18:49:13 +01:00