mirror of
https://github.com/labstack/echo.git
synced 2024-12-18 16:20:53 +02:00
6d9e043284
This reintroduces support for Go modules, as v4. CloseNotifier() is removed as it has been obsoleted, see https://golang.org/doc/go1.11#net/http It was already NOT working (not sending signals) as of 1.11 the functionality was gone, we merely deleted the functions that exposed it. If anyone still relies on it they should migrate to using `c.Request().Context().Done()` instead. Closes #1268, #1255
76 lines
2.0 KiB
Go
76 lines
2.0 KiB
Go
package middleware
|
|
|
|
import (
|
|
"net/http"
|
|
"net/http/httptest"
|
|
"net/url"
|
|
"strings"
|
|
"testing"
|
|
|
|
"github.com/labstack/echo/v4"
|
|
"github.com/stretchr/testify/assert"
|
|
)
|
|
|
|
func TestKeyAuth(t *testing.T) {
|
|
e := echo.New()
|
|
req := httptest.NewRequest(http.MethodGet, "/", nil)
|
|
rec := httptest.NewRecorder()
|
|
c := e.NewContext(req, rec)
|
|
config := KeyAuthConfig{
|
|
Validator: func(key string, c echo.Context) (bool, error) {
|
|
return key == "valid-key", nil
|
|
},
|
|
}
|
|
h := KeyAuthWithConfig(config)(func(c echo.Context) error {
|
|
return c.String(http.StatusOK, "test")
|
|
})
|
|
|
|
assert := assert.New(t)
|
|
|
|
// Valid key
|
|
auth := DefaultKeyAuthConfig.AuthScheme + " " + "valid-key"
|
|
req.Header.Set(echo.HeaderAuthorization, auth)
|
|
assert.NoError(h(c))
|
|
|
|
// Invalid key
|
|
auth = DefaultKeyAuthConfig.AuthScheme + " " + "invalid-key"
|
|
req.Header.Set(echo.HeaderAuthorization, auth)
|
|
he := h(c).(*echo.HTTPError)
|
|
assert.Equal(http.StatusUnauthorized, he.Code)
|
|
|
|
// Missing Authorization header
|
|
req.Header.Del(echo.HeaderAuthorization)
|
|
he = h(c).(*echo.HTTPError)
|
|
assert.Equal(http.StatusBadRequest, he.Code)
|
|
|
|
// Key from custom header
|
|
config.KeyLookup = "header:API-Key"
|
|
h = KeyAuthWithConfig(config)(func(c echo.Context) error {
|
|
return c.String(http.StatusOK, "test")
|
|
})
|
|
req.Header.Set("API-Key", "valid-key")
|
|
assert.NoError(h(c))
|
|
|
|
// Key from query string
|
|
config.KeyLookup = "query:key"
|
|
h = KeyAuthWithConfig(config)(func(c echo.Context) error {
|
|
return c.String(http.StatusOK, "test")
|
|
})
|
|
q := req.URL.Query()
|
|
q.Add("key", "valid-key")
|
|
req.URL.RawQuery = q.Encode()
|
|
assert.NoError(h(c))
|
|
|
|
// Key from form
|
|
config.KeyLookup = "form:key"
|
|
h = KeyAuthWithConfig(config)(func(c echo.Context) error {
|
|
return c.String(http.StatusOK, "test")
|
|
})
|
|
f := make(url.Values)
|
|
f.Set("key", "valid-key")
|
|
req = httptest.NewRequest(http.MethodPost, "/", strings.NewReader(f.Encode()))
|
|
req.Header.Set(echo.HeaderContentType, echo.MIMEApplicationForm)
|
|
c = e.NewContext(req, rec)
|
|
assert.NoError(h(c))
|
|
}
|