mirror of
https://github.com/labstack/echo.git
synced 2024-12-24 20:14:31 +02:00
260 lines
7.2 KiB
Go
260 lines
7.2 KiB
Go
package middleware
|
|
|
|
import (
|
|
"errors"
|
|
"net/http"
|
|
"net/http/httptest"
|
|
"strings"
|
|
"testing"
|
|
|
|
"github.com/labstack/echo/v4"
|
|
"github.com/stretchr/testify/assert"
|
|
)
|
|
|
|
func testKeyValidator(key string, c echo.Context) (bool, error) {
|
|
switch key {
|
|
case "valid-key":
|
|
return true, nil
|
|
case "error-key":
|
|
return false, errors.New("some user defined error")
|
|
default:
|
|
return false, nil
|
|
}
|
|
}
|
|
|
|
func TestKeyAuth(t *testing.T) {
|
|
handlerCalled := false
|
|
handler := func(c echo.Context) error {
|
|
handlerCalled = true
|
|
return c.String(http.StatusOK, "test")
|
|
}
|
|
middlewareChain := KeyAuth(testKeyValidator)(handler)
|
|
|
|
e := echo.New()
|
|
req := httptest.NewRequest(http.MethodGet, "/", nil)
|
|
req.Header.Set(echo.HeaderAuthorization, "Bearer valid-key")
|
|
rec := httptest.NewRecorder()
|
|
c := e.NewContext(req, rec)
|
|
|
|
err := middlewareChain(c)
|
|
|
|
assert.NoError(t, err)
|
|
assert.True(t, handlerCalled)
|
|
}
|
|
|
|
func TestKeyAuthWithConfig(t *testing.T) {
|
|
var testCases = []struct {
|
|
name string
|
|
givenRequestFunc func() *http.Request
|
|
givenRequest func(req *http.Request)
|
|
whenConfig func(conf *KeyAuthConfig)
|
|
expectHandlerCalled bool
|
|
expectError string
|
|
}{
|
|
{
|
|
name: "ok, defaults, key from header",
|
|
givenRequest: func(req *http.Request) {
|
|
req.Header.Set(echo.HeaderAuthorization, "Bearer valid-key")
|
|
},
|
|
expectHandlerCalled: true,
|
|
},
|
|
{
|
|
name: "ok, custom skipper",
|
|
givenRequest: func(req *http.Request) {
|
|
req.Header.Set(echo.HeaderAuthorization, "Bearer error-key")
|
|
},
|
|
whenConfig: func(conf *KeyAuthConfig) {
|
|
conf.Skipper = func(context echo.Context) bool {
|
|
return true
|
|
}
|
|
},
|
|
expectHandlerCalled: true,
|
|
},
|
|
{
|
|
name: "nok, defaults, invalid key from header, Authorization: Bearer",
|
|
givenRequest: func(req *http.Request) {
|
|
req.Header.Set(echo.HeaderAuthorization, "Bearer invalid-key")
|
|
},
|
|
expectHandlerCalled: false,
|
|
expectError: "code=401, message=Unauthorized",
|
|
},
|
|
{
|
|
name: "nok, defaults, invalid scheme in header",
|
|
givenRequest: func(req *http.Request) {
|
|
req.Header.Set(echo.HeaderAuthorization, "Bear valid-key")
|
|
},
|
|
expectHandlerCalled: false,
|
|
expectError: "code=400, message=invalid key in the request header",
|
|
},
|
|
{
|
|
name: "nok, defaults, missing header",
|
|
givenRequest: func(req *http.Request) {},
|
|
expectHandlerCalled: false,
|
|
expectError: "code=400, message=missing key in request header",
|
|
},
|
|
{
|
|
name: "ok, custom key lookup, header",
|
|
givenRequest: func(req *http.Request) {
|
|
req.Header.Set("API-Key", "valid-key")
|
|
},
|
|
whenConfig: func(conf *KeyAuthConfig) {
|
|
conf.KeyLookup = "header:API-Key"
|
|
},
|
|
expectHandlerCalled: true,
|
|
},
|
|
{
|
|
name: "nok, custom key lookup, missing header",
|
|
givenRequest: func(req *http.Request) {
|
|
},
|
|
whenConfig: func(conf *KeyAuthConfig) {
|
|
conf.KeyLookup = "header:API-Key"
|
|
},
|
|
expectHandlerCalled: false,
|
|
expectError: "code=400, message=missing key in request header",
|
|
},
|
|
{
|
|
name: "ok, custom key lookup, query",
|
|
givenRequest: func(req *http.Request) {
|
|
q := req.URL.Query()
|
|
q.Add("key", "valid-key")
|
|
req.URL.RawQuery = q.Encode()
|
|
},
|
|
whenConfig: func(conf *KeyAuthConfig) {
|
|
conf.KeyLookup = "query:key"
|
|
},
|
|
expectHandlerCalled: true,
|
|
},
|
|
{
|
|
name: "nok, custom key lookup, missing query param",
|
|
whenConfig: func(conf *KeyAuthConfig) {
|
|
conf.KeyLookup = "query:key"
|
|
},
|
|
expectHandlerCalled: false,
|
|
expectError: "code=400, message=missing key in the query string",
|
|
},
|
|
{
|
|
name: "ok, custom key lookup, form",
|
|
givenRequestFunc: func() *http.Request {
|
|
req := httptest.NewRequest(http.MethodPost, "/", strings.NewReader("key=valid-key"))
|
|
req.Header.Set(echo.HeaderContentType, echo.MIMEApplicationForm)
|
|
return req
|
|
},
|
|
whenConfig: func(conf *KeyAuthConfig) {
|
|
conf.KeyLookup = "form:key"
|
|
},
|
|
expectHandlerCalled: true,
|
|
},
|
|
{
|
|
name: "nok, custom key lookup, missing key in form",
|
|
givenRequestFunc: func() *http.Request {
|
|
req := httptest.NewRequest(http.MethodPost, "/", strings.NewReader("xxx=valid-key"))
|
|
req.Header.Set(echo.HeaderContentType, echo.MIMEApplicationForm)
|
|
return req
|
|
},
|
|
whenConfig: func(conf *KeyAuthConfig) {
|
|
conf.KeyLookup = "form:key"
|
|
},
|
|
expectHandlerCalled: false,
|
|
expectError: "code=400, message=missing key in the form",
|
|
},
|
|
{
|
|
name: "ok, custom key lookup, cookie",
|
|
givenRequest: func(req *http.Request) {
|
|
req.AddCookie(&http.Cookie{
|
|
Name: "key",
|
|
Value: "valid-key",
|
|
})
|
|
q := req.URL.Query()
|
|
q.Add("key", "valid-key")
|
|
req.URL.RawQuery = q.Encode()
|
|
},
|
|
whenConfig: func(conf *KeyAuthConfig) {
|
|
conf.KeyLookup = "cookie:key"
|
|
},
|
|
expectHandlerCalled: true,
|
|
},
|
|
{
|
|
name: "nok, custom key lookup, missing cookie param",
|
|
whenConfig: func(conf *KeyAuthConfig) {
|
|
conf.KeyLookup = "cookie:key"
|
|
},
|
|
expectHandlerCalled: false,
|
|
expectError: "code=400, message=missing key in cookies: http: named cookie not present",
|
|
},
|
|
{
|
|
name: "nok, custom errorHandler, error from extractor",
|
|
whenConfig: func(conf *KeyAuthConfig) {
|
|
conf.KeyLookup = "header:token"
|
|
conf.ErrorHandler = func(err error, context echo.Context) error {
|
|
httpError := echo.NewHTTPError(http.StatusTeapot, "custom")
|
|
httpError.Internal = err
|
|
return httpError
|
|
}
|
|
},
|
|
expectHandlerCalled: false,
|
|
expectError: "code=418, message=custom, internal=missing key in request header",
|
|
},
|
|
{
|
|
name: "nok, custom errorHandler, error from validator",
|
|
givenRequest: func(req *http.Request) {
|
|
req.Header.Set(echo.HeaderAuthorization, "Bearer error-key")
|
|
},
|
|
whenConfig: func(conf *KeyAuthConfig) {
|
|
conf.ErrorHandler = func(err error, context echo.Context) error {
|
|
httpError := echo.NewHTTPError(http.StatusTeapot, "custom")
|
|
httpError.Internal = err
|
|
return httpError
|
|
}
|
|
},
|
|
expectHandlerCalled: false,
|
|
expectError: "code=418, message=custom, internal=some user defined error",
|
|
},
|
|
{
|
|
name: "nok, defaults, error from validator",
|
|
givenRequest: func(req *http.Request) {
|
|
req.Header.Set(echo.HeaderAuthorization, "Bearer error-key")
|
|
},
|
|
whenConfig: func(conf *KeyAuthConfig) {},
|
|
expectHandlerCalled: false,
|
|
expectError: "code=401, message=invalid key, internal=some user defined error",
|
|
},
|
|
}
|
|
|
|
for _, tc := range testCases {
|
|
t.Run(tc.name, func(t *testing.T) {
|
|
handlerCalled := false
|
|
handler := func(c echo.Context) error {
|
|
handlerCalled = true
|
|
return c.String(http.StatusOK, "test")
|
|
}
|
|
config := KeyAuthConfig{
|
|
Validator: testKeyValidator,
|
|
}
|
|
if tc.whenConfig != nil {
|
|
tc.whenConfig(&config)
|
|
}
|
|
middlewareChain := KeyAuthWithConfig(config)(handler)
|
|
|
|
e := echo.New()
|
|
req := httptest.NewRequest(http.MethodGet, "/", nil)
|
|
if tc.givenRequestFunc != nil {
|
|
req = tc.givenRequestFunc()
|
|
}
|
|
if tc.givenRequest != nil {
|
|
tc.givenRequest(req)
|
|
}
|
|
rec := httptest.NewRecorder()
|
|
c := e.NewContext(req, rec)
|
|
|
|
err := middlewareChain(c)
|
|
|
|
assert.Equal(t, tc.expectHandlerCalled, handlerCalled)
|
|
if tc.expectError != "" {
|
|
assert.EqualError(t, err, tc.expectError)
|
|
} else {
|
|
assert.NoError(t, err)
|
|
}
|
|
})
|
|
}
|
|
}
|