Add HTPasswdValidator to basic authentication package

2025-12-01 22:51:45 +02:00 · 2020-07-18 00:41:42 +01:00
parent 895403cb9b
commit 7d8ee61254
7 changed files with 239 additions and 0 deletions
--- a/pkg/authentication/basic/htpasswd_test.go
+++ b/pkg/authentication/basic/htpasswd_test.go
@@ -0,0 +1,96 @@
+package basic
+
+import (
+	. "github.com/onsi/ginkgo"
+	. "github.com/onsi/gomega"
+)
+
+const (
+	adminUser     = "admin"
+	adminPassword = "Adm1n1str$t0r"
+	user1         = "user1"
+	user1Password = "UsErOn3P455"
+	user2         = "user2"
+	user2Password = "us3r2P455W0Rd!"
+)
+
+var _ = Describe("HTPasswd Suite", func() {
+	Context("with an HTPassword Validator", func() {
+		assertHtpasswdMapFromFile := func(filePath string) {
+			var htpasswd *htpasswdMap
+			var err error
+
+			BeforeEach(func() {
+				var validator Validator
+				validator, err = NewHTPasswdValidator(filePath)
+
+				var ok bool
+				htpasswd, ok = validator.(*htpasswdMap)
+				Expect(ok).To(BeTrue())
+			})
+
+			It("does not return an error", func() {
+				Expect(err).ToNot(HaveOccurred())
+			})
+
+			It("has the correct number of users", func() {
+				Expect(htpasswd.users).To(HaveLen(3))
+			})
+
+			It("accepts the correct passwords", func() {
+				Expect(htpasswd.Validate(adminUser, adminPassword)).To(BeTrue())
+				Expect(htpasswd.Validate(user1, user1Password)).To(BeTrue())
+				Expect(htpasswd.Validate(user2, user2Password)).To(BeTrue())
+			})
+
+			It("rejects incorrect passwords", func() {
+				Expect(htpasswd.Validate(adminUser, "asvdfda")).To(BeFalse())
+				Expect(htpasswd.Validate(user1, "BHEdgbtr")).To(BeFalse())
+				Expect(htpasswd.Validate(user2, "12345")).To(BeFalse())
+			})
+
+			It("rejects a non existent user", func() {
+				// Users are case sensitive
+				Expect(htpasswd.Validate("ADMIN", adminPassword)).To(BeFalse())
+			})
+		}
+
+		Context("load from file", func() {
+			Context("with sha1 entries", func() {
+				const filePath = "./test/htpasswd-sha1.txt"
+
+				assertHtpasswdMapFromFile(filePath)
+			})
+
+			Context("with bcrypt entries", func() {
+				const filePath = "./test/htpasswd-bcrypt.txt"
+
+				assertHtpasswdMapFromFile(filePath)
+			})
+
+			Context("with mixed entries", func() {
+				const filePath = "./test/htpasswd-mixed.txt"
+
+				assertHtpasswdMapFromFile(filePath)
+			})
+
+			Context("with a non existent file", func() {
+				const filePath = "./test/htpasswd-doesnt-exist.txt"
+				var validator Validator
+				var err error
+
+				BeforeEach(func() {
+					validator, err = NewHTPasswdValidator(filePath)
+				})
+
+				It("returns an error", func() {
+					Expect(err).To(MatchError("could not open htpasswd file: open ./test/htpasswd-doesnt-exist.txt: no such file or directory"))
+				})
+
+				It("returns a nil validator", func() {
+					Expect(validator).To(BeNil())
+				})
+			})
+		})
+	})
+})