2024-07-26 04:22:49 -07:00
|
|
|
/** @jest-environment node */
|
|
|
|
|
|
|
|
type ProtocolHandler = (request: Request)=> Promise<Response>;
|
|
|
|
const customProtocols: Map<string, ProtocolHandler> = new Map();
|
|
|
|
|
|
|
|
const handleProtocolMock = jest.fn((scheme: string, handler: ProtocolHandler) => {
|
|
|
|
customProtocols.set(scheme, handler);
|
|
|
|
});
|
|
|
|
const fetchMock = jest.fn(async url => new Response(`Mock response to ${url}`));
|
|
|
|
|
|
|
|
jest.doMock('electron', () => {
|
|
|
|
return {
|
|
|
|
net: {
|
|
|
|
fetch: fetchMock,
|
|
|
|
},
|
|
|
|
protocol: {
|
|
|
|
handle: handleProtocolMock,
|
|
|
|
},
|
|
|
|
};
|
|
|
|
});
|
|
|
|
|
|
|
|
import Logger from '@joplin/utils/Logger';
|
|
|
|
import handleCustomProtocols from './handleCustomProtocols';
|
|
|
|
import { supportDir } from '@joplin/lib/testing/test-utils';
|
|
|
|
import { join } from 'path';
|
|
|
|
import { stat } from 'fs-extra';
|
|
|
|
import { toForwardSlashes } from '@joplin/utils/path';
|
|
|
|
|
|
|
|
const setUpProtocolHandler = () => {
|
|
|
|
const logger = Logger.create('test-logger');
|
|
|
|
const protocolHandler = handleCustomProtocols(logger);
|
|
|
|
|
|
|
|
expect(handleProtocolMock).toHaveBeenCalledTimes(1);
|
|
|
|
|
|
|
|
// Should have registered the protocol.
|
|
|
|
const lastCallArgs = handleProtocolMock.mock.lastCall;
|
|
|
|
expect(lastCallArgs[0]).toBe('joplin-content');
|
|
|
|
|
|
|
|
// Extract the request listener so that it can be called by our tests.
|
|
|
|
const onRequestListener = lastCallArgs[1];
|
|
|
|
|
|
|
|
return { protocolHandler, onRequestListener };
|
|
|
|
};
|
|
|
|
|
2024-10-26 13:08:51 -07:00
|
|
|
interface ExpectBlockedOptions {
|
|
|
|
host?: string;
|
|
|
|
}
|
|
|
|
|
2024-08-17 04:22:13 -07:00
|
|
|
// Although none of the paths in this test suite point to real files, file paths must be in
|
|
|
|
// a certain format on Windows to avoid invalid path exceptions.
|
|
|
|
const toPlatformPath = (path: string) => process.platform === 'win32' ? `C:/${path}` : path;
|
|
|
|
|
2024-10-26 13:08:51 -07:00
|
|
|
const toAccessUrl = (path: string, { host = 'note-viewer' }: ExpectBlockedOptions = {}) => {
|
|
|
|
return `joplin-content://${host}/${toPlatformPath(path)}`;
|
|
|
|
};
|
2024-07-26 04:22:49 -07:00
|
|
|
|
2024-10-26 13:08:51 -07:00
|
|
|
const expectPathToBeBlocked = async (onRequestListener: ProtocolHandler, filePath: string, options?: ExpectBlockedOptions) => {
|
|
|
|
const url = toAccessUrl(filePath, options);
|
2024-07-26 04:22:49 -07:00
|
|
|
await expect(
|
|
|
|
async () => await onRequestListener(new Request(url)),
|
2024-10-26 13:08:51 -07:00
|
|
|
).rejects.toThrow(/Read access not granted for URL|Invalid or missing media access key|Media access denied/);
|
2024-07-26 04:22:49 -07:00
|
|
|
};
|
|
|
|
|
2024-10-26 13:08:51 -07:00
|
|
|
const expectPathToBeUnblocked = async (onRequestListener: ProtocolHandler, filePath: string, options?: ExpectBlockedOptions) => {
|
|
|
|
const url = toAccessUrl(filePath, options);
|
2024-08-17 04:22:13 -07:00
|
|
|
const handleRequestResult = await onRequestListener(
|
2024-10-26 13:08:51 -07:00
|
|
|
new Request(url),
|
2024-08-17 04:22:13 -07:00
|
|
|
);
|
2024-07-26 04:22:49 -07:00
|
|
|
expect(handleRequestResult.body).toBeTruthy();
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
|
|
describe('handleCustomProtocols', () => {
|
|
|
|
beforeEach(() => {
|
|
|
|
// Reset mocks between tests to ensure a clean testing environment.
|
|
|
|
customProtocols.clear();
|
|
|
|
handleProtocolMock.mockClear();
|
|
|
|
fetchMock.mockClear();
|
|
|
|
});
|
|
|
|
|
|
|
|
test('should only allow access to files in allowed directories', async () => {
|
|
|
|
const { protocolHandler, onRequestListener } = setUpProtocolHandler();
|
|
|
|
|
|
|
|
await expectPathToBeBlocked(onRequestListener, '/test/path');
|
|
|
|
await expectPathToBeBlocked(onRequestListener, '/');
|
|
|
|
|
2024-08-17 04:22:13 -07:00
|
|
|
protocolHandler.allowReadAccessToDirectory(toPlatformPath('/test/path/'));
|
2024-07-26 04:22:49 -07:00
|
|
|
await expectPathToBeUnblocked(onRequestListener, '/test/path');
|
|
|
|
await expectPathToBeUnblocked(onRequestListener, '/test/path/a.txt');
|
|
|
|
await expectPathToBeUnblocked(onRequestListener, '/test/path/b.txt');
|
|
|
|
|
|
|
|
await expectPathToBeBlocked(onRequestListener, '/');
|
|
|
|
await expectPathToBeBlocked(onRequestListener, '/test/path2');
|
|
|
|
await expectPathToBeBlocked(onRequestListener, '/test/path/../a.txt');
|
|
|
|
|
2024-08-17 04:22:13 -07:00
|
|
|
protocolHandler.allowReadAccessToDirectory(toPlatformPath('/another/path/here'));
|
2024-07-26 04:22:49 -07:00
|
|
|
|
|
|
|
await expectPathToBeBlocked(onRequestListener, '/another/path/here2');
|
|
|
|
await expectPathToBeUnblocked(onRequestListener, '/another/path/here');
|
|
|
|
await expectPathToBeUnblocked(onRequestListener, '/another/path/here/2');
|
|
|
|
});
|
|
|
|
|
|
|
|
test('should be possible to allow and remove read access for a file', async () => {
|
|
|
|
const { protocolHandler, onRequestListener } = setUpProtocolHandler();
|
|
|
|
await expectPathToBeBlocked(onRequestListener, '/test/path/a.txt');
|
|
|
|
|
|
|
|
const handle1 = protocolHandler.allowReadAccessToFile('/test/path/a.txt');
|
|
|
|
await expectPathToBeUnblocked(onRequestListener, '/test/path/a.txt');
|
|
|
|
const handle2 = protocolHandler.allowReadAccessToFile('/test/path/a.txt');
|
|
|
|
await expectPathToBeUnblocked(onRequestListener, '/test/path/a.txt');
|
|
|
|
handle1.remove();
|
|
|
|
await expectPathToBeUnblocked(onRequestListener, '/test/path/a.txt');
|
|
|
|
handle2.remove();
|
|
|
|
|
|
|
|
await expectPathToBeBlocked(onRequestListener, '/test/path/a.txt');
|
|
|
|
});
|
|
|
|
|
2024-10-26 13:08:51 -07:00
|
|
|
test('should only allow access to file-media/ URLs when given the correct access key', async () => {
|
|
|
|
const { protocolHandler, onRequestListener } = setUpProtocolHandler();
|
|
|
|
const expectBlocked = (path: string) => {
|
|
|
|
return expectPathToBeBlocked(onRequestListener, path, { host: 'file-media' });
|
|
|
|
};
|
|
|
|
const expectUnblocked = (path: string) => {
|
|
|
|
return expectPathToBeUnblocked(onRequestListener, path, { host: 'file-media' });
|
|
|
|
};
|
|
|
|
|
|
|
|
fetchMock.mockImplementation(async (_url: string) => {
|
|
|
|
return new Response('', { headers: { 'Content-Type': 'image/jpeg' } });
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
|
|
const testPath = join(supportDir, 'photo.jpg');
|
|
|
|
await expectBlocked(testPath);
|
|
|
|
await expectBlocked(`${testPath}?access-key=wrongKey`);
|
|
|
|
await expectBlocked(`${testPath}?access-key=false`);
|
|
|
|
|
|
|
|
protocolHandler.setMediaAccessEnabled(true);
|
|
|
|
const key = protocolHandler.getMediaAccessKey();
|
|
|
|
await expectUnblocked(`${testPath}?access-key=${key}`);
|
|
|
|
await expectBlocked(`${testPath}?access-key=null`);
|
|
|
|
protocolHandler.setMediaAccessEnabled(false);
|
|
|
|
|
|
|
|
await expectBlocked(`${testPath}?access-key=${key}`);
|
|
|
|
});
|
|
|
|
|
2024-07-26 04:22:49 -07:00
|
|
|
test('should allow requesting part of a file', async () => {
|
|
|
|
const { protocolHandler, onRequestListener } = setUpProtocolHandler();
|
|
|
|
|
|
|
|
protocolHandler.allowReadAccessToDirectory(`${supportDir}/`);
|
|
|
|
const targetFilePath = join(supportDir, 'photo.jpg');
|
|
|
|
const targetUrl = `joplin-content://note-viewer/${toForwardSlashes(targetFilePath)}`;
|
|
|
|
|
|
|
|
// Should return correct headers for an in-range response,
|
|
|
|
let response = await onRequestListener(new Request(
|
|
|
|
targetUrl,
|
|
|
|
{ headers: { 'Range': 'bytes=10-20' } },
|
|
|
|
));
|
|
|
|
|
|
|
|
expect(response.status).toBe(206); // Partial content
|
|
|
|
expect(response.headers.get('Accept-Ranges')).toBe('bytes');
|
|
|
|
expect(response.headers.get('Content-Type')).toBe('image/jpeg');
|
|
|
|
expect(response.headers.get('Content-Length')).toBe('11');
|
|
|
|
const targetStats = await stat(targetFilePath);
|
|
|
|
expect(response.headers.get('Content-Range')).toBe(`bytes 10-20/${targetStats.size}`);
|
|
|
|
|
|
|
|
// Should return correct headers for an out-of-range response,
|
|
|
|
response = await onRequestListener(new Request(
|
|
|
|
targetUrl,
|
|
|
|
{ headers: { 'Range': 'bytes=99999999999999-999999999999990' } },
|
|
|
|
));
|
|
|
|
expect(response.status).toBe(416); // Out of range
|
|
|
|
});
|
|
|
|
});
|