[thirdparty/squid.git] / src / tests / testAuth.cc

#define SQUID_UNIT_TEST 1

#include "squid-old.h"

#if USE_AUTH

#include "testAuth.h"
#include "auth/Gadgets.h"
#include "auth/UserRequest.h"
#include "auth/Scheme.h"
#include "auth/Config.h"
#include "Mem.h"

CPPUNIT_TEST_SUITE_REGISTRATION( testAuth );
CPPUNIT_TEST_SUITE_REGISTRATION( testAuthConfig );
CPPUNIT_TEST_SUITE_REGISTRATION( testAuthUserRequest );
#if HAVE_AUTH_MODULE_BASIC
CPPUNIT_TEST_SUITE_REGISTRATION( testAuthBasicUserRequest );
#endif
#if HAVE_AUTH_MODULE_DIGEST
CPPUNIT_TEST_SUITE_REGISTRATION( testAuthDigestUserRequest );
#endif
#if HAVE_AUTH_MODULE_NTLM
CPPUNIT_TEST_SUITE_REGISTRATION( testAuthNTLMUserRequest );
#endif
#if HAVE_AUTH_MODULE_NEGOTIATE
CPPUNIT_TEST_SUITE_REGISTRATION( testAuthNegotiateUserRequest );
#endif

/* Instantiate all auth framework types */
void
testAuth::instantiate()
{}

char const * stub_config="auth_param digest program /home/robertc/install/squid/libexec/digest_pw_auth /home/robertc/install/squid/etc/digest.pwd\n"
                         "auth_param digest children 5\n"
                         "auth_param digest realm Squid proxy-caching web server\n"
                         "auth_param digest nonce_garbage_interval 5 minutes\n"
                         "auth_param digest nonce_max_duration 30 minutes\n"
                         "auth_param digest nonce_max_count 50\n";

static
char const *
find_proxy_auth(char const *type)
{
    char const * proxy_auths[][2]= { {"basic","Basic QWxhZGRpbjpvcGVuIHNlc2FtZQ=="},

        {"digest", "Digest username=\"robertdig\", realm=\"Squid proxy-caching web server\", nonce=\"yy8rQXjEWwixXVBj\", uri=\"/images/bg8.gif\", response=\"f75a7d3edd48d93c681c75dc4fb58700\", qop=auth, nc=00000012, cnonce=\"e2216641961e228e\" "},
        {"ntlm", "NTLM "},
        {"negotiate", "Negotiate "}
    };

    for (unsigned count = 0; count < 4 ; count++) {
        if (strcasecmp(type, proxy_auths[count][0]) == 0)
            return proxy_auths[count][1];
    }

    return NULL;
}

static
Auth::Config *
getConfig(char const *type_str)
{
    Auth::ConfigVector &config = Auth::TheConfig;
    /* find a configuration for the scheme */
    Auth::Config *scheme = Auth::Config::Find(type_str);

    if (scheme == NULL) {
        /* Create a configuration */
        Auth::Scheme::Pointer theScheme = Auth::Scheme::Find(type_str);

        if (theScheme == NULL) {
            return NULL;
            //fatalf("Unknown authentication scheme '%s'.\n", type_str);
        }

        config.push_back(theScheme->createConfig());
        scheme = config.back();
        assert(scheme);
    }

    return scheme;
}

static
void
setup_scheme(Auth::Config *scheme, char const **params, unsigned param_count)
{
    Auth::ConfigVector &config = Auth::TheConfig;

    for (unsigned position=0; position < param_count; position++) {
        char *param_str=xstrdup(params[position]);
        strtok(param_str, w_space);
        scheme->parse(scheme, config.size(), param_str);
    }
}

static
void
fake_auth_setup()
{
    static bool setup(false);

    if (setup)
        return;

    Mem::Init();

    Auth::ConfigVector &config = Auth::TheConfig;

    char const *digest_parms[]= {"program /home/robertc/install/squid/libexec/digest_pw_auth /home/robertc/install/squid/etc/digest.pwd",
                                 "realm foo"
                                };

    char const *basic_parms[]= {"program /home/robertc/install/squid/libexec/digest_pw_auth /home/robertc/install/squid/etc/digest.pwd",
                                "realm foo"
                               };

    char const *ntlm_parms[]= {"program /home/robertc/install/squid/libexec/digest_pw_auth /home/robertc/install/squid/etc/digest.pwd"};

    char const *negotiate_parms[]= {"program /home/robertc/install/squid/libexec/digest_pw_auth /home/robertc/install/squid/etc/digest.pwd"};

    struct _scheme_params {
        char const *name;
        char const **params;
        unsigned paramlength;
    }

    params[]={ {"digest", digest_parms, 2},
        {"basic", basic_parms, 2},
        {"ntlm", ntlm_parms, 1},
        {"negotiate", negotiate_parms, 1}
    };

    for (unsigned scheme=0; scheme < 4; scheme++) {
        Auth::Config *schemeConfig;
        schemeConfig = getConfig(params[scheme].name);
        if (schemeConfig != NULL)
            setup_scheme(schemeConfig, params[scheme].params,
                         params[scheme].paramlength);
        else
            fprintf(stderr,"Skipping unknown authentication scheme '%s'.\n",
                    params[scheme].name);
    }

    authenticateInit(&config);

    setup=true;
}

/* Auth::Config::CreateAuthUser works for all
 * authentication types
 */
void
testAuthConfig::create()
{
    Debug::Levels[29]=9;
    fake_auth_setup();

    for (Auth::Scheme::iterator i = Auth::Scheme::GetSchemes().begin(); i != Auth::Scheme::GetSchemes().end(); ++i) {
        AuthUserRequest::Pointer authRequest = Auth::Config::CreateAuthUser(find_proxy_auth((*i)->type()));
        CPPUNIT_ASSERT(authRequest != NULL);
    }
}

#if HAVE_IOSTREAM
#include <iostream>
#endif

/* AuthUserRequest::scheme returns the correct scheme for all
 * authentication types
 */
void
testAuthUserRequest::scheme()
{
    Debug::Levels[29]=9;
    fake_auth_setup();

    for (Auth::Scheme::iterator i = Auth::Scheme::GetSchemes().begin(); i != Auth::Scheme::GetSchemes().end(); ++i) {
        // create a user request
        // check its scheme matches *i
        AuthUserRequest::Pointer authRequest = Auth::Config::CreateAuthUser(find_proxy_auth((*i)->type()));
        CPPUNIT_ASSERT_EQUAL(authRequest->scheme(), *i);
    }
}

#if HAVE_AUTH_MODULE_BASIC
#include "auth/basic/User.h"
#include "auth/basic/UserRequest.h"
/* AuthBasicUserRequest::AuthBasicUserRequest works
 */
void
testAuthBasicUserRequest::construction()
{
    AuthBasicUserRequest();
    AuthBasicUserRequest *temp=new AuthBasicUserRequest();
    delete temp;
}

void
testAuthBasicUserRequest::username()
{
    AuthUserRequest::Pointer temp = new AuthBasicUserRequest();
    Auth::Basic::User *basic_auth=new Auth::Basic::User(Auth::Config::Find("basic"));
    basic_auth->username("John");
    temp->user(basic_auth);
    CPPUNIT_ASSERT_EQUAL(0, strcmp("John", temp->username()));
}
#endif /* HAVE_AUTH_MODULE_BASIC */

#if HAVE_AUTH_MODULE_DIGEST
#include "auth/digest/User.h"
#include "auth/digest/UserRequest.h"
/* AuthDigestUserRequest::AuthDigestUserRequest works
 */
void
testAuthDigestUserRequest::construction()
{
    AuthDigestUserRequest();
    AuthDigestUserRequest *temp=new AuthDigestUserRequest();
    delete temp;
}

void
testAuthDigestUserRequest::username()
{
    AuthUserRequest::Pointer temp = new AuthDigestUserRequest();
    Auth::Digest::User *duser=new Auth::Digest::User(Auth::Config::Find("digest"));
    duser->username("John");
    temp->user(duser);
    CPPUNIT_ASSERT_EQUAL(0, strcmp("John", temp->username()));
}
#endif /* HAVE_AUTH_MODULE_DIGEST */

#if HAVE_AUTH_MODULE_NTLM
#include "auth/ntlm/User.h"
#include "auth/ntlm/UserRequest.h"
/* AuthNTLMUserRequest::AuthNTLMUserRequest works
 */
void
testAuthNTLMUserRequest::construction()
{
    AuthNTLMUserRequest();
    AuthNTLMUserRequest *temp=new AuthNTLMUserRequest();
    delete temp;
}

void
testAuthNTLMUserRequest::username()
{
    AuthUserRequest::Pointer temp = new AuthNTLMUserRequest();
    Auth::Ntlm::User *nuser=new Auth::Ntlm::User(Auth::Config::Find("ntlm"));
    nuser->username("John");
    temp->user(nuser);
    CPPUNIT_ASSERT_EQUAL(0, strcmp("John", temp->username()));
}
#endif /* HAVE_AUTH_MODULE_NTLM */

#if HAVE_AUTH_MODULE_NEGOTIATE
#include "auth/negotiate/User.h"
#include "auth/negotiate/UserRequest.h"
/* AuthNegotiateUserRequest::AuthNegotiateUserRequest works
 */
void
testAuthNegotiateUserRequest::construction()
{
    AuthNegotiateUserRequest();
    AuthNegotiateUserRequest *temp=new AuthNegotiateUserRequest();
    delete temp;
}

void
testAuthNegotiateUserRequest::username()
{
    AuthUserRequest::Pointer temp = new AuthNegotiateUserRequest();
    Auth::Negotiate::User *nuser=new Auth::Negotiate::User(Auth::Config::Find("negotiate"));
    nuser->username("John");
    temp->user(nuser);
    CPPUNIT_ASSERT_EQUAL(0, strcmp("John", temp->username()));
}

#endif /* HAVE_AUTH_MODULE_NEGOTIATE */
#endif /* USE_AUTH */
Commit	Line	Data
ec94e362	1	#define SQUID_UNIT_TEST 1
f5691f9c	2
f7f3304a	3	#include "squid-old.h"
2f1431ea AJ	4
	5	#if USE_AUTH
	6
aa625860	7	#include "testAuth.h"
3ad63615	8	#include "auth/Gadgets.h"
2d2b0bb7 AR	9	#include "auth/UserRequest.h"
	10	#include "auth/Scheme.h"
	11	#include "auth/Config.h"
f5691f9c	12	#include "Mem.h"
	13
	14	CPPUNIT_TEST_SUITE_REGISTRATION( testAuth );
	15	CPPUNIT_TEST_SUITE_REGISTRATION( testAuthConfig );
	16	CPPUNIT_TEST_SUITE_REGISTRATION( testAuthUserRequest );
a33a428a	17	#if HAVE_AUTH_MODULE_BASIC
f5691f9c	18	CPPUNIT_TEST_SUITE_REGISTRATION( testAuthBasicUserRequest );
0ea5c60c	19	#endif
a33a428a	20	#if HAVE_AUTH_MODULE_DIGEST
f5691f9c	21	CPPUNIT_TEST_SUITE_REGISTRATION( testAuthDigestUserRequest );
0ea5c60c	22	#endif
a33a428a	23	#if HAVE_AUTH_MODULE_NTLM
f5691f9c	24	CPPUNIT_TEST_SUITE_REGISTRATION( testAuthNTLMUserRequest );
0ea5c60c	25	#endif
a33a428a	26	#if HAVE_AUTH_MODULE_NEGOTIATE
f46fe759	27	CPPUNIT_TEST_SUITE_REGISTRATION( testAuthNegotiateUserRequest );
0ea5c60c	28	#endif
f5691f9c	29
	30	/* Instantiate all auth framework types */
	31	void
	32	testAuth::instantiate()
	33	{}
	34
	35	char const * stub_config="auth_param digest program /home/robertc/install/squid/libexec/digest_pw_auth /home/robertc/install/squid/etc/digest.pwd\n"
	36	"auth_param digest children 5\n"
	37	"auth_param digest realm Squid proxy-caching web server\n"
	38	"auth_param digest nonce_garbage_interval 5 minutes\n"
	39	"auth_param digest nonce_max_duration 30 minutes\n"
	40	"auth_param digest nonce_max_count 50\n";
	41
	42	static
	43	char const *
	44	find_proxy_auth(char const *type)
	45	{
	46	char const * proxy_auths[][2]= { {"basic","Basic QWxhZGRpbjpvcGVuIHNlc2FtZQ=="},
	47
26ac0430 AJ	48	{"digest", "Digest username=\"robertdig\", realm=\"Squid proxy-caching web server\", nonce=\"yy8rQXjEWwixXVBj\", uri=\"/images/bg8.gif\", response=\"f75a7d3edd48d93c681c75dc4fb58700\", qop=auth, nc=00000012, cnonce=\"e2216641961e228e\" "},
	49	{"ntlm", "NTLM "},
	50	{"negotiate", "Negotiate "}
	51	};
f5691f9c	52
f46fe759	53	for (unsigned count = 0; count < 4 ; count++) {
f5691f9c	54	if (strcasecmp(type, proxy_auths[count][0]) == 0)
	55	return proxy_auths[count][1];
	56	}
	57
	58	return NULL;
	59	}
	60
	61	static
9f3d2b2e	62	Auth::Config *
f5691f9c	63	getConfig(char const *type_str)
f5691f9c	64	{
9f3d2b2e	65	Auth::ConfigVector &config = Auth::TheConfig;
f5691f9c	66	/* find a configuration for the scheme */
9f3d2b2e	67	Auth::Config *scheme = Auth::Config::Find(type_str);
f5691f9c	68
	69	if (scheme == NULL) {
	70	/* Create a configuration */
c6cf8dee	71	Auth::Scheme::Pointer theScheme = Auth::Scheme::Find(type_str);
f5691f9c	72
5817ee13	73	if (theScheme == NULL) {
0ea5c60c FC	74	return NULL;
0ea5c60c FC	75	//fatalf("Unknown authentication scheme '%s'.\n", type_str);
f5691f9c	76	}
	77
	78	config.push_back(theScheme->createConfig());
	79	scheme = config.back();
a33a428a	80	assert(scheme);
f5691f9c	81	}
	82
	83	return scheme;
	84	}
	85
	86	static
	87	void
9f3d2b2e	88	setup_scheme(Auth::Config scheme, char const *params, unsigned param_count)
f5691f9c	89	{
9f3d2b2e	90	Auth::ConfigVector &config = Auth::TheConfig;
f5691f9c	91
	92	for (unsigned position=0; position < param_count; position++) {
	93	char *param_str=xstrdup(params[position]);
	94	strtok(param_str, w_space);
	95	scheme->parse(scheme, config.size(), param_str);
	96	}
	97	}
	98
	99	static
	100	void
	101	fake_auth_setup()
	102	{
	103	static bool setup(false);
	104
	105	if (setup)
	106	return;
	107
	108	Mem::Init();
	109
9f3d2b2e	110	Auth::ConfigVector &config = Auth::TheConfig;
f5691f9c	111
	112	char const *digest_parms[]= {"program /home/robertc/install/squid/libexec/digest_pw_auth /home/robertc/install/squid/etc/digest.pwd",
	113	"realm foo"
	114	};
	115
	116	char const *basic_parms[]= {"program /home/robertc/install/squid/libexec/digest_pw_auth /home/robertc/install/squid/etc/digest.pwd",
	117	"realm foo"
	118	};
	119
	120	char const *ntlm_parms[]= {"program /home/robertc/install/squid/libexec/digest_pw_auth /home/robertc/install/squid/etc/digest.pwd"};
	121
f46fe759	122	char const *negotiate_parms[]= {"program /home/robertc/install/squid/libexec/digest_pw_auth /home/robertc/install/squid/etc/digest.pwd"};
f46fe759	123
f5691f9c	124	struct _scheme_params {
	125	char const *name;
	126	char const **params;
	127	unsigned paramlength;
	128	}
	129
	130	params[]={ {"digest", digest_parms, 2},
26ac0430 AJ	131	{"basic", basic_parms, 2},
	132	{"ntlm", ntlm_parms, 1},
	133	{"negotiate", negotiate_parms, 1}
	134	};
f5691f9c	135
0ea5c60c	136	for (unsigned scheme=0; scheme < 4; scheme++) {
9f3d2b2e	137	Auth::Config *schemeConfig;
0ea5c60c FC	138	schemeConfig = getConfig(params[scheme].name);
0ea5c60c FC	139	if (schemeConfig != NULL)
9e008dda	140	setup_scheme(schemeConfig, params[scheme].params,
af6a12ee	141	params[scheme].paramlength);
9e008dda AJ	142	else
	143	fprintf(stderr,"Skipping unknown authentication scheme '%s'.\n",
	144	params[scheme].name);
0ea5c60c	145	}
f5691f9c	146
	147	authenticateInit(&config);
	148
	149	setup=true;
	150	}
	151
9f3d2b2e	152	/* Auth::Config::CreateAuthUser works for all
f5691f9c	153	* authentication types
	154	*/
	155	void
	156	testAuthConfig::create()
	157	{
	158	Debug::Levels[29]=9;
	159	fake_auth_setup();
	160
c6cf8dee	161	for (Auth::Scheme::iterator i = Auth::Scheme::GetSchemes().begin(); i != Auth::Scheme::GetSchemes().end(); ++i) {
9f3d2b2e	162	AuthUserRequest::Pointer authRequest = Auth::Config::CreateAuthUser(find_proxy_auth((*i)->type()));
f5691f9c	163	CPPUNIT_ASSERT(authRequest != NULL);
	164	}
	165	}
	166
27e059d4	167	#if HAVE_IOSTREAM
f5691f9c	168	#include <iostream>
27e059d4	169	#endif
f5691f9c	170
	171	/* AuthUserRequest::scheme returns the correct scheme for all
	172	* authentication types
	173	*/
	174	void
	175	testAuthUserRequest::scheme()
	176	{
	177	Debug::Levels[29]=9;
	178	fake_auth_setup();
	179
c6cf8dee	180	for (Auth::Scheme::iterator i = Auth::Scheme::GetSchemes().begin(); i != Auth::Scheme::GetSchemes().end(); ++i) {
f5691f9c	181	// create a user request
f5691f9c	182	// check its scheme matches *i
9f3d2b2e	183	AuthUserRequest::Pointer authRequest = Auth::Config::CreateAuthUser(find_proxy_auth((*i)->type()));
f5691f9c	184	CPPUNIT_ASSERT_EQUAL(authRequest->scheme(), *i);
	185	}
	186	}
	187
a33a428a	188	#if HAVE_AUTH_MODULE_BASIC
aa110616	189	#include "auth/basic/User.h"
616cfc4c	190	#include "auth/basic/UserRequest.h"
f5691f9c	191	/* AuthBasicUserRequest::AuthBasicUserRequest works
	192	*/
	193	void
	194	testAuthBasicUserRequest::construction()
	195	{
	196	AuthBasicUserRequest();
	197	AuthBasicUserRequest *temp=new AuthBasicUserRequest();
	198	delete temp;
	199	}
	200
	201	void
	202	testAuthBasicUserRequest::username()
	203	{
a33a428a	204	AuthUserRequest::Pointer temp = new AuthBasicUserRequest();
aa110616	205	Auth::Basic::User *basic_auth=new Auth::Basic::User(Auth::Config::Find("basic"));
f5691f9c	206	basic_auth->username("John");
f5691f9c	207	temp->user(basic_auth);
f5691f9c	208	CPPUNIT_ASSERT_EQUAL(0, strcmp("John", temp->username()));
f5691f9c	209	}
0ea5c60c	210	#endif /* HAVE_AUTH_MODULE_BASIC */
f5691f9c	211
a33a428a	212	#if HAVE_AUTH_MODULE_DIGEST
aa110616 AJ	213	#include "auth/digest/User.h"
aa110616 AJ	214	#include "auth/digest/UserRequest.h"
f5691f9c	215	/* AuthDigestUserRequest::AuthDigestUserRequest works
	216	*/
	217	void
	218	testAuthDigestUserRequest::construction()
	219	{
	220	AuthDigestUserRequest();
	221	AuthDigestUserRequest *temp=new AuthDigestUserRequest();
	222	delete temp;
	223	}
	224
	225	void
	226	testAuthDigestUserRequest::username()
	227	{
a33a428a	228	AuthUserRequest::Pointer temp = new AuthDigestUserRequest();
aa110616	229	Auth::Digest::User *duser=new Auth::Digest::User(Auth::Config::Find("digest"));
a33a428a AJ	230	duser->username("John");
a33a428a AJ	231	temp->user(duser);
f5691f9c	232	CPPUNIT_ASSERT_EQUAL(0, strcmp("John", temp->username()));
f5691f9c	233	}
0ea5c60c	234	#endif /* HAVE_AUTH_MODULE_DIGEST */
f5691f9c	235
a33a428a	236	#if HAVE_AUTH_MODULE_NTLM
aa110616 AJ	237	#include "auth/ntlm/User.h"
aa110616 AJ	238	#include "auth/ntlm/UserRequest.h"
f5691f9c	239	/* AuthNTLMUserRequest::AuthNTLMUserRequest works
	240	*/
	241	void
	242	testAuthNTLMUserRequest::construction()
	243	{
	244	AuthNTLMUserRequest();
	245	AuthNTLMUserRequest *temp=new AuthNTLMUserRequest();
	246	delete temp;
	247	}
	248
	249	void
	250	testAuthNTLMUserRequest::username()
	251	{
a33a428a	252	AuthUserRequest::Pointer temp = new AuthNTLMUserRequest();
aa110616	253	Auth::Ntlm::User *nuser=new Auth::Ntlm::User(Auth::Config::Find("ntlm"));
a33a428a AJ	254	nuser->username("John");
a33a428a AJ	255	temp->user(nuser);
f5691f9c	256	CPPUNIT_ASSERT_EQUAL(0, strcmp("John", temp->username()));
f5691f9c	257	}
0ea5c60c	258	#endif /* HAVE_AUTH_MODULE_NTLM */
f46fe759	259
a33a428a	260	#if HAVE_AUTH_MODULE_NEGOTIATE
aa110616 AJ	261	#include "auth/negotiate/User.h"
aa110616 AJ	262	#include "auth/negotiate/UserRequest.h"
f46fe759	263	/* AuthNegotiateUserRequest::AuthNegotiateUserRequest works
	264	*/
	265	void
	266	testAuthNegotiateUserRequest::construction()
	267	{
	268	AuthNegotiateUserRequest();
	269	AuthNegotiateUserRequest *temp=new AuthNegotiateUserRequest();
	270	delete temp;
	271	}
	272
	273	void
	274	testAuthNegotiateUserRequest::username()
	275	{
a33a428a	276	AuthUserRequest::Pointer temp = new AuthNegotiateUserRequest();
aa110616	277	Auth::Negotiate::User *nuser=new Auth::Negotiate::User(Auth::Config::Find("negotiate"));
a33a428a AJ	278	nuser->username("John");
a33a428a AJ	279	temp->user(nuser);
f46fe759	280	CPPUNIT_ASSERT_EQUAL(0, strcmp("John", temp->username()));
f46fe759	281	}
0ea5c60c FC	282
0ea5c60c FC	283	#endif /* HAVE_AUTH_MODULE_NEGOTIATE */
2f1431ea	284	#endif /* USE_AUTH */