authelia/internal/suites/suite_network_acl_test.go

package suites

import (
	"context"
	"fmt"
	"testing"
	"time"

	"github.com/stretchr/testify/suite"
)

type NetworkACLSuite struct {
	suite.Suite
}

func NewNetworkACLSuite() *NetworkACLSuite {
	return &NetworkACLSuite{}
}

func (s *NetworkACLSuite) TestShouldAccessSecretUpon2FA() {
	ctx, cancel := context.WithTimeout(context.Background(), 30*time.Second)
	defer cancel()

	wds, err := StartWebDriver()
	s.Require().NoError(err)

	defer func() {
		err = wds.Stop()
		s.Require().NoError(err)
	}()

	targetURL := fmt.Sprintf("%s/secret.html", SecureBaseURL)
	wds.doVisit(s.T(), targetURL)
	wds.verifyIsFirstFactorPage(ctx, s.T())

	wds.doRegisterAndLogin2FA(ctx, s.T(), "john", "password", false, targetURL)
	wds.verifySecretAuthorized(ctx, s.T())
}

// from network 192.168.240.201/32.
func (s *NetworkACLSuite) TestShouldAccessSecretUpon1FA() {
	ctx, cancel := context.WithTimeout(context.Background(), 30*time.Second)
	defer cancel()

	wds, err := StartWebDriverWithProxy("http://proxy-client1.example.com:3128", GetWebDriverPort())
	s.Require().NoError(err)

	defer func() {
		err = wds.Stop()
		s.Require().NoError(err)
	}()

	targetURL := fmt.Sprintf("%s/secret.html", SecureBaseURL)
	wds.doVisit(s.T(), targetURL)
	wds.verifyIsFirstFactorPage(ctx, s.T())

	wds.doLoginOneFactor(ctx, s.T(), "john", "password",
		false, fmt.Sprintf("%s/secret.html", SecureBaseURL))
	wds.verifySecretAuthorized(ctx, s.T())
}

// from network 192.168.240.202/32.
func (s *NetworkACLSuite) TestShouldAccessSecretUpon0FA() {
	ctx, cancel := context.WithTimeout(context.Background(), 30*time.Second)
	defer cancel()

	wds, err := StartWebDriverWithProxy("http://proxy-client2.example.com:3128", GetWebDriverPort())
	s.Require().NoError(err)

	defer func() {
		err = wds.Stop()
		s.Require().NoError(err)
	}()

	wds.doVisit(s.T(), fmt.Sprintf("%s/secret.html", SecureBaseURL))
	wds.verifySecretAuthorized(ctx, s.T())
}

func TestNetworkACLSuite(t *testing.T) {
	suite.Run(t, NewNetworkACLSuite())
}
Declare suites as Go structs and bootstrap e2e test framework in Go. Some tests are not fully rewritten in Go, a typescript wrapper is called instead until we remove the remaining TS tests and dependencies. Also, dockerize every components (mainly Authelia backend, frontend and kind) so that the project does not interfere with user host anymore (open ports for instance). The only remaining intrusive change is the one done during bootstrap to add entries in /etc/hosts. It will soon be avoided using authelia.com domain that I own. 2019-11-02 14:32:58 +00:00			`package suites`

			`import (`
Rewrite and fix remaining suites in Go. 2019-11-24 20:27:59 +00:00			`"context"`
			`"fmt"`
Declare suites as Go structs and bootstrap e2e test framework in Go. Some tests are not fully rewritten in Go, a typescript wrapper is called instead until we remove the remaining TS tests and dependencies. Also, dockerize every components (mainly Authelia backend, frontend and kind) so that the project does not interfere with user host anymore (open ports for instance). The only remaining intrusive change is the one done during bootstrap to add entries in /etc/hosts. It will soon be avoided using authelia.com domain that I own. 2019-11-02 14:32:58 +00:00			`"testing"`
Rewrite and fix remaining suites in Go. 2019-11-24 20:27:59 +00:00			`"time"`

			`"github.com/stretchr/testify/suite"`
Declare suites as Go structs and bootstrap e2e test framework in Go. Some tests are not fully rewritten in Go, a typescript wrapper is called instead until we remove the remaining TS tests and dependencies. Also, dockerize every components (mainly Authelia backend, frontend and kind) so that the project does not interfere with user host anymore (open ports for instance). The only remaining intrusive change is the one done during bootstrap to add entries in /etc/hosts. It will soon be avoided using authelia.com domain that I own. 2019-11-02 14:32:58 +00:00			`)`

			`type NetworkACLSuite struct {`
Rewrite and fix remaining suites in Go. 2019-11-24 20:27:59 +00:00			`suite.Suite`
Declare suites as Go structs and bootstrap e2e test framework in Go. Some tests are not fully rewritten in Go, a typescript wrapper is called instead until we remove the remaining TS tests and dependencies. Also, dockerize every components (mainly Authelia backend, frontend and kind) so that the project does not interfere with user host anymore (open ports for instance). The only remaining intrusive change is the one done during bootstrap to add entries in /etc/hosts. It will soon be avoided using authelia.com domain that I own. 2019-11-02 14:32:58 +00:00			`}`

			`func NewNetworkACLSuite() *NetworkACLSuite {`
Fix and parallelize integration tests. 2019-11-30 16:49:52 +00:00			`return &NetworkACLSuite{}`
Rewrite and fix remaining suites in Go. 2019-11-24 20:27:59 +00:00			`}`

			`func (s *NetworkACLSuite) TestShouldAccessSecretUpon2FA() {`
			`ctx, cancel := context.WithTimeout(context.Background(), 30*time.Second)`
			`defer cancel()`

Fix and parallelize integration tests. 2019-11-30 16:49:52 +00:00			`wds, err := StartWebDriver()`
			`s.Require().NoError(err)`
[CI] Add wsl linter (#980) * [CI] Add wsl linter * Implement wsl recommendations Co-authored-by: Clément Michaud <clement.michaud34@gmail.com> 2020-05-05 19:35:32 +00:00
feat(session): add redis sentinel provider (#1768) * feat(session): add redis sentinel provider * refactor(session): use int for ports as per go standards * refactor(configuration): adjust tests and validation * refactor(configuration): add err format consts * refactor(configuration): explicitly map redis structs * refactor(session): merge redis/redis sentinel providers * refactor(session): add additional checks to redis providers * feat(session): add redis cluster provider * fix: update config for new values * fix: provide nil certpool to affected tests/mocks * test: add additional tests to cover uncovered code * docs: expand explanation of host and nodes relation for redis * ci: add redis-sentinel to suite highavailability, add redis-sentinel quorum * fix(session): sentinel password * test: use redis alpine library image for redis sentinel, use expose instead of ports, use redis ip, adjust redis ip range, adjust redis config * test: make entrypoint.sh executable, fix entrypoint.sh if/elif * test: add redis failover tests * test: defer docker start, adjust sleep, attempt logout before login, attempt visit before login and tune timeouts, add additional logging * test: add sentinel integration test * test: add secondary node failure to tests, fix password usage, bump test timeout, add sleep * feat: use sentinel failover cluster * fix: renamed addrs to sentineladdrs upstream * test(session): sentinel failover * test: add redis standard back into testing * test: move redis standalone test to traefik2 * fix/docs: apply suggestions from code review 2021-03-09 23:03:05 +00:00			`defer func() {`
			`err = wds.Stop()`
			`s.Require().NoError(err)`
			`}()`
Rewrite and fix remaining suites in Go. 2019-11-24 20:27:59 +00:00
Fix and parallelize integration tests. 2019-11-30 16:49:52 +00:00			`targetURL := fmt.Sprintf("%s/secret.html", SecureBaseURL)`
			`wds.doVisit(s.T(), targetURL)`
			`wds.verifyIsFirstFactorPage(ctx, s.T())`
Rewrite and fix remaining suites in Go. 2019-11-24 20:27:59 +00:00
Fix and parallelize integration tests. 2019-11-30 16:49:52 +00:00			`wds.doRegisterAndLogin2FA(ctx, s.T(), "john", "password", false, targetURL)`
			`wds.verifySecretAuthorized(ctx, s.T())`
Rewrite and fix remaining suites in Go. 2019-11-24 20:27:59 +00:00			`}`

[CI] Add godot linter (#958) * [CI] Add godot linter * Implement godot recommendations 2020-05-02 05:06:39 +00:00			`// from network 192.168.240.201/32.`
Rewrite and fix remaining suites in Go. 2019-11-24 20:27:59 +00:00			`func (s *NetworkACLSuite) TestShouldAccessSecretUpon1FA() {`
			`ctx, cancel := context.WithTimeout(context.Background(), 30*time.Second)`
			`defer cancel()`

[MISC] Refactor webdriver port initialization (#1491) This change aims to factorize code introduced in #1467 for webdriver port customisation within the suites. Co-authored-by: James Elliott <james-d-elliott@users.noreply.github.com> 2020-11-28 00:06:42 +00:00			`wds, err := StartWebDriverWithProxy("http://proxy-client1.example.com:3128", GetWebDriverPort())`
Fix and parallelize integration tests. 2019-11-30 16:49:52 +00:00			`s.Require().NoError(err)`
[CI] Add wsl linter (#980) * [CI] Add wsl linter * Implement wsl recommendations Co-authored-by: Clément Michaud <clement.michaud34@gmail.com> 2020-05-05 19:35:32 +00:00
feat(session): add redis sentinel provider (#1768) * feat(session): add redis sentinel provider * refactor(session): use int for ports as per go standards * refactor(configuration): adjust tests and validation * refactor(configuration): add err format consts * refactor(configuration): explicitly map redis structs * refactor(session): merge redis/redis sentinel providers * refactor(session): add additional checks to redis providers * feat(session): add redis cluster provider * fix: update config for new values * fix: provide nil certpool to affected tests/mocks * test: add additional tests to cover uncovered code * docs: expand explanation of host and nodes relation for redis * ci: add redis-sentinel to suite highavailability, add redis-sentinel quorum * fix(session): sentinel password * test: use redis alpine library image for redis sentinel, use expose instead of ports, use redis ip, adjust redis ip range, adjust redis config * test: make entrypoint.sh executable, fix entrypoint.sh if/elif * test: add redis failover tests * test: defer docker start, adjust sleep, attempt logout before login, attempt visit before login and tune timeouts, add additional logging * test: add sentinel integration test * test: add secondary node failure to tests, fix password usage, bump test timeout, add sleep * feat: use sentinel failover cluster * fix: renamed addrs to sentineladdrs upstream * test(session): sentinel failover * test: add redis standard back into testing * test: move redis standalone test to traefik2 * fix/docs: apply suggestions from code review 2021-03-09 23:03:05 +00:00			`defer func() {`
			`err = wds.Stop()`
			`s.Require().NoError(err)`
			`}()`
Fix and parallelize integration tests. 2019-11-30 16:49:52 +00:00
Rewrite and fix remaining suites in Go. 2019-11-24 20:27:59 +00:00			`targetURL := fmt.Sprintf("%s/secret.html", SecureBaseURL)`
Fix and parallelize integration tests. 2019-11-30 16:49:52 +00:00			`wds.doVisit(s.T(), targetURL)`
			`wds.verifyIsFirstFactorPage(ctx, s.T())`
Rewrite and fix remaining suites in Go. 2019-11-24 20:27:59 +00:00
Fix and parallelize integration tests. 2019-11-30 16:49:52 +00:00			`wds.doLoginOneFactor(ctx, s.T(), "john", "password",`
Rewrite and fix remaining suites in Go. 2019-11-24 20:27:59 +00:00			`false, fmt.Sprintf("%s/secret.html", SecureBaseURL))`
Fix and parallelize integration tests. 2019-11-30 16:49:52 +00:00			`wds.verifySecretAuthorized(ctx, s.T())`
Rewrite and fix remaining suites in Go. 2019-11-24 20:27:59 +00:00			`}`

[CI] Add godot linter (#958) * [CI] Add godot linter * Implement godot recommendations 2020-05-02 05:06:39 +00:00			`// from network 192.168.240.202/32.`
Rewrite and fix remaining suites in Go. 2019-11-24 20:27:59 +00:00			`func (s *NetworkACLSuite) TestShouldAccessSecretUpon0FA() {`
			`ctx, cancel := context.WithTimeout(context.Background(), 30*time.Second)`
			`defer cancel()`

[MISC] Refactor webdriver port initialization (#1491) This change aims to factorize code introduced in #1467 for webdriver port customisation within the suites. Co-authored-by: James Elliott <james-d-elliott@users.noreply.github.com> 2020-11-28 00:06:42 +00:00			`wds, err := StartWebDriverWithProxy("http://proxy-client2.example.com:3128", GetWebDriverPort())`
Fix and parallelize integration tests. 2019-11-30 16:49:52 +00:00			`s.Require().NoError(err)`
[CI] Add wsl linter (#980) * [CI] Add wsl linter * Implement wsl recommendations Co-authored-by: Clément Michaud <clement.michaud34@gmail.com> 2020-05-05 19:35:32 +00:00
feat(session): add redis sentinel provider (#1768) * feat(session): add redis sentinel provider * refactor(session): use int for ports as per go standards * refactor(configuration): adjust tests and validation * refactor(configuration): add err format consts * refactor(configuration): explicitly map redis structs * refactor(session): merge redis/redis sentinel providers * refactor(session): add additional checks to redis providers * feat(session): add redis cluster provider * fix: update config for new values * fix: provide nil certpool to affected tests/mocks * test: add additional tests to cover uncovered code * docs: expand explanation of host and nodes relation for redis * ci: add redis-sentinel to suite highavailability, add redis-sentinel quorum * fix(session): sentinel password * test: use redis alpine library image for redis sentinel, use expose instead of ports, use redis ip, adjust redis ip range, adjust redis config * test: make entrypoint.sh executable, fix entrypoint.sh if/elif * test: add redis failover tests * test: defer docker start, adjust sleep, attempt logout before login, attempt visit before login and tune timeouts, add additional logging * test: add sentinel integration test * test: add secondary node failure to tests, fix password usage, bump test timeout, add sleep * feat: use sentinel failover cluster * fix: renamed addrs to sentineladdrs upstream * test(session): sentinel failover * test: add redis standard back into testing * test: move redis standalone test to traefik2 * fix/docs: apply suggestions from code review 2021-03-09 23:03:05 +00:00			`defer func() {`
			`err = wds.Stop()`
			`s.Require().NoError(err)`
			`}()`
Fix and parallelize integration tests. 2019-11-30 16:49:52 +00:00
			`wds.doVisit(s.T(), fmt.Sprintf("%s/secret.html", SecureBaseURL))`
			`wds.verifySecretAuthorized(ctx, s.T())`
Declare suites as Go structs and bootstrap e2e test framework in Go. Some tests are not fully rewritten in Go, a typescript wrapper is called instead until we remove the remaining TS tests and dependencies. Also, dockerize every components (mainly Authelia backend, frontend and kind) so that the project does not interfere with user host anymore (open ports for instance). The only remaining intrusive change is the one done during bootstrap to add entries in /etc/hosts. It will soon be avoided using authelia.com domain that I own. 2019-11-02 14:32:58 +00:00			`}`

			`func TestNetworkACLSuite(t *testing.T) {`
Rewrite and fix remaining suites in Go. 2019-11-24 20:27:59 +00:00			`suite.Run(t, NewNetworkACLSuite())`
Declare suites as Go structs and bootstrap e2e test framework in Go. Some tests are not fully rewritten in Go, a typescript wrapper is called instead until we remove the remaining TS tests and dependencies. Also, dockerize every components (mainly Authelia backend, frontend and kind) so that the project does not interfere with user host anymore (open ports for instance). The only remaining intrusive change is the one done during bootstrap to add entries in /etc/hosts. It will soon be avoided using authelia.com domain that I own. 2019-11-02 14:32:58 +00:00			`}`