authelia/test/integration/test_server.js


var request_ = require('request');
var assert = require('assert');
var speakeasy = require('speakeasy');
var j = request_.jar();
var Promise = require('bluebird');
var request = Promise.promisifyAll(request_.defaults({jar: j}));
var util = require('util');
var sinon = require('sinon');

process.env.NODE_TLS_REJECT_UNAUTHORIZED = "0";

var AUTHELIA_HOST = 'nginx';
var DOMAIN = 'test.local';
var PORT = 8080;

var HOME_URL = util.format('https://%s.%s:%d', 'home', DOMAIN, PORT);
var SECRET_URL = util.format('https://%s.%s:%d', 'secret', DOMAIN, PORT);
var SECRET1_URL = util.format('https://%s.%s:%d', 'secret1', DOMAIN, PORT);
var SECRET2_URL = util.format('https://%s.%s:%d', 'secret2', DOMAIN, PORT);
var MX1_URL = util.format('https://%s.%s:%d', 'mx1.mail', DOMAIN, PORT);
var MX2_URL = util.format('https://%s.%s:%d', 'mx2.mail', DOMAIN, PORT);
var BASE_AUTH_URL = util.format('https://%s.%s:%d', 'auth', DOMAIN, PORT);

describe('test the server', function() {
  var home_page;
  var login_page;

  before(function() {
    var home_page_promise = getHomePage()
    .then(function(data) {
      home_page = data.body;
    });
    var login_page_promise = getLoginPage()
    .then(function(data) {
      login_page = data.body;
    });
    return Promise.all([home_page_promise, 
                        login_page_promise]);
  });

  function str_contains(str, pattern) {
    return str.indexOf(pattern) != -1;
  }

  function home_page_contains(pattern) {
    return str_contains(home_page, pattern);
  }

  it('should serve a correct home page', function() {
    assert(home_page_contains(BASE_AUTH_URL + '/logout?redirect=' + HOME_URL + '/'));
    assert(home_page_contains(HOME_URL + '/secret.html'));
    assert(home_page_contains(SECRET_URL + '/secret.html'));
    assert(home_page_contains(SECRET1_URL + '/secret.html'));
    assert(home_page_contains(SECRET2_URL + '/secret.html'));
    assert(home_page_contains(MX1_URL + '/secret.html'));
    assert(home_page_contains(MX2_URL + '/secret.html'));
  });

  it('should serve the login page', function(done) {
    getPromised(BASE_AUTH_URL + '/login?redirect=/')
    .then(function(data) {
      assert.equal(data.statusCode, 200);
      done();
    });
  });

  it('should serve the homepage', function(done) {
    getPromised(HOME_URL + '/')
    .then(function(data) {
      assert.equal(data.statusCode, 200);
      done();
    });
  });

  it('should redirect when logout', function(done) {
    getPromised(BASE_AUTH_URL + '/logout?redirect=' + HOME_URL)
    .then(function(data) {
      assert.equal(data.statusCode, 200);
      assert.equal(data.body, home_page);
      done();
    });
  });

  it('should be redirected to the login page when accessing secret while not authenticated', function(done) {
    var url = HOME_URL + '/secret.html';
    // console.log(url);
    getPromised(url)
    .then(function(data) {
      assert.equal(data.statusCode, 200);
      assert.equal(data.body, login_page);
      done();
    });
  });

  it.skip('should fail the first factor', function(done) {
    postPromised(BASE_AUTH_URL + '/1stfactor', {
      form: {
        username: 'admin',
        password: 'password',
      }
    })
    .then(function(data) {
      assert.equal(data.body, 'Bad credentials');
      done();
    });
  });

  function login_as(username, password) {
    return postPromised(BASE_AUTH_URL + '/1stfactor', {
      form: {
        username: 'john',
        password: 'password',
      }
    })
    .then(function(data) {
      assert.equal(data.statusCode, 204);
      return Promise.resolve();
    });
  }

  it('should succeed the first factor', function() {
    return login_as('john', 'password');
  });

  describe('test ldap connection', function() {
    it('should not fail after inactivity', function() {
      var clock = sinon.useFakeTimers(); 
      return login_as('john', 'password')
      .then(function() {
        clock.tick(3600000 * 24); // 24 hour
        return login_as('john', 'password');
      })
      .then(function() {
        clock.restore();
        return Promise.resolve();
      });
    });
  });
});

function getPromised(url) {
  return request.getAsync(url);
}

function postPromised(url, body) {
  return request.postAsync(url, body);
}

function getHomePage() {
  return getPromised(HOME_URL + '/');
}

function getLoginPage() {
  return getPromised(BASE_AUTH_URL + '/login');
}
Adding integration tests for testing the example deployment 2017-05-14 14:50:57 +00:00
			`var request_ = require('request');`
			`var assert = require('assert');`
			`var speakeasy = require('speakeasy');`
			`var j = request_.jar();`
			`var Promise = require('bluebird');`
			`var request = Promise.promisifyAll(request_.defaults({jar: j}));`
			`var util = require('util');`
			`var sinon = require('sinon');`

			`process.env.NODE_TLS_REJECT_UNAUTHORIZED = "0";`

			`var AUTHELIA_HOST = 'nginx';`
			`var DOMAIN = 'test.local';`
			`var PORT = 8080;`

Remove '/authentication/' base path from endpoint URLs 2017-05-14 15:34:51 +00:00			`var HOME_URL = util.format('https://%s.%s:%d', 'home', DOMAIN, PORT);`
			`var SECRET_URL = util.format('https://%s.%s:%d', 'secret', DOMAIN, PORT);`
			`var SECRET1_URL = util.format('https://%s.%s:%d', 'secret1', DOMAIN, PORT);`
			`var SECRET2_URL = util.format('https://%s.%s:%d', 'secret2', DOMAIN, PORT);`
			`var MX1_URL = util.format('https://%s.%s:%d', 'mx1.mail', DOMAIN, PORT);`
			`var MX2_URL = util.format('https://%s.%s:%d', 'mx2.mail', DOMAIN, PORT);`
			`var BASE_AUTH_URL = util.format('https://%s.%s:%d', 'auth', DOMAIN, PORT);`
Adding integration tests for testing the example deployment 2017-05-14 14:50:57 +00:00
			`describe('test the server', function() {`
			`var home_page;`
			`var login_page;`

			`before(function() {`
			`var home_page_promise = getHomePage()`
			`.then(function(data) {`
			`home_page = data.body;`
			`});`
			`var login_page_promise = getLoginPage()`
			`.then(function(data) {`
			`login_page = data.body;`
			`});`
			`return Promise.all([home_page_promise,`
			`login_page_promise]);`
			`});`

Remove '/authentication/' base path from endpoint URLs 2017-05-14 15:34:51 +00:00			`function str_contains(str, pattern) {`
			`return str.indexOf(pattern) != -1;`
			`}`

			`function home_page_contains(pattern) {`
			`return str_contains(home_page, pattern);`
			`}`

			`it('should serve a correct home page', function() {`
			`assert(home_page_contains(BASE_AUTH_URL + '/logout?redirect=' + HOME_URL + '/'));`
			`assert(home_page_contains(HOME_URL + '/secret.html'));`
			`assert(home_page_contains(SECRET_URL + '/secret.html'));`
			`assert(home_page_contains(SECRET1_URL + '/secret.html'));`
			`assert(home_page_contains(SECRET2_URL + '/secret.html'));`
			`assert(home_page_contains(MX1_URL + '/secret.html'));`
			`assert(home_page_contains(MX2_URL + '/secret.html'));`
			`});`

Adding integration tests for testing the example deployment 2017-05-14 14:50:57 +00:00			`it('should serve the login page', function(done) {`
			`getPromised(BASE_AUTH_URL + '/login?redirect=/')`
			`.then(function(data) {`
			`assert.equal(data.statusCode, 200);`
			`done();`
			`});`
			`});`

			`it('should serve the homepage', function(done) {`
Remove '/authentication/' base path from endpoint URLs 2017-05-14 15:34:51 +00:00			`getPromised(HOME_URL + '/')`
Adding integration tests for testing the example deployment 2017-05-14 14:50:57 +00:00			`.then(function(data) {`
			`assert.equal(data.statusCode, 200);`
			`done();`
			`});`
			`});`

			`it('should redirect when logout', function(done) {`
Remove '/authentication/' base path from endpoint URLs 2017-05-14 15:34:51 +00:00			`getPromised(BASE_AUTH_URL + '/logout?redirect=' + HOME_URL)`
Adding integration tests for testing the example deployment 2017-05-14 14:50:57 +00:00			`.then(function(data) {`
			`assert.equal(data.statusCode, 200);`
			`assert.equal(data.body, home_page);`
			`done();`
			`});`
			`});`

			`it('should be redirected to the login page when accessing secret while not authenticated', function(done) {`
Remove '/authentication/' base path from endpoint URLs 2017-05-14 15:34:51 +00:00			`var url = HOME_URL + '/secret.html';`
Adding integration tests for testing the example deployment 2017-05-14 14:50:57 +00:00			`// console.log(url);`
			`getPromised(url)`
			`.then(function(data) {`
			`assert.equal(data.statusCode, 200);`
			`assert.equal(data.body, login_page);`
			`done();`
			`});`
			`});`

			`it.skip('should fail the first factor', function(done) {`
			`postPromised(BASE_AUTH_URL + '/1stfactor', {`
			`form: {`
			`username: 'admin',`
			`password: 'password',`
			`}`
			`})`
			`.then(function(data) {`
			`assert.equal(data.body, 'Bad credentials');`
			`done();`
			`});`
			`});`

			`function login_as(username, password) {`
			`return postPromised(BASE_AUTH_URL + '/1stfactor', {`
			`form: {`
			`username: 'john',`
			`password: 'password',`
			`}`
			`})`
			`.then(function(data) {`
			`assert.equal(data.statusCode, 204);`
			`return Promise.resolve();`
			`});`
			`}`

			`it('should succeed the first factor', function() {`
			`return login_as('john', 'password');`
			`});`

			`describe('test ldap connection', function() {`
			`it('should not fail after inactivity', function() {`
			`var clock = sinon.useFakeTimers();`
			`return login_as('john', 'password')`
			`.then(function() {`
			`clock.tick(3600000 * 24); // 24 hour`
			`return login_as('john', 'password');`
			`})`
			`.then(function() {`
			`clock.restore();`
			`return Promise.resolve();`
			`});`
			`});`
			`});`
			`});`

			`function getPromised(url) {`
			`return request.getAsync(url);`
			`}`

			`function postPromised(url, body) {`
			`return request.postAsync(url, body);`
			`}`

			`function getHomePage() {`
Remove '/authentication/' base path from endpoint URLs 2017-05-14 15:34:51 +00:00			`return getPromised(HOME_URL + '/');`
Adding integration tests for testing the example deployment 2017-05-14 14:50:57 +00:00			`}`

			`function getLoginPage() {`
			`return getPromised(BASE_AUTH_URL + '/login');`
			`}`