2017-10-31 14:54:32 -04:00
|
|
|
/*
|
2019-04-09 14:39:42 -04:00
|
|
|
* MinIO Cloud Storage, (C) 2017 MinIO, Inc.
|
2017-10-31 14:54:32 -04:00
|
|
|
*
|
|
|
|
* Licensed under the Apache License, Version 2.0 (the "License");
|
|
|
|
* you may not use this file except in compliance with the License.
|
|
|
|
* You may obtain a copy of the License at
|
|
|
|
*
|
|
|
|
* http://www.apache.org/licenses/LICENSE-2.0
|
|
|
|
*
|
|
|
|
* Unless required by applicable law or agreed to in writing, software
|
|
|
|
* distributed under the License is distributed on an "AS IS" BASIS,
|
|
|
|
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
|
|
* See the License for the specific language governing permissions and
|
|
|
|
* limitations under the License.
|
|
|
|
*/
|
|
|
|
|
|
|
|
package auth
|
|
|
|
|
2019-11-29 08:27:54 -05:00
|
|
|
import (
|
|
|
|
"encoding/json"
|
|
|
|
"testing"
|
|
|
|
"time"
|
|
|
|
)
|
|
|
|
|
|
|
|
func TestExpToInt64(t *testing.T) {
|
|
|
|
testCases := []struct {
|
|
|
|
exp interface{}
|
|
|
|
expectedFailure bool
|
|
|
|
}{
|
|
|
|
{"", true},
|
|
|
|
{"-1", true},
|
|
|
|
{"1574812326", false},
|
|
|
|
{1574812326, false},
|
|
|
|
{int64(1574812326), false},
|
|
|
|
{int(1574812326), false},
|
|
|
|
{uint(1574812326), false},
|
|
|
|
{uint64(1574812326), false},
|
|
|
|
{json.Number("1574812326"), false},
|
|
|
|
{1574812326.000, false},
|
|
|
|
{time.Duration(3) * time.Minute, false},
|
|
|
|
}
|
|
|
|
|
|
|
|
for _, testCase := range testCases {
|
|
|
|
testCase := testCase
|
|
|
|
t.Run("", func(t *testing.T) {
|
|
|
|
_, err := ExpToInt64(testCase.exp)
|
|
|
|
if err != nil && !testCase.expectedFailure {
|
|
|
|
t.Errorf("Expected success but got failure %s", err)
|
|
|
|
}
|
|
|
|
if err == nil && testCase.expectedFailure {
|
|
|
|
t.Error("Expected failure but got success")
|
|
|
|
}
|
|
|
|
})
|
|
|
|
}
|
|
|
|
}
|
2017-10-31 14:54:32 -04:00
|
|
|
|
|
|
|
func TestIsAccessKeyValid(t *testing.T) {
|
|
|
|
testCases := []struct {
|
|
|
|
accessKey string
|
|
|
|
expectedResult bool
|
|
|
|
}{
|
|
|
|
{alphaNumericTable[:accessKeyMinLen], true},
|
|
|
|
{alphaNumericTable[:accessKeyMinLen+1], true},
|
|
|
|
{alphaNumericTable[:accessKeyMinLen-1], false},
|
|
|
|
}
|
|
|
|
|
|
|
|
for i, testCase := range testCases {
|
|
|
|
result := IsAccessKeyValid(testCase.accessKey)
|
|
|
|
if result != testCase.expectedResult {
|
|
|
|
t.Fatalf("test %v: expected: %v, got: %v", i+1, testCase.expectedResult, result)
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
func TestIsSecretKeyValid(t *testing.T) {
|
|
|
|
testCases := []struct {
|
|
|
|
secretKey string
|
|
|
|
expectedResult bool
|
|
|
|
}{
|
|
|
|
{alphaNumericTable[:secretKeyMinLen], true},
|
|
|
|
{alphaNumericTable[:secretKeyMinLen+1], true},
|
|
|
|
{alphaNumericTable[:secretKeyMinLen-1], false},
|
|
|
|
}
|
|
|
|
|
|
|
|
for i, testCase := range testCases {
|
2018-11-09 18:48:24 -05:00
|
|
|
result := IsSecretKeyValid(testCase.secretKey)
|
2017-10-31 14:54:32 -04:00
|
|
|
if result != testCase.expectedResult {
|
|
|
|
t.Fatalf("test %v: expected: %v, got: %v", i+1, testCase.expectedResult, result)
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2018-04-19 20:24:43 -04:00
|
|
|
func TestGetNewCredentials(t *testing.T) {
|
|
|
|
cred, err := GetNewCredentials()
|
|
|
|
if err != nil {
|
|
|
|
t.Fatalf("Failed to get a new credential")
|
|
|
|
}
|
2017-10-31 14:54:32 -04:00
|
|
|
if !cred.IsValid() {
|
|
|
|
t.Fatalf("Failed to get new valid credential")
|
|
|
|
}
|
|
|
|
if len(cred.AccessKey) != accessKeyMaxLen {
|
|
|
|
t.Fatalf("access key length: expected: %v, got: %v", secretKeyMaxLen, len(cred.AccessKey))
|
|
|
|
}
|
|
|
|
if len(cred.SecretKey) != secretKeyMaxLen {
|
|
|
|
t.Fatalf("secret key length: expected: %v, got: %v", secretKeyMaxLen, len(cred.SecretKey))
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
func TestCreateCredentials(t *testing.T) {
|
|
|
|
testCases := []struct {
|
|
|
|
accessKey string
|
|
|
|
secretKey string
|
|
|
|
valid bool
|
|
|
|
expectedErr error
|
|
|
|
}{
|
|
|
|
// Valid access and secret keys with minimum length.
|
|
|
|
{alphaNumericTable[:accessKeyMinLen], alphaNumericTable[:secretKeyMinLen], true, nil},
|
|
|
|
// Valid access and/or secret keys are longer than minimum length.
|
|
|
|
{alphaNumericTable[:accessKeyMinLen+1], alphaNumericTable[:secretKeyMinLen+1], true, nil},
|
|
|
|
// Smaller access key.
|
|
|
|
{alphaNumericTable[:accessKeyMinLen-1], alphaNumericTable[:secretKeyMinLen], false, ErrInvalidAccessKeyLength},
|
|
|
|
// Smaller secret key.
|
|
|
|
{alphaNumericTable[:accessKeyMinLen], alphaNumericTable[:secretKeyMinLen-1], false, ErrInvalidSecretKeyLength},
|
|
|
|
}
|
|
|
|
|
|
|
|
for i, testCase := range testCases {
|
|
|
|
cred, err := CreateCredentials(testCase.accessKey, testCase.secretKey)
|
|
|
|
|
|
|
|
if err != nil {
|
|
|
|
if testCase.expectedErr == nil {
|
|
|
|
t.Fatalf("test %v: error: expected = <nil>, got = %v", i+1, err)
|
|
|
|
}
|
|
|
|
if testCase.expectedErr.Error() != err.Error() {
|
|
|
|
t.Fatalf("test %v: error: expected = %v, got = %v", i+1, testCase.expectedErr, err)
|
|
|
|
}
|
|
|
|
} else {
|
|
|
|
if testCase.expectedErr != nil {
|
|
|
|
t.Fatalf("test %v: error: expected = %v, got = <nil>", i+1, testCase.expectedErr)
|
|
|
|
}
|
|
|
|
if !cred.IsValid() {
|
|
|
|
t.Fatalf("test %v: got invalid credentials", i+1)
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
func TestCredentialsEqual(t *testing.T) {
|
2018-04-19 20:24:43 -04:00
|
|
|
cred, err := GetNewCredentials()
|
|
|
|
if err != nil {
|
|
|
|
t.Fatalf("Failed to get a new credential")
|
|
|
|
}
|
|
|
|
cred2, err := GetNewCredentials()
|
|
|
|
if err != nil {
|
|
|
|
t.Fatalf("Failed to get a new credential")
|
|
|
|
}
|
2017-10-31 14:54:32 -04:00
|
|
|
testCases := []struct {
|
|
|
|
cred Credentials
|
|
|
|
ccred Credentials
|
|
|
|
expectedResult bool
|
|
|
|
}{
|
|
|
|
// Same Credentialss.
|
|
|
|
{cred, cred, true},
|
|
|
|
// Empty credentials to compare.
|
|
|
|
{cred, Credentials{}, false},
|
|
|
|
// Empty credentials.
|
|
|
|
{Credentials{}, cred, false},
|
|
|
|
// Two different credentialss
|
2018-04-19 20:24:43 -04:00
|
|
|
{cred, cred2, false},
|
2017-10-31 14:54:32 -04:00
|
|
|
// Access key is different in credentials to compare.
|
|
|
|
{cred, Credentials{AccessKey: "myuser", SecretKey: cred.SecretKey}, false},
|
|
|
|
// Secret key is different in credentials to compare.
|
|
|
|
{cred, Credentials{AccessKey: cred.AccessKey, SecretKey: "mypassword"}, false},
|
|
|
|
}
|
|
|
|
|
|
|
|
for i, testCase := range testCases {
|
|
|
|
result := testCase.cred.Equal(testCase.ccred)
|
|
|
|
if result != testCase.expectedResult {
|
|
|
|
t.Fatalf("test %v: expected: %v, got: %v", i+1, testCase.expectedResult, result)
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|