lighttpd1.4/tests/mod-auth.t

#!/usr/bin/env perl
BEGIN {
    # add current source dir to the include-path
    # we need this for make distcheck
   (my $srcdir = $0) =~ s#/[^/]+$#/#;
   unshift @INC, $srcdir;
}

use strict;
use IO::Socket;
use Test::More tests => 10;
use LightyTest;

my $tf = LightyTest->new();
my $t;

ok($tf->start_proc == 0, "Starting lighttpd") or die();

$t->{REQUEST}  = ( <<EOF
GET /server-status HTTP/1.0
EOF
 );
$t->{RESPONSE} = [ { 'HTTP-Protocol' => 'HTTP/1.0', 'HTTP-Status' => 401 } ];
ok($tf->handle_http($t) == 0, 'Missing Auth-token');

$t->{REQUEST}  = ( <<EOF
GET /server-status HTTP/1.0
Authorization: Basic amFuOmphb
EOF
 );
$t->{RESPONSE} = [ { 'HTTP-Protocol' => 'HTTP/1.0', 'HTTP-Status' => 401 } ];
ok($tf->handle_http($t) == 0, 'Basic-Auth: Wrong Auth-token');

$t->{REQUEST}  = ( <<EOF
GET /server-config HTTP/1.0
Authorization: Basic amFuOmphbg==
EOF
 );
$t->{RESPONSE} = [ { 'HTTP-Protocol' => 'HTTP/1.0', 'HTTP-Status' => 200 } ];
ok($tf->handle_http($t) == 0, 'Basic-Auth: Valid Auth-token - plain');

$t->{REQUEST}  = ( <<EOF
GET /server-config HTTP/1.0
Host: auth-htpasswd.example.org
Authorization: Basic ZGVzOmRlcw==
EOF
 );
$t->{RESPONSE} = [ { 'HTTP-Protocol' => 'HTTP/1.0', 'HTTP-Status' => 200 } ];
ok($tf->handle_http($t) == 0, 'Basic-Auth: Valid Auth-token - htpasswd (des)');

SKIP: {
	skip "no md5 for crypt under cygwin", 1 if $^O eq 'cygwin';
$t->{REQUEST}  = ( <<EOF
GET /server-config HTTP/1.0
Host: auth-htpasswd.example.org
Authorization: Basic bWQ1Om1kNQ==
EOF
 );
$t->{RESPONSE} = [ { 'HTTP-Protocol' => 'HTTP/1.0', 'HTTP-Status' => 200 } ];
ok($tf->handle_http($t) == 0, 'Basic-Auth: Valid Auth-token - htpasswd (md5)');
}

$t->{REQUEST}  = ( <<EOF
GET /server-config HTTP/1.0
Authorization: Basic bWQ1Om1kNA==
EOF
 );
$t->{RESPONSE} = [ { 'HTTP-Protocol' => 'HTTP/1.0', 'HTTP-Status' => 401 } ];
ok($tf->handle_http($t) == 0, 'Basic-Auth: Valid Auth-token');

## this should not crash
$t->{REQUEST}  = ( <<EOF
GET /server-status HTTP/1.0
User-Agent: Wget/1.9.1
Authorization: Digest username="jan", realm="jan", nonce="9a5428ccc05b086a08d918e73b01fc6f",
                uri="/server-status", response="ea5f7d9a30b8b762f9610ccb87dea74f"
EOF
 );
$t->{RESPONSE} = [ { 'HTTP-Protocol' => 'HTTP/1.0', 'HTTP-Status' => 401 } ];
ok($tf->handle_http($t) == 0, 'Digest-Auth: missing qop, no crash');

## this should not crash
$t->{REQUEST}  = ( <<EOF
GET /server-status HTTP/1.0
User-Agent: Wget/1.9.1
Authorization: Digest username="jan", realm="jan",
	nonce="b1d12348b4620437c43dd61c50ae4639",
	uri="/MJ-BONG.xm.mpc", qop=auth, noncecount=00000001",
	cnonce="036FCA5B86F7E7C4965C7F9B8FE714B7",
	response="29B32C2953C763C6D033C8A49983B87E"
EOF
 );
$t->{RESPONSE} = [ { 'HTTP-Protocol' => 'HTTP/1.0', 'HTTP-Status' => 400 } ];
ok($tf->handle_http($t) == 0, 'Digest-Auth: missing nc (noncecount instead), no crash');


ok($tf->stop_proc == 0, "Stopping lighttpd");
find perl at runtime git-svn-id: svn://svn.lighttpd.net/lighttpd/branches/lighttpd-merge-1.4.x@670 152afb58-edef-0310-8abb-c4023f1b3aa9 2005-09-01 11:44:57 +00:00			`#!/usr/bin/env perl`
switch to LigtyTest module git-svn-id: svn://svn.lighttpd.net/lighttpd/branches/lighttpd-1.3.x@394 152afb58-edef-0310-8abb-c4023f1b3aa9 2005-06-26 10:27:41 +00:00			`BEGIN {`
			`# add current source dir to the include-path`
			`# we need this for make distcheck`
			`(my $srcdir = $0) =~ s#/[^/]+$#/#;`
			`unshift @INC, $srcdir;`
			`}`
seperated the tests for each section and let run-tests.pl use Test::Harness git-svn-id: svn://svn.lighttpd.net/lighttpd/trunk@72 152afb58-edef-0310-8abb-c4023f1b3aa9 2005-03-02 11:27:02 +00:00
			`use strict;`
			`use IO::Socket;`
added tests for possible crashes git-svn-id: svn://svn.lighttpd.net/lighttpd/branches/lighttpd-merge-1.4.x@974 152afb58-edef-0310-8abb-c4023f1b3aa9 2006-02-01 11:35:08 +00:00			`use Test::More tests => 10;`
Unified all tests to use the LighyTest framework git-svn-id: svn://svn.lighttpd.net/lighttpd/branches/lighttpd-1.3.x@388 152afb58-edef-0310-8abb-c4023f1b3aa9 2005-06-15 09:37:18 +00:00			`use LightyTest;`
seperated the tests for each section and let run-tests.pl use Test::Harness git-svn-id: svn://svn.lighttpd.net/lighttpd/trunk@72 152afb58-edef-0310-8abb-c4023f1b3aa9 2005-03-02 11:27:02 +00:00
Unified all tests to use the LighyTest framework git-svn-id: svn://svn.lighttpd.net/lighttpd/branches/lighttpd-1.3.x@388 152afb58-edef-0310-8abb-c4023f1b3aa9 2005-06-15 09:37:18 +00:00			`my $tf = LightyTest->new();`
			`my $t;`
- a few more whitespace cleanups git-svn-id: svn://svn.lighttpd.net/lighttpd/branches/lighttpd-1.4.x@1374 152afb58-edef-0310-8abb-c4023f1b3aa9 2006-10-05 00:09:51 +00:00
Unified all tests to use the LighyTest framework git-svn-id: svn://svn.lighttpd.net/lighttpd/branches/lighttpd-1.3.x@388 152afb58-edef-0310-8abb-c4023f1b3aa9 2005-06-15 09:37:18 +00:00			`ok($tf->start_proc == 0, "Starting lighttpd") or die();`
seperated the tests for each section and let run-tests.pl use Test::Harness git-svn-id: svn://svn.lighttpd.net/lighttpd/trunk@72 152afb58-edef-0310-8abb-c4023f1b3aa9 2005-03-02 11:27:02 +00:00
Unified all tests to use the LighyTest framework git-svn-id: svn://svn.lighttpd.net/lighttpd/branches/lighttpd-1.3.x@388 152afb58-edef-0310-8abb-c4023f1b3aa9 2005-06-15 09:37:18 +00:00			`$t->{REQUEST} = ( <<EOF`
seperated the tests for each section and let run-tests.pl use Test::Harness git-svn-id: svn://svn.lighttpd.net/lighttpd/trunk@72 152afb58-edef-0310-8abb-c4023f1b3aa9 2005-03-02 11:27:02 +00:00			`GET /server-status HTTP/1.0`
			`EOF`
			`);`
added tests for keep-alive and setenv and passed a ARRAY ref instead of a HASH ref git-svn-id: svn://svn.lighttpd.net/lighttpd/branches/lighttpd-merge-1.4.x@654 152afb58-edef-0310-8abb-c4023f1b3aa9 2005-08-31 12:55:44 +00:00			`$t->{RESPONSE} = [ { 'HTTP-Protocol' => 'HTTP/1.0', 'HTTP-Status' => 401 } ];`
Unified all tests to use the LighyTest framework git-svn-id: svn://svn.lighttpd.net/lighttpd/branches/lighttpd-1.3.x@388 152afb58-edef-0310-8abb-c4023f1b3aa9 2005-06-15 09:37:18 +00:00			`ok($tf->handle_http($t) == 0, 'Missing Auth-token');`
seperated the tests for each section and let run-tests.pl use Test::Harness git-svn-id: svn://svn.lighttpd.net/lighttpd/trunk@72 152afb58-edef-0310-8abb-c4023f1b3aa9 2005-03-02 11:27:02 +00:00
Unified all tests to use the LighyTest framework git-svn-id: svn://svn.lighttpd.net/lighttpd/branches/lighttpd-1.3.x@388 152afb58-edef-0310-8abb-c4023f1b3aa9 2005-06-15 09:37:18 +00:00			`$t->{REQUEST} = ( <<EOF`
seperated the tests for each section and let run-tests.pl use Test::Harness git-svn-id: svn://svn.lighttpd.net/lighttpd/trunk@72 152afb58-edef-0310-8abb-c4023f1b3aa9 2005-03-02 11:27:02 +00:00			`GET /server-status HTTP/1.0`
			`Authorization: Basic amFuOmphb`
			`EOF`
			`);`
added tests for keep-alive and setenv and passed a ARRAY ref instead of a HASH ref git-svn-id: svn://svn.lighttpd.net/lighttpd/branches/lighttpd-merge-1.4.x@654 152afb58-edef-0310-8abb-c4023f1b3aa9 2005-08-31 12:55:44 +00:00			`$t->{RESPONSE} = [ { 'HTTP-Protocol' => 'HTTP/1.0', 'HTTP-Status' => 401 } ];`
Unified all tests to use the LighyTest framework git-svn-id: svn://svn.lighttpd.net/lighttpd/branches/lighttpd-1.3.x@388 152afb58-edef-0310-8abb-c4023f1b3aa9 2005-06-15 09:37:18 +00:00			`ok($tf->handle_http($t) == 0, 'Basic-Auth: Wrong Auth-token');`
seperated the tests for each section and let run-tests.pl use Test::Harness git-svn-id: svn://svn.lighttpd.net/lighttpd/trunk@72 152afb58-edef-0310-8abb-c4023f1b3aa9 2005-03-02 11:27:02 +00:00
Unified all tests to use the LighyTest framework git-svn-id: svn://svn.lighttpd.net/lighttpd/branches/lighttpd-1.3.x@388 152afb58-edef-0310-8abb-c4023f1b3aa9 2005-06-15 09:37:18 +00:00			`$t->{REQUEST} = ( <<EOF`
seperated the tests for each section and let run-tests.pl use Test::Harness git-svn-id: svn://svn.lighttpd.net/lighttpd/trunk@72 152afb58-edef-0310-8abb-c4023f1b3aa9 2005-03-02 11:27:02 +00:00			`GET /server-config HTTP/1.0`
			`Authorization: Basic amFuOmphbg==`
			`EOF`
			`);`
added tests for keep-alive and setenv and passed a ARRAY ref instead of a HASH ref git-svn-id: svn://svn.lighttpd.net/lighttpd/branches/lighttpd-merge-1.4.x@654 152afb58-edef-0310-8abb-c4023f1b3aa9 2005-08-31 12:55:44 +00:00			`$t->{RESPONSE} = [ { 'HTTP-Protocol' => 'HTTP/1.0', 'HTTP-Status' => 200 } ];`
tests for htpasswd + md5 and referer matching in conditionals git-svn-id: svn://svn.lighttpd.net/lighttpd/branches/lighttpd-merge-1.4.x@711 152afb58-edef-0310-8abb-c4023f1b3aa9 2005-09-16 12:44:29 +00:00			`ok($tf->handle_http($t) == 0, 'Basic-Auth: Valid Auth-token - plain');`

			`$t->{REQUEST} = ( <<EOF`
			`GET /server-config HTTP/1.0`
			`Host: auth-htpasswd.example.org`
			`Authorization: Basic ZGVzOmRlcw==`
			`EOF`
			`);`
			`$t->{RESPONSE} = [ { 'HTTP-Protocol' => 'HTTP/1.0', 'HTTP-Status' => 200 } ];`
			`ok($tf->handle_http($t) == 0, 'Basic-Auth: Valid Auth-token - htpasswd (des)');`

scons fixes, and built/test on cygwin git-svn-id: svn://svn.lighttpd.net/lighttpd/branches/lighttpd-merge-1.4.x@771 152afb58-edef-0310-8abb-c4023f1b3aa9 2005-10-01 12:35:55 +00:00			`SKIP: {`
kill warning for string compare introduced by last changeset git-svn-id: svn://svn.lighttpd.net/lighttpd/branches/lighttpd-merge-1.4.x@772 152afb58-edef-0310-8abb-c4023f1b3aa9 2005-10-01 12:47:52 +00:00			`skip "no md5 for crypt under cygwin", 1 if $^O eq 'cygwin';`
tests for htpasswd + md5 and referer matching in conditionals git-svn-id: svn://svn.lighttpd.net/lighttpd/branches/lighttpd-merge-1.4.x@711 152afb58-edef-0310-8abb-c4023f1b3aa9 2005-09-16 12:44:29 +00:00			`$t->{REQUEST} = ( <<EOF`
			`GET /server-config HTTP/1.0`
			`Host: auth-htpasswd.example.org`
			`Authorization: Basic bWQ1Om1kNQ==`
			`EOF`
			`);`
			`$t->{RESPONSE} = [ { 'HTTP-Protocol' => 'HTTP/1.0', 'HTTP-Status' => 200 } ];`
			`ok($tf->handle_http($t) == 0, 'Basic-Auth: Valid Auth-token - htpasswd (md5)');`
scons fixes, and built/test on cygwin git-svn-id: svn://svn.lighttpd.net/lighttpd/branches/lighttpd-merge-1.4.x@771 152afb58-edef-0310-8abb-c4023f1b3aa9 2005-10-01 12:35:55 +00:00			`}`
tests for htpasswd + md5 and referer matching in conditionals git-svn-id: svn://svn.lighttpd.net/lighttpd/branches/lighttpd-merge-1.4.x@711 152afb58-edef-0310-8abb-c4023f1b3aa9 2005-09-16 12:44:29 +00:00
			`$t->{REQUEST} = ( <<EOF`
			`GET /server-config HTTP/1.0`
			`Authorization: Basic bWQ1Om1kNA==`
			`EOF`
			`);`
			`$t->{RESPONSE} = [ { 'HTTP-Protocol' => 'HTTP/1.0', 'HTTP-Status' => 401 } ];`
Unified all tests to use the LighyTest framework git-svn-id: svn://svn.lighttpd.net/lighttpd/branches/lighttpd-1.3.x@388 152afb58-edef-0310-8abb-c4023f1b3aa9 2005-06-15 09:37:18 +00:00			`ok($tf->handle_http($t) == 0, 'Basic-Auth: Valid Auth-token');`
seperated the tests for each section and let run-tests.pl use Test::Harness git-svn-id: svn://svn.lighttpd.net/lighttpd/trunk@72 152afb58-edef-0310-8abb-c4023f1b3aa9 2005-03-02 11:27:02 +00:00
fixed checks for the digest-crash git-svn-id: svn://svn.lighttpd.net/lighttpd/branches/lighttpd-1.3.x@375 152afb58-edef-0310-8abb-c4023f1b3aa9 2005-06-11 09:02:34 +00:00			`## this should not crash`
Unified all tests to use the LighyTest framework git-svn-id: svn://svn.lighttpd.net/lighttpd/branches/lighttpd-1.3.x@388 152afb58-edef-0310-8abb-c4023f1b3aa9 2005-06-15 09:37:18 +00:00			`$t->{REQUEST} = ( <<EOF`
fixed checks for the digest-crash git-svn-id: svn://svn.lighttpd.net/lighttpd/branches/lighttpd-1.3.x@375 152afb58-edef-0310-8abb-c4023f1b3aa9 2005-06-11 09:02:34 +00:00			`GET /server-status HTTP/1.0`
merged [373] git-svn-id: svn://svn.lighttpd.net/lighttpd/branches/lighttpd-1.3.x@374 152afb58-edef-0310-8abb-c4023f1b3aa9 2005-06-06 21:21:37 +00:00			`User-Agent: Wget/1.9.1`
fixed checks for the digest-crash git-svn-id: svn://svn.lighttpd.net/lighttpd/branches/lighttpd-1.3.x@375 152afb58-edef-0310-8abb-c4023f1b3aa9 2005-06-11 09:02:34 +00:00			`Authorization: Digest username="jan", realm="jan", nonce="9a5428ccc05b086a08d918e73b01fc6f",`
			`uri="/server-status", response="ea5f7d9a30b8b762f9610ccb87dea74f"`
merged [373] git-svn-id: svn://svn.lighttpd.net/lighttpd/branches/lighttpd-1.3.x@374 152afb58-edef-0310-8abb-c4023f1b3aa9 2005-06-06 21:21:37 +00:00			`EOF`
			`);`
added tests for keep-alive and setenv and passed a ARRAY ref instead of a HASH ref git-svn-id: svn://svn.lighttpd.net/lighttpd/branches/lighttpd-merge-1.4.x@654 152afb58-edef-0310-8abb-c4023f1b3aa9 2005-08-31 12:55:44 +00:00			`$t->{RESPONSE} = [ { 'HTTP-Protocol' => 'HTTP/1.0', 'HTTP-Status' => 401 } ];`
Unified all tests to use the LighyTest framework git-svn-id: svn://svn.lighttpd.net/lighttpd/branches/lighttpd-1.3.x@388 152afb58-edef-0310-8abb-c4023f1b3aa9 2005-06-15 09:37:18 +00:00			`ok($tf->handle_http($t) == 0, 'Digest-Auth: missing qop, no crash');`
merged [373] git-svn-id: svn://svn.lighttpd.net/lighttpd/branches/lighttpd-1.3.x@374 152afb58-edef-0310-8abb-c4023f1b3aa9 2005-06-06 21:21:37 +00:00
added tests for possible crashes git-svn-id: svn://svn.lighttpd.net/lighttpd/branches/lighttpd-merge-1.4.x@974 152afb58-edef-0310-8abb-c4023f1b3aa9 2006-02-01 11:35:08 +00:00			`## this should not crash`
			`$t->{REQUEST} = ( <<EOF`
			`GET /server-status HTTP/1.0`
			`User-Agent: Wget/1.9.1`
- a few more whitespace cleanups git-svn-id: svn://svn.lighttpd.net/lighttpd/branches/lighttpd-1.4.x@1374 152afb58-edef-0310-8abb-c4023f1b3aa9 2006-10-05 00:09:51 +00:00			`Authorization: Digest username="jan", realm="jan",`
			`nonce="b1d12348b4620437c43dd61c50ae4639",`
			`uri="/MJ-BONG.xm.mpc", qop=auth, noncecount=00000001",`
			`cnonce="036FCA5B86F7E7C4965C7F9B8FE714B7",`
			`response="29B32C2953C763C6D033C8A49983B87E"`
added tests for possible crashes git-svn-id: svn://svn.lighttpd.net/lighttpd/branches/lighttpd-merge-1.4.x@974 152afb58-edef-0310-8abb-c4023f1b3aa9 2006-02-01 11:35:08 +00:00			`EOF`
			`);`
			`$t->{RESPONSE} = [ { 'HTTP-Protocol' => 'HTTP/1.0', 'HTTP-Status' => 400 } ];`
			`ok($tf->handle_http($t) == 0, 'Digest-Auth: missing nc (noncecount instead), no crash');`


merged [373] git-svn-id: svn://svn.lighttpd.net/lighttpd/branches/lighttpd-1.3.x@374 152afb58-edef-0310-8abb-c4023f1b3aa9 2005-06-06 21:21:37 +00:00
Unified all tests to use the LighyTest framework git-svn-id: svn://svn.lighttpd.net/lighttpd/branches/lighttpd-1.3.x@388 152afb58-edef-0310-8abb-c4023f1b3aa9 2005-06-15 09:37:18 +00:00			`ok($tf->stop_proc == 0, "Stopping lighttpd");`
seperated the tests for each section and let run-tests.pl use Test::Harness git-svn-id: svn://svn.lighttpd.net/lighttpd/trunk@72 152afb58-edef-0310-8abb-c4023f1b3aa9 2005-03-02 11:27:02 +00:00