Home Explore Help
Sign In
RISCI_ATOM
/
synapse
mirror of https://github.com/matrix-org/synapse.git
1
0
Fork 0
Files Issues 3 Wiki
Tree: 1df22e16df
Branches Tags
synapse
/
tests
/
app
/
test_openid_listener.py

test_openid_listener.py 4.1 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127 
  1. # Copyright 2019 New Vector Ltd
    2. 

  2. #
    3. 

  3. # Licensed under the Apache License, Version 2.0 (the "License");
    4. 

  4. # you may not use this file except in compliance with the License.
    5. 

  5. # You may obtain a copy of the License at
    6. 

  6. #
    7. 

  7. #     http://www.apache.org/licenses/LICENSE-2.0
    8. 

  8. #
    9. 

  9. # Unless required by applicable law or agreed to in writing, software
    10. 

  10. # distributed under the License is distributed on an "AS IS" BASIS,
    11. 

  11. # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
    12. 

  12. # See the License for the specific language governing permissions and
    13. 

  13. # limitations under the License.
    14. 

  14. from unittest.mock import Mock, patch
    15. 

  15. 

  16. from parameterized import parameterized
    17. 

  17. 

  18. from synapse.app.generic_worker import GenericWorkerServer
    19. 

  19. from synapse.app.homeserver import SynapseHomeServer
    20. 

  20. from synapse.config.server import parse_listener_def
    21. 

  21. 

  22. from tests.server import make_request
    23. 

  23. from tests.unittest import HomeserverTestCase
    24. 

  24. 

  25. 

  26. class FederationReaderOpenIDListenerTests(HomeserverTestCase):
    27. 

  27.     def make_homeserver(self, reactor, clock):
    28. 

  28.         hs = self.setup_test_homeserver(
    29. 

  29.             federation_http_client=None, homeserver_to_use=GenericWorkerServer
    30. 

  30.         )
    31. 

  31.         return hs
    32. 

  32. 

  33.     def default_config(self):
    34. 

  34.         conf = super().default_config()
    35. 

  35.         # we're using FederationReaderServer, which uses a SlavedStore, so we
    36. 

  36.         # have to tell the FederationHandler not to try to access stuff that is only
    37. 

  37.         # in the primary store.
    38. 

  38.         conf["worker_app"] = "yes"
    39. 

  39. 

  40.         return conf
    41. 

  41. 

  42.     @parameterized.expand(
    43. 

  43.         [
    44. 

  44.             (["federation"], "auth_fail"),
    45. 

  45.             ([], "no_resource"),
    46. 

  46.             (["openid", "federation"], "auth_fail"),
    47. 

  47.             (["openid"], "auth_fail"),
    48. 

  48.         ]
    49. 

  49.     )
    50. 

  50.     def test_openid_listener(self, names, expectation):
    51. 

  51.         """
    52. 

  52.         Test different openid listener configurations.
    53. 

  53. 

  54.         401 is success here since it means we hit the handler and auth failed.
    55. 

  55.         """
    56. 

  56.         config = {
    57. 

  57.             "port": 8080,
    58. 

  58.             "type": "http",
    59. 

  59.             "bind_addresses": ["0.0.0.0"],
    60. 

  60.             "resources": [{"names": names}],
    61. 

  61.         }
    62. 

  62. 

  63.         # Listen with the config
    64. 

  64.         self.hs._listen_http(parse_listener_def(config))
    65. 

  65. 

  66.         # Grab the resource from the site that was told to listen
    67. 

  67.         site = self.reactor.tcpServers[0][1]
    68. 

  68.         try:
    69. 

  69.             site.resource.children[b"_matrix"].children[b"federation"]
    70. 

  70.         except KeyError:
    71. 

  71.             if expectation == "no_resource":
    72. 

  72.                 return
    73. 

  73.             raise
    74. 

  74. 

  75.         channel = make_request(
    76. 

  76.             self.reactor, site, "GET", "/_matrix/federation/v1/openid/userinfo"
    77. 

  77.         )
    78. 

  78. 

  79.         self.assertEqual(channel.code, 401)
    80. 

  80. 

  81. 

  82. @patch("synapse.app.homeserver.KeyApiV2Resource", new=Mock())
    83. 

  83. class SynapseHomeserverOpenIDListenerTests(HomeserverTestCase):
    84. 

  84.     def make_homeserver(self, reactor, clock):
    85. 

  85.         hs = self.setup_test_homeserver(
    86. 

  86.             federation_http_client=None, homeserver_to_use=SynapseHomeServer
    87. 

  87.         )
    88. 

  88.         return hs
    89. 

  89. 

  90.     @parameterized.expand(
    91. 

  91.         [
    92. 

  92.             (["federation"], "auth_fail"),
    93. 

  93.             ([], "no_resource"),
    94. 

  94.             (["openid", "federation"], "auth_fail"),
    95. 

  95.             (["openid"], "auth_fail"),
    96. 

  96.         ]
    97. 

  97.     )
    98. 

  98.     def test_openid_listener(self, names, expectation):
    99. 

  99.         """
    100. 

  100.         Test different openid listener configurations.
    101. 

  101. 

  102.         401 is success here since it means we hit the handler and auth failed.
    103. 

  103.         """
    104. 

  104.         config = {
    105. 

  105.             "port": 8080,
    106. 

  106.             "type": "http",
    107. 

  107.             "bind_addresses": ["0.0.0.0"],
    108. 

  108.             "resources": [{"names": names}],
    109. 

  109.         }
    110. 

  110. 

  111.         # Listen with the config
    112. 

  112.         self.hs._listener_http(self.hs.config, parse_listener_def(config))
    113. 

  113. 

  114.         # Grab the resource from the site that was told to listen
    115. 

  115.         site = self.reactor.tcpServers[0][1]
    116. 

  116.         try:
    117. 

  117.             site.resource.children[b"_matrix"].children[b"federation"]
    118. 

  118.         except KeyError:
    119. 

  119.             if expectation == "no_resource":
    120. 

  120.                 return
    121. 

  121.             raise
    122. 

  122. 

  123.         channel = make_request(
    124. 

  124.             self.reactor, site, "GET", "/_matrix/federation/v1/openid/userinfo"
    125. 

  125.         )
    126. 

  126. 

  127.         self.assertEqual(channel.code, 401)
    128.