writeas
/
go-webfinger
1
0
Fork 0
Code Issues 0 Pull Requests 0 Releases 3 Activity
A golang webfinger server implementation
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
11 Commits
1 Branch
196 KiB
 
Tree: 1.1.0
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '1.1.0'
${ noResults }
go-webfinger/http_test.go

289 lines
8.2 KiB
Raw Permalink Blame History 

  1. package webfinger

  2. 

  3. import (

  4. 	"bytes"

  5. 	"net/http"

  6. 	"net/url"

  7. 	"sort"

  8. 	"testing"

  9. 

  10. 	"reflect"

  11. 

  12. 	"crypto/tls"

  13. 

  14. 	"strings"

  15. 

  16. 	"github.com/pkg/errors"

  17. )

  18. 

  19. type dummyUserResolver struct {

  20. }

  21. 

  22. func (d *dummyUserResolver) FindUser(username string, hostname, requestHost string, rel []Rel) (*Resource, error) {

  23. 	if username == "hello" {

  24. 		if len(rel) == 2 && rel[0] == "x" && rel[1] == "y" {

  25. 			return &Resource{

  26. 				Links: []Link{

  27. 					Link{

  28. 						HRef: string(rel[0]),

  29. 						Rel:  string(rel[0]),

  30. 					},

  31. 					Link{

  32. 						HRef: string(rel[1]),

  33. 						Rel:  string(rel[1]),

  34. 					},

  35. 				},

  36. 			}, nil

  37. 		}

  38. 		return &Resource{

  39. 			Links: []Link{

  40. 				Link{

  41. 					HRef: string("x"),

  42. 					Rel:  string("x"),

  43. 				},

  44. 				Link{

  45. 					HRef: string("y"),

  46. 					Rel:  string("y"),

  47. 				},

  48. 				Link{

  49. 					HRef: string("z"),

  50. 					Rel:  string("z"),

  51. 				},

  52. 			},

  53. 		}, nil

  54. 	}

  55. 

  56. 	return nil, errors.New("User not found")

  57. }

  58. 

  59. func (d *dummyUserResolver) DummyUser(username string, hostname string, rel []Rel) (*Resource, error) {

  60. 	return nil, errors.New("User not found")

  61. }

  62. 

  63. func (d *dummyUserResolver) IsNotFoundError(err error) bool {

  64. 	if err == nil {

  65. 		return false

  66. 	}

  67. 	if err.Error() == "User not found" {

  68. 		return true

  69. 	}

  70. 	if errors.Cause(err).Error() == "User not found" {

  71. 		return true

  72. 	}

  73. 	return false

  74. }

  75. 

  76. type dummyResponseWriter struct {

  77. 	bytes.Buffer

  78. 

  79. 	code    int

  80. 	headers http.Header

  81. }

  82. 

  83. func (d *dummyResponseWriter) Header() http.Header {

  84. 	if d.headers == nil {

  85. 		d.headers = make(http.Header)

  86. 	}

  87. 	return d.headers

  88. }

  89. 

  90. func (d *dummyResponseWriter) WriteHeader(i int) {

  91. 	d.code = i

  92. }

  93. 

  94. type serveHTTPTest struct {

  95. 	Description   string

  96. 	Input         *http.Request

  97. 	OutputCode    int

  98. 	OutputHeaders http.Header

  99. 	OutputBody    string

  100. }

  101. 

  102. type kv struct {

  103. 	key string

  104. 	val string

  105. }

  106. 

  107. func buildRequest(method string, path string, query string, kvx ...kv) *http.Request {

  108. 	r := &http.Request{}

  109. 	r.Host = "http://localhost"

  110. 	r.Header = make(http.Header)

  111. 	r.URL = &url.URL{

  112. 		Path:     path,

  113. 		RawQuery: query,

  114. 		Host:     "localhost",

  115. 		Scheme:   "http",

  116. 	}

  117. 	for _, k := range kvx {

  118. 		r.Header.Add(k.key, k.val)

  119. 	}

  120. 	r.Method = method

  121. 	return r

  122. }

  123. 

  124. func buildRequestTLS(method string, path string, query string, kvx ...kv) *http.Request {

  125. 	r := &http.Request{}

  126. 	r.Host = "https://localhost"

  127. 	r.Header = make(http.Header)

  128. 	r.URL = &url.URL{

  129. 		Path:     path,

  130. 		RawQuery: query,

  131. 		Host:     "localhost",

  132. 		Scheme:   "https",

  133. 	}

  134. 	r.TLS = &tls.ConnectionState{} // marks the request as TLS

  135. 	for _, k := range kvx {

  136. 		r.Header.Add(k.key, k.val)

  137. 	}

  138. 	r.Method = method

  139. 	return r

  140. }

  141. 

  142. var defaultHeaders = http.Header(map[string][]string{

  143. 	"Cache-Control": []string{"no-cache"},

  144. 	"Pragma":        []string{"no-cache"},

  145. 	"Content-Type":  []string{"application/jrd+json"},

  146. })

  147. 

  148. func plusHeader(h http.Header, kvx ...kv) http.Header {

  149. 	var h2 = make(http.Header)

  150. 	for k, vx := range h {

  151. 		for _, v := range vx {

  152. 			h2.Add(k, v)

  153. 		}

  154. 	}

  155. 

  156. 	for _, k := range kvx {

  157. 		h2.Add(k.key, k.val)

  158. 	}

  159. 

  160. 	return h2

  161. }

  162. 

  163. func compareHeaders(h1 http.Header, h2 http.Header) bool {

  164. 	if len(h1) != len(h2) {

  165. 		return false

  166. 	}

  167. 	keys := []string{}

  168. 	for k := range h1 {

  169. 		keys = append(keys, k)

  170. 	}

  171. 	sort.Strings(keys)

  172. 

  173. 	for _, k := range keys {

  174. 		if !reflect.DeepEqual(h1[k], h2[k]) {

  175. 			return false

  176. 		}

  177. 	}

  178. 	return true

  179. }

  180. 

  181. func TestServiceServeHTTP(t *testing.T) {

  182. 

  183. 	var tests = []serveHTTPTest{

  184. 

  185. 		{"GET root URL should return 404 not found with no headers",

  186. 			buildRequestTLS("GET", "/", ""), http.StatusNotFound, make(http.Header), ""},

  187. 		{"POST root URL should return 404 not found with no headers",

  188. 			buildRequestTLS("POST", "/", ""), http.StatusNotFound, make(http.Header), ""},

  189. 		{"GET /.well-known should return 404 not found with no headers",

  190. 			buildRequestTLS("GET", "/.well-known", ""), http.StatusNotFound, make(http.Header), ""},

  191. 		{"POST /.well-known should return 404 not found with no headers",

  192. 			buildRequestTLS("POST", "/.well-known", ""), http.StatusNotFound, make(http.Header), ""},

  193. 

  194. 		/*

  195. 			4.2.  Performing a WebFinger Query

  196. 		*/

  197. 

  198. 		/*

  199. 			A WebFinger client issues a query using the GET method to the well-

  200. 			known [3] resource identified by the URI whose path component is

  201. 			"/.well-known/webfinger" and whose query component MUST include the

  202. 			"resource" parameter exactly once and set to the value of the URI for

  203. 			which information is being sought.

  204. 		*/

  205. 		{"GET Webfinger resource should return valid response with default headers",

  206. 			buildRequestTLS("GET", WebFingerPath, "resource=acct:hello@domain"), http.StatusOK, defaultHeaders,

  207. 			`{"links":[{"href":"x","ref":"x"},{"href":"y","ref":"y"},{"href":"z","ref":"z"}]}`},

  208. 

  209. 		{"POST Webfinger URL should fail with MethodNotAllowed",

  210. 			buildRequestTLS("POST", WebFingerPath, ""), http.StatusMethodNotAllowed, defaultHeaders, ""},

  211. 		{"GET multiple resources should fail with BadRequest",

  212. 			buildRequestTLS("GET", WebFingerPath, "resource=acct:hello@domain&resource=acct:hello2@domain"), http.StatusBadRequest, defaultHeaders, ""},

  213. 

  214. 		/*

  215. 		   The "rel" parameter MAY be included multiple times in order to

  216. 		   request multiple link relation types.

  217. 		*/

  218. 		{"GET Webfinger resource with rel should filter results",

  219. 			buildRequestTLS("GET", WebFingerPath, "resource=acct:hello@domain&rel=x&rel=y"), http.StatusOK, defaultHeaders,

  220. 			`{"links":[{"href":"x","ref":"x"},{"href":"y","ref":"y"}]}`},

  221. 

  222. 		/*

  223. 		   A WebFinger resource MAY redirect the client; if it does, the

  224. 		   redirection MUST only be to an "https" URI and the client MUST

  225. 		   perform certificate validation again when redirected.

  226. 		*/

  227. 		{"GET non-TLS should redirect to TLS",

  228. 			buildRequest("GET", WebFingerPath, "resource=acct:hello@domain"), http.StatusSeeOther, plusHeader(

  229. 				defaultHeaders, kv{"Location", "https://localhost/.well-known/webfinger?resource=acct:hello@domain"}), ""},

  230. 

  231. 		/*

  232. 				A WebFinger resource MUST return a JRD as the representation for the

  233. 			   resource if the client requests no other supported format explicitly

  234. 			   via the HTTP "Accept" header.  The client MAY include the "Accept"

  235. 			   header to indicate a desired representation; representations other

  236. 			   than JRD might be defined in future specifications.  The WebFinger

  237. 			   resource MUST silently ignore any requested representations that it

  238. 			   does not understand or support.  The media type used for the JSON

  239. 			   Resource Descriptor (JRD) is "application/jrd+json" (see Section

  240. 			   10.2).

  241. 		*/

  242. 		{"GET with Accept should return as normal",

  243. 			buildRequestTLS("GET", WebFingerPath, "resource=acct:hello@domain", kv{"Accept", "application/json"}), http.StatusOK, defaultHeaders,

  244. 			`{"links":[{"href":"x","ref":"x"},{"href":"y","ref":"y"},{"href":"z","ref":"z"}]}`},

  245. 

  246. 		/*

  247. 		   If the "resource" parameter is a value for which the server has no

  248. 		   information, the server MUST indicate that it was unable to match the

  249. 		   request as per Section 10.4.5 of RFC 2616.

  250. 		*/

  251. 		{"GET with a missing user should return 404",

  252. 			buildRequestTLS("GET", WebFingerPath, "resource=acct:missinguser@domain"), http.StatusNotFound, defaultHeaders, ""},

  253. 

  254. 		/*

  255. 			If the "resource" parameter is absent or malformed, the WebFinger

  256. 			resource MUST indicate that the request is bad as per Section 10.4.1

  257. 			of RFC 2616 [2]. (400 bad request)

  258. 		*/

  259. 		{"GET with no resource should fail with BadRequest",

  260. 			buildRequestTLS("GET", WebFingerPath, ""), http.StatusBadRequest, defaultHeaders, ""},

  261. 		{"GET with malformed resource URI should fail with BadRequest",

  262. 			buildRequestTLS("GET", WebFingerPath, "resource=hello-world"), http.StatusBadRequest, defaultHeaders, ""},

  263. 		{"GET with http resource URI should fail with BadRequest",

  264. 			buildRequestTLS("GET", WebFingerPath, "resource=http://hello-world"), http.StatusBadRequest, defaultHeaders, ""},

  265. 	}

  266. 	svc := Default(&dummyUserResolver{})

  267. 

  268. 	for _, tx := range tests {

  269. 		w := &dummyResponseWriter{code: 200}

  270. 		svc.ServeHTTP(w, tx.Input)

  271. 		// code should be 404

  272. 		// headers should be empty

  273. 		body := strings.TrimSpace(string(w.Buffer.Bytes()))

  274. 

  275. 		failed := false

  276. 		failed = failed || w.code != tx.OutputCode

  277. 		failed = failed || !compareHeaders(tx.OutputHeaders, w.headers)

  278. 		failed = failed || body != tx.OutputBody

  279. 		if failed {

  280. 			t.Errorf("%s\nHTTP '%v' '%v' => \n\t'%v'\n\t'%v'\n\t'%v';\nexpected \n\t'%v \n\t'%v' \n\t'%v'",

  281. 				tx.Description,

  282. 				tx.Input.Method, tx.Input.URL,

  283. 				w.code, w.headers, body,

  284. 				tx.OutputCode, tx.OutputHeaders, tx.OutputBody)

  285. 		}

  286. 	}

  287. 

  288. }