[ceph.git] / ceph / src / test / test_rgw_ldap.cc

// -*- mode:C++; tab-width:8; c-basic-offset:2; indent-tabs-mode:t -*-
// vim: ts=8 sw=2 smarttab
/*
 * Ceph - scalable distributed file system
 *
 * Copyright (C) 2015 New Dream Network
 *
 * This is free software; you can redistribute it and/or
 * modify it under the terms of the GNU Lesser General Public
 * License version 2.1, as published by the Free Software
 * Foundation.  See file COPYING.
 *
 */

#include <stdint.h>
#include <tuple>
#include <iostream>
#include <vector>
#include <map>
#include <random>

#include "rgw/rgw_ldap.h"
#include "rgw/rgw_token.h"

#include "gtest/gtest.h"
#include "common/ceph_argparse.h"
#include "common/debug.h"

#define dout_subsys ceph_subsys_rgw

using namespace std;

namespace {

  struct {
    int argc;
    char **argv;
  } saved_args;

  bool do_hexdump = false;

  string access_key("ewogICAgIlJHV19UT0tFTiI6IHsKICAgICAgICAidmVyc2lvbiI6IDEsCiAgICAgICAgInR5cGUiOiAibGRhcCIsCiAgICAgICAgImlkIjogImFkbWluIiwKICAgICAgICAia2V5IjogImxpbnV4Ym94IgogICAgfQp9Cg=="); // {admin,linuxbox}
  string other_key("ewogICAgIlJHV19UT0tFTiI6IHsKICAgICAgICAidmVyc2lvbiI6IDEsCiAgICAgICAgInR5cGUiOiAibGRhcCIsCiAgICAgICAgImlkIjogImFkbWluIiwKICAgICAgICAia2V5IjogImJhZHBhc3MiCiAgICB9Cn0K"); // {admin,badpass}

  string ldap_uri = "ldaps://f23-kdc.rgw.com";
  string ldap_binddn = "uid=admin,cn=users,cn=accounts,dc=rgw,dc=com";
  string ldap_bindpw = "supersecret";
  string ldap_searchdn = "cn=users,cn=accounts,dc=rgw,dc=com";
  string ldap_searchfilter = "";
  string ldap_dnattr = "uid";

  rgw::LDAPHelper ldh(ldap_uri, ldap_binddn, ldap_bindpw, ldap_searchdn,
		      ldap_searchfilter, ldap_dnattr);

} /* namespace */

TEST(RGW_LDAP, INIT) {
  int ret = ldh.init();
  ASSERT_EQ(ret, 0);
}

TEST(RGW_LDAP, BIND) {
  int ret = ldh.bind();
  ASSERT_EQ(ret, 0);
}

TEST(RGW_LDAP, AUTH) {
  using std::get;
  using namespace rgw;
  int ret = 0;
  {
    RGWToken token{from_base64(access_key)};
    ret = ldh.auth(token.id, token.key);
    ASSERT_EQ(ret, 0);
  }
  {
    RGWToken token{from_base64(other_key)};
    ret = ldh.auth(token.id, token.key);
    ASSERT_NE(ret, 0);
  }
}

TEST(RGW_LDAP, SHUTDOWN) {
  // nothing
}

int main(int argc, char *argv[])
{
  auto args = argv_to_vec(argc, argv);
  env_to_vec(args);

  string val;
  for (auto arg_iter = args.begin(); arg_iter != args.end();) {
    if (ceph_argparse_witharg(args, arg_iter, &val, "--access",
			      (char*) nullptr)) {
      access_key = val;
    } else if (ceph_argparse_flag(args, arg_iter, "--hexdump",
					    (char*) nullptr)) {
      do_hexdump = true;
    } else {
      ++arg_iter;
    }
  }

  /* don't accidentally run as anonymous */
  if (access_key == "") {
    std::cout << argv[0] << " no AWS credentials, exiting" << std::endl;
    return EPERM;
  }

  saved_args.argc = argc;
  saved_args.argv = argv;

  ::testing::InitGoogleTest(&argc, argv);
  return RUN_ALL_TESTS();
}
Commit	Line	Data
7c673cae FG	1	// -- mode:C++; tab-width:8; c-basic-offset:2; indent-tabs-mode:t --
	2	// vim: ts=8 sw=2 smarttab
	3	/*
	4	* Ceph - scalable distributed file system
	5	*
	6	* Copyright (C) 2015 New Dream Network
	7	*
	8	* This is free software; you can redistribute it and/or
	9	* modify it under the terms of the GNU Lesser General Public
	10	* License version 2.1, as published by the Free Software
	11	* Foundation. See file COPYING.
	12	*
	13	*/
	14
	15	#include <stdint.h>
	16	#include <tuple>
	17	#include <iostream>
	18	#include <vector>
	19	#include <map>
	20	#include <random>
	21
	22	#include "rgw/rgw_ldap.h"
	23	#include "rgw/rgw_token.h"
	24
	25	#include "gtest/gtest.h"
	26	#include "common/ceph_argparse.h"
	27	#include "common/debug.h"
7c673cae FG	28
	29	#define dout_subsys ceph_subsys_rgw
	30
20effc67 TL	31	using namespace std;
20effc67 TL	32
7c673cae FG	33	namespace {
	34
	35	struct {
	36	int argc;
	37	char **argv;
	38	} saved_args;
	39
	40	bool do_hexdump = false;
	41
	42	string access_key("ewogICAgIlJHV19UT0tFTiI6IHsKICAgICAgICAidmVyc2lvbiI6IDEsCiAgICAgICAgInR5cGUiOiAibGRhcCIsCiAgICAgICAgImlkIjogImFkbWluIiwKICAgICAgICAia2V5IjogImxpbnV4Ym94IgogICAgfQp9Cg=="); // {admin,linuxbox}
	43	string other_key("ewogICAgIlJHV19UT0tFTiI6IHsKICAgICAgICAidmVyc2lvbiI6IDEsCiAgICAgICAgInR5cGUiOiAibGRhcCIsCiAgICAgICAgImlkIjogImFkbWluIiwKICAgICAgICAia2V5IjogImJhZHBhc3MiCiAgICB9Cn0K"); // {admin,badpass}
	44
	45	string ldap_uri = "ldaps://f23-kdc.rgw.com";
	46	string ldap_binddn = "uid=admin,cn=users,cn=accounts,dc=rgw,dc=com";
	47	string ldap_bindpw = "supersecret";
	48	string ldap_searchdn = "cn=users,cn=accounts,dc=rgw,dc=com";
	49	string ldap_searchfilter = "";
	50	string ldap_dnattr = "uid";
	51
	52	rgw::LDAPHelper ldh(ldap_uri, ldap_binddn, ldap_bindpw, ldap_searchdn,
	53	ldap_searchfilter, ldap_dnattr);
	54
	55	} /* namespace */
	56
	57	TEST(RGW_LDAP, INIT) {
	58	int ret = ldh.init();
	59	ASSERT_EQ(ret, 0);
	60	}
	61
	62	TEST(RGW_LDAP, BIND) {
	63	int ret = ldh.bind();
	64	ASSERT_EQ(ret, 0);
	65	}
	66
	67	TEST(RGW_LDAP, AUTH) {
	68	using std::get;
	69	using namespace rgw;
	70	int ret = 0;
	71	{
	72	RGWToken token{from_base64(access_key)};
	73	ret = ldh.auth(token.id, token.key);
	74	ASSERT_EQ(ret, 0);
	75	}
	76	{
	77	RGWToken token{from_base64(other_key)};
	78	ret = ldh.auth(token.id, token.key);
	79	ASSERT_NE(ret, 0);
	80	}
	81	}
	82
	83	TEST(RGW_LDAP, SHUTDOWN) {
	84	// nothing
	85	}
	86
	87	int main(int argc, char *argv[])
	88	{
20effc67	89	auto args = argv_to_vec(argc, argv);
7c673cae FG	90	env_to_vec(args);
7c673cae FG	91
20effc67	92	string val;
7c673cae FG	93	for (auto arg_iter = args.begin(); arg_iter != args.end();) {
	94	if (ceph_argparse_witharg(args, arg_iter, &val, "--access",
	95	(char*) nullptr)) {
	96	access_key = val;
	97	} else if (ceph_argparse_flag(args, arg_iter, "--hexdump",
	98	(char*) nullptr)) {
	99	do_hexdump = true;
	100	} else {
	101	++arg_iter;
	102	}
	103	}
	104
11fdf7f2	105	/* don't accidentally run as anonymous */
7c673cae FG	106	if (access_key == "") {
	107	std::cout << argv[0] << " no AWS credentials, exiting" << std::endl;
	108	return EPERM;
	109	}
	110
	111	saved_args.argc = argc;
	112	saved_args.argv = argv;
	113
	114	::testing::InitGoogleTest(&argc, argv);
	115	return RUN_ALL_TESTS();
	116	}