-
Notifications
You must be signed in to change notification settings - Fork 1.6k
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Browse files
Browse the repository at this point in the history
…325) * #309 allow users to ignore ssl warnings, not sure this is advisable * #309 docs for ssl ignore
- Loading branch information
1 parent
4f061f2
commit 636d116
Showing
9 changed files
with
217 additions
and
12 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,146 @@ | ||
using System; | ||
using System.Collections.Generic; | ||
using System.IO; | ||
using System.Net; | ||
using Microsoft.AspNetCore.Builder; | ||
using Microsoft.AspNetCore.Hosting; | ||
using Microsoft.AspNetCore.Http; | ||
using Ocelot.Configuration.File; | ||
using Shouldly; | ||
using TestStack.BDDfy; | ||
using Xunit; | ||
|
||
namespace Ocelot.AcceptanceTests | ||
{ | ||
public class SslTests : IDisposable | ||
{ | ||
private IWebHost _builder; | ||
private readonly Steps _steps; | ||
private string _downstreamPath; | ||
|
||
public SslTests() | ||
{ | ||
_steps = new Steps(); | ||
} | ||
|
||
[Fact] | ||
public void should_dangerous_accept_any_server_certificate_validator() | ||
{ | ||
int port = 51129; | ||
|
||
var configuration = new FileConfiguration | ||
{ | ||
ReRoutes = new List<FileReRoute> | ||
{ | ||
new FileReRoute | ||
{ | ||
DownstreamPathTemplate = "/", | ||
DownstreamScheme = "https", | ||
DownstreamHostAndPorts = new List<FileHostAndPort> | ||
{ | ||
new FileHostAndPort | ||
{ | ||
Host = "localhost", | ||
Port = port, | ||
} | ||
}, | ||
UpstreamPathTemplate = "/", | ||
UpstreamHttpMethod = new List<string> { "Get" }, | ||
DangerousAcceptAnyServerCertificateValidator = true | ||
} | ||
} | ||
}; | ||
|
||
this.Given(x => x.GivenThereIsAServiceRunningOn($"https://localhost:{port}", "/", 200, "Hello from Laura", port)) | ||
.And(x => _steps.GivenThereIsAConfiguration(configuration)) | ||
.And(x => _steps.GivenOcelotIsRunning()) | ||
.When(x => _steps.WhenIGetUrlOnTheApiGateway("/")) | ||
.Then(x => _steps.ThenTheStatusCodeShouldBe(HttpStatusCode.OK)) | ||
.And(x => _steps.ThenTheResponseBodyShouldBe("Hello from Laura")) | ||
.BDDfy(); | ||
} | ||
|
||
[Fact] | ||
public void should_not_dangerous_accept_any_server_certificate_validator() | ||
{ | ||
int port = 52129; | ||
|
||
var configuration = new FileConfiguration | ||
{ | ||
ReRoutes = new List<FileReRoute> | ||
{ | ||
new FileReRoute | ||
{ | ||
DownstreamPathTemplate = "/", | ||
DownstreamScheme = "https", | ||
DownstreamHostAndPorts = new List<FileHostAndPort> | ||
{ | ||
new FileHostAndPort | ||
{ | ||
Host = "localhost", | ||
Port = port, | ||
} | ||
}, | ||
UpstreamPathTemplate = "/", | ||
UpstreamHttpMethod = new List<string> { "Get" }, | ||
DangerousAcceptAnyServerCertificateValidator = false | ||
} | ||
} | ||
}; | ||
|
||
this.Given(x => x.GivenThereIsAServiceRunningOn($"https://localhost:{port}", "/", 200, "Hello from Laura", port)) | ||
.And(x => _steps.GivenThereIsAConfiguration(configuration)) | ||
.And(x => _steps.GivenOcelotIsRunning()) | ||
.When(x => _steps.WhenIGetUrlOnTheApiGateway("/")) | ||
.Then(x => _steps.ThenTheStatusCodeShouldBe(HttpStatusCode.NotFound)) | ||
.BDDfy(); | ||
} | ||
|
||
private void GivenThereIsAServiceRunningOn(string baseUrl, string basePath, int statusCode, string responseBody, int port) | ||
{ | ||
_builder = new WebHostBuilder() | ||
.UseUrls(baseUrl) | ||
.UseKestrel(options => | ||
{ | ||
options.Listen(IPAddress.Loopback, port, listenOptions => | ||
{ | ||
listenOptions.UseHttps("idsrv3test.pfx", "idsrv3test"); | ||
}); | ||
}) | ||
.UseContentRoot(Directory.GetCurrentDirectory()) | ||
.Configure(app => | ||
{ | ||
app.UsePathBase(basePath); | ||
app.Run(async context => | ||
{ | ||
_downstreamPath = !string.IsNullOrEmpty(context.Request.PathBase.Value) ? context.Request.PathBase.Value : context.Request.Path.Value; | ||
if(_downstreamPath != basePath) | ||
{ | ||
context.Response.StatusCode = statusCode; | ||
await context.Response.WriteAsync("downstream path didnt match base path"); | ||
} | ||
else | ||
{ | ||
context.Response.StatusCode = statusCode; | ||
await context.Response.WriteAsync(responseBody); | ||
} | ||
}); | ||
}) | ||
.Build(); | ||
|
||
_builder.Start(); | ||
} | ||
|
||
internal void ThenTheDownstreamUrlPathShouldBe(string expectedDownstreamPath) | ||
{ | ||
_downstreamPath.ShouldBe(expectedDownstreamPath); | ||
} | ||
|
||
public void Dispose() | ||
{ | ||
_builder?.Dispose(); | ||
_steps.Dispose(); | ||
} | ||
} | ||
} |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters