1 // Copyright 2021 gRPC authors.
2 //
3 // Licensed under the Apache License, Version 2.0 (the "License");
4 // you may not use this file except in compliance with the License.
5 // You may obtain a copy of the License at
6 //
7 // http://www.apache.org/licenses/LICENSE-2.0
8 //
9 // Unless required by applicable law or agreed to in writing, software
10 // distributed under the License is distributed on an "AS IS" BASIS,
11 // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
12 // See the License for the specific language governing permissions and
13 // limitations under the License.
14
15 #include <grpc/support/port_platform.h>
16
17 #include <gmock/gmock.h>
18 #include <gtest/gtest.h>
19
20 #include "src/core/lib/security/authorization/evaluate_args.h"
21 #include "test/core/util/evaluate_args_test_util.h"
22 #include "test/core/util/test_config.h"
23
24 namespace grpc_core {
25
26 class EvaluateArgsTest : public ::testing::Test {
27 protected:
28 EvaluateArgsTestUtil util_;
29 };
30
TEST_F(EvaluateArgsTest,EmptyMetadata)31 TEST_F(EvaluateArgsTest, EmptyMetadata) {
32 EvaluateArgs args = util_.MakeEvaluateArgs();
33 EXPECT_EQ(args.GetPath(), nullptr);
34 EXPECT_EQ(args.GetMethod(), nullptr);
35 EXPECT_EQ(args.GetHost(), nullptr);
36 EXPECT_THAT(args.GetHeaders(), ::testing::ElementsAre());
37 EXPECT_EQ(args.GetHeaderValue("some_key", nullptr), absl::nullopt);
38 }
39
TEST_F(EvaluateArgsTest,GetPathSuccess)40 TEST_F(EvaluateArgsTest, GetPathSuccess) {
41 util_.AddPairToMetadata(":path", "/expected/path");
42 EvaluateArgs args = util_.MakeEvaluateArgs();
43 EXPECT_EQ(args.GetPath(), "/expected/path");
44 }
45
TEST_F(EvaluateArgsTest,GetHostSuccess)46 TEST_F(EvaluateArgsTest, GetHostSuccess) {
47 util_.AddPairToMetadata("host", "host123");
48 EvaluateArgs args = util_.MakeEvaluateArgs();
49 EXPECT_EQ(args.GetHost(), "host123");
50 }
51
TEST_F(EvaluateArgsTest,GetMethodSuccess)52 TEST_F(EvaluateArgsTest, GetMethodSuccess) {
53 util_.AddPairToMetadata(":method", "GET");
54 EvaluateArgs args = util_.MakeEvaluateArgs();
55 EXPECT_EQ(args.GetMethod(), "GET");
56 }
57
TEST_F(EvaluateArgsTest,GetHeadersSuccess)58 TEST_F(EvaluateArgsTest, GetHeadersSuccess) {
59 util_.AddPairToMetadata("host", "host123");
60 util_.AddPairToMetadata(":path", "/expected/path");
61 EvaluateArgs args = util_.MakeEvaluateArgs();
62 EXPECT_THAT(args.GetHeaders(),
63 ::testing::UnorderedElementsAre(
64 ::testing::Pair("host", "host123"),
65 ::testing::Pair(":path", "/expected/path")));
66 }
67
TEST_F(EvaluateArgsTest,GetHeaderValueSuccess)68 TEST_F(EvaluateArgsTest, GetHeaderValueSuccess) {
69 util_.AddPairToMetadata("key123", "value123");
70 EvaluateArgs args = util_.MakeEvaluateArgs();
71 std::string concatenated_value;
72 absl::optional<absl::string_view> value =
73 args.GetHeaderValue("key123", &concatenated_value);
74 ASSERT_TRUE(value.has_value());
75 EXPECT_EQ(value.value(), "value123");
76 }
77
TEST_F(EvaluateArgsTest,TestIpv4LocalAddressAndPort)78 TEST_F(EvaluateArgsTest, TestIpv4LocalAddressAndPort) {
79 util_.SetLocalEndpoint("ipv4:255.255.255.255:123");
80 EvaluateArgs args = util_.MakeEvaluateArgs();
81 EXPECT_EQ(args.GetLocalAddress(), "255.255.255.255");
82 EXPECT_EQ(args.GetLocalPort(), 123);
83 }
84
TEST_F(EvaluateArgsTest,TestIpv4PeerAddressAndPort)85 TEST_F(EvaluateArgsTest, TestIpv4PeerAddressAndPort) {
86 util_.SetPeerEndpoint("ipv4:128.128.128.128:321");
87 EvaluateArgs args = util_.MakeEvaluateArgs();
88 EXPECT_EQ(args.GetPeerAddress(), "128.128.128.128");
89 EXPECT_EQ(args.GetPeerPort(), 321);
90 }
91
TEST_F(EvaluateArgsTest,TestIpv6LocalAddressAndPort)92 TEST_F(EvaluateArgsTest, TestIpv6LocalAddressAndPort) {
93 util_.SetLocalEndpoint("ipv6:[2001:0db8:85a3:0000:0000:8a2e:0370:7334]:456");
94 EvaluateArgs args = util_.MakeEvaluateArgs();
95 EXPECT_EQ(args.GetLocalAddress(), "2001:0db8:85a3:0000:0000:8a2e:0370:7334");
96 EXPECT_EQ(args.GetLocalPort(), 456);
97 }
98
TEST_F(EvaluateArgsTest,TestIpv6PeerAddressAndPort)99 TEST_F(EvaluateArgsTest, TestIpv6PeerAddressAndPort) {
100 util_.SetPeerEndpoint("ipv6:[2001:db8::1]:654");
101 EvaluateArgs args = util_.MakeEvaluateArgs();
102 EXPECT_EQ(args.GetPeerAddress(), "2001:db8::1");
103 EXPECT_EQ(args.GetPeerPort(), 654);
104 }
105
TEST_F(EvaluateArgsTest,EmptyAuthContext)106 TEST_F(EvaluateArgsTest, EmptyAuthContext) {
107 EvaluateArgs args = util_.MakeEvaluateArgs();
108 EXPECT_TRUE(args.GetTransportSecurityType().empty());
109 EXPECT_TRUE(args.GetSpiffeId().empty());
110 EXPECT_TRUE(args.GetCommonName().empty());
111 }
112
TEST_F(EvaluateArgsTest,GetTransportSecurityTypeSuccessOneProperty)113 TEST_F(EvaluateArgsTest, GetTransportSecurityTypeSuccessOneProperty) {
114 util_.AddPropertyToAuthContext(GRPC_TRANSPORT_SECURITY_TYPE_PROPERTY_NAME,
115 "ssl");
116 EvaluateArgs args = util_.MakeEvaluateArgs();
117 EXPECT_EQ(args.GetTransportSecurityType(), "ssl");
118 }
119
TEST_F(EvaluateArgsTest,GetTransportSecurityTypeFailDuplicateProperty)120 TEST_F(EvaluateArgsTest, GetTransportSecurityTypeFailDuplicateProperty) {
121 util_.AddPropertyToAuthContext(GRPC_TRANSPORT_SECURITY_TYPE_PROPERTY_NAME,
122 "type1");
123 util_.AddPropertyToAuthContext(GRPC_TRANSPORT_SECURITY_TYPE_PROPERTY_NAME,
124 "type2");
125 EvaluateArgs args = util_.MakeEvaluateArgs();
126 EXPECT_TRUE(args.GetTransportSecurityType().empty());
127 }
128
TEST_F(EvaluateArgsTest,GetSpiffeIdSuccessOneProperty)129 TEST_F(EvaluateArgsTest, GetSpiffeIdSuccessOneProperty) {
130 util_.AddPropertyToAuthContext(GRPC_PEER_SPIFFE_ID_PROPERTY_NAME, "id123");
131 EvaluateArgs args = util_.MakeEvaluateArgs();
132 EXPECT_EQ(args.GetSpiffeId(), "id123");
133 }
134
TEST_F(EvaluateArgsTest,GetSpiffeIdFailDuplicateProperty)135 TEST_F(EvaluateArgsTest, GetSpiffeIdFailDuplicateProperty) {
136 util_.AddPropertyToAuthContext(GRPC_PEER_SPIFFE_ID_PROPERTY_NAME, "id123");
137 util_.AddPropertyToAuthContext(GRPC_PEER_SPIFFE_ID_PROPERTY_NAME, "id456");
138 EvaluateArgs args = util_.MakeEvaluateArgs();
139 EXPECT_TRUE(args.GetSpiffeId().empty());
140 }
141
TEST_F(EvaluateArgsTest,GetCommonNameSuccessOneProperty)142 TEST_F(EvaluateArgsTest, GetCommonNameSuccessOneProperty) {
143 util_.AddPropertyToAuthContext(GRPC_X509_CN_PROPERTY_NAME, "server123");
144 EvaluateArgs args = util_.MakeEvaluateArgs();
145 EXPECT_EQ(args.GetCommonName(), "server123");
146 }
147
TEST_F(EvaluateArgsTest,GetCommonNameFailDuplicateProperty)148 TEST_F(EvaluateArgsTest, GetCommonNameFailDuplicateProperty) {
149 util_.AddPropertyToAuthContext(GRPC_X509_CN_PROPERTY_NAME, "server123");
150 util_.AddPropertyToAuthContext(GRPC_X509_CN_PROPERTY_NAME, "server456");
151 EvaluateArgs args = util_.MakeEvaluateArgs();
152 EXPECT_TRUE(args.GetCommonName().empty());
153 }
154
155 } // namespace grpc_core
156
main(int argc,char ** argv)157 int main(int argc, char** argv) {
158 grpc::testing::TestEnvironment env(argc, argv);
159 ::testing::InitGoogleTest(&argc, argv);
160 grpc_init();
161 int ret = RUN_ALL_TESTS();
162 grpc_shutdown();
163 return ret;
164 }
165