distribution/auth/silly/access_test.go

package silly

import (
	"net/http"
	"net/http/httptest"
	"testing"

	"github.com/docker/docker-registry/auth"
)

func TestSillyAccessController(t *testing.T) {
	ac := &accessController{
		realm:   "test-realm",
		service: "test-service",
	}

	server := httptest.NewServer(http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
		if err := ac.Authorized(r); err != nil {
			switch err := err.(type) {
			case auth.Challenge:
				err.ServeHTTP(w, r)
				return
			default:
				t.Fatalf("unexpected error authorizing request: %v", err)
			}
		}

		w.WriteHeader(http.StatusNoContent)
	}))

	resp, err := http.Get(server.URL)
	if err != nil {
		t.Fatalf("unexpected error during GET: %v", err)
	}
	defer resp.Body.Close()

	// Request should not be authorized
	if resp.StatusCode != http.StatusUnauthorized {
		t.Fatalf("unexpected response status: %v != %v", resp.StatusCode, http.StatusUnauthorized)
	}

	req, err := http.NewRequest("GET", server.URL, nil)
	if err != nil {
		t.Fatalf("unexpected error creating new request: %v", err)
	}
	req.Header.Set("Authorization", "seriously, anything")

	resp, err = http.DefaultClient.Do(req)
	if err != nil {
		t.Fatalf("unexpected error during GET: %v", err)
	}
	defer resp.Body.Close()

	// Request should not be authorized
	if resp.StatusCode != http.StatusNoContent {
		t.Fatalf("unexpected response status: %v != %v", resp.StatusCode, http.StatusNoContent)
	}
}
Integrate auth.AccessController into registry app This changeset integrates the AccessController into the main registry app. This includes support for configuration and a test implementation, called "silly" auth. Auth is only enabled if the configuration is present but takes measure to ensure that configuration errors don't allow the appserver to start with open access. 2014-12-18 20:30:19 +00:00			`package silly`

			`import (`
			`"net/http"`
			`"net/http/httptest"`
			`"testing"`

			`"github.com/docker/docker-registry/auth"`
			`)`

			`func TestSillyAccessController(t *testing.T) {`
			`ac := &accessController{`
			`realm: "test-realm",`
			`service: "test-service",`
			`}`

			`server := httptest.NewServer(http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {`
			`if err := ac.Authorized(r); err != nil {`
			`switch err := err.(type) {`
			`case auth.Challenge:`
			`err.ServeHTTP(w, r)`
			`return`
			`default:`
			`t.Fatalf("unexpected error authorizing request: %v", err)`
			`}`
			`}`

			`w.WriteHeader(http.StatusNoContent)`
			`}))`

			`resp, err := http.Get(server.URL)`
			`if err != nil {`
			`t.Fatalf("unexpected error during GET: %v", err)`
			`}`
			`defer resp.Body.Close()`

			`// Request should not be authorized`
			`if resp.StatusCode != http.StatusUnauthorized {`
			`t.Fatalf("unexpected response status: %v != %v", resp.StatusCode, http.StatusUnauthorized)`
			`}`

			`req, err := http.NewRequest("GET", server.URL, nil)`
			`if err != nil {`
			`t.Fatalf("unexpected error creating new request: %v", err)`
			`}`
			`req.Header.Set("Authorization", "seriously, anything")`

			`resp, err = http.DefaultClient.Do(req)`
			`if err != nil {`
			`t.Fatalf("unexpected error during GET: %v", err)`
			`}`
			`defer resp.Body.Close()`

			`// Request should not be authorized`
			`if resp.StatusCode != http.StatusNoContent {`
			`t.Fatalf("unexpected response status: %v != %v", resp.StatusCode, http.StatusNoContent)`
			`}`
			`}`