TrueCloudLab/s3-tests
7
0
Fork 1
mirror of https://github.com/ceph/s3-tests.git synced 2024-11-22 09:29:43 +00:00
Code Issues 1 Projects Releases Packages Wiki Activity
s3-tests/s3tests/functional/test_headers.py

1777 lines
55 KiB
Python
Raw Normal View History

add header-manipulation tests These tests are based on explicitly modifying headers in some way.
2011-07-22 23:57:26 +00:00
from cStringIO import StringIO
support multiple boto versions for header writing Depending on the version of boto, different methods are necessary for manipulating headers. We now support 2.0rc1 and 2.0 by sub-classing boto.s3.connection.S3Connection and overloading boto.connection.HTTPRequest.authorize, respectfully.
2011-07-28 03:01:21 +00:00
import boto.connection
add header-manipulation tests These tests are based on explicitly modifying headers in some way.
2011-07-22 23:57:26 +00:00
import boto.exception
import boto.s3.connection
import boto.s3.acl
import boto.utils
import bunch
import nose
import operator
import random
import string
import socket
import ssl
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
import os
rgw: aws4: fix test_object_create_missing_signed_header_aws4 Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2016-06-02 20:57:48 +00:00
import re
check precedence of Date and X-Amz-Date in signatures Signed-off-by: Casey Bodley <cbodley@redhat.com>
2017-06-21 14:19:12 +00:00
from email.utils import formatdate
add header-manipulation tests These tests are based on explicitly modifying headers in some way.
2011-07-22 23:57:26 +00:00
rgw: aws4: fix test_object_create_missing_signed_custom_header_aws4 Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2016-06-02 20:33:40 +00:00
from urlparse import urlparse
subclass S3Connection class for headers This makes it possible to overwrite all headers
2011-07-26 01:37:08 +00:00
from boto.s3.connection import S3Connection
add header-manipulation tests These tests are based on explicitly modifying headers in some way.
2011-07-22 23:57:26 +00:00
from nose.tools import eq_ as eq
from nose.plugins.attrib import attr
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
from nose.plugins.skip import SkipTest
add header-manipulation tests These tests are based on explicitly modifying headers in some way.
2011-07-22 23:57:26 +00:00
from .utils import assert_raises
import AnonymousAuth
from email.header import decode_header
from . import (
rgw: aws4: fix test_object_create_missing_signed_custom_header_aws4 Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2016-06-02 20:33:40 +00:00
_make_raw_request,
add header-manipulation tests These tests are based on explicitly modifying headers in some way.
2011-07-22 23:57:26 +00:00
nuke_prefixed_buckets,
get_new_bucket,
s3,
config,
get_prefix,
s3tests: fix test_bucket_create_bad_contentlength_empty Signed-off-by: Yehuda Sadeh <yehuda@redhat.com>
2015-02-27 18:23:09 +00:00
TargetConnection,
targets,
add header-manipulation tests These tests are based on explicitly modifying headers in some way.
2011-07-22 23:57:26 +00:00
)
subclass S3Connection class for headers This makes it possible to overwrite all headers
2011-07-26 01:37:08 +00:00
_orig_conn = {}
support multiple boto versions for header writing Depending on the version of boto, different methods are necessary for manipulating headers. We now support 2.0rc1 and 2.0 by sub-classing boto.s3.connection.S3Connection and overloading boto.connection.HTTPRequest.authorize, respectfully.
2011-07-28 03:01:21 +00:00
_orig_authorize = None
subclass S3Connection class for headers This makes it possible to overwrite all headers
2011-07-26 01:37:08 +00:00
_custom_headers = {}
_remove_headers = []
support multiple boto versions for header writing Depending on the version of boto, different methods are necessary for manipulating headers. We now support 2.0rc1 and 2.0 by sub-classing boto.s3.connection.S3Connection and overloading boto.connection.HTTPRequest.authorize, respectfully.
2011-07-28 03:01:21 +00:00
boto_type = None
add header-manipulation tests These tests are based on explicitly modifying headers in some way.
2011-07-22 23:57:26 +00:00
support multiple boto versions for header writing Depending on the version of boto, different methods are necessary for manipulating headers. We now support 2.0rc1 and 2.0 by sub-classing boto.s3.connection.S3Connection and overloading boto.connection.HTTPRequest.authorize, respectfully.
2011-07-28 03:01:21 +00:00
# HeaderS3Connection and _our_authorize are necessary to be able to arbitrarily
# overwrite headers. Depending on the version of boto, one or the other is
# necessary. We later determine in setup what needs to be used.
add header-manipulation tests These tests are based on explicitly modifying headers in some way.
2011-07-22 23:57:26 +00:00
refactor header update logic
2011-07-28 18:34:52 +00:00
def _update_headers(headers):
RGW test-case annotation for inventory. Annotated S3 functional and error-detection test cases with resource/method/operation/assertion properties to enable automatic test case inventory generation. Signed-off-by: Mark Kampe <mark.kampe@dreamhost.com>
2011-12-22 21:08:03 +00:00
""" update a set of headers with additions/removals
"""
support multiple boto versions for header writing Depending on the version of boto, different methods are necessary for manipulating headers. We now support 2.0rc1 and 2.0 by sub-classing boto.s3.connection.S3Connection and overloading boto.connection.HTTPRequest.authorize, respectfully.
2011-07-28 03:01:21 +00:00
global _custom_headers, _remove_headers
refactor header update logic
2011-07-28 18:34:52 +00:00
headers.update(_custom_headers)
support multiple boto versions for header writing Depending on the version of boto, different methods are necessary for manipulating headers. We now support 2.0rc1 and 2.0 by sub-classing boto.s3.connection.S3Connection and overloading boto.connection.HTTPRequest.authorize, respectfully.
2011-07-28 03:01:21 +00:00
for header in _remove_headers:
try:
refactor header update logic
2011-07-28 18:34:52 +00:00
del headers[header]
support multiple boto versions for header writing Depending on the version of boto, different methods are necessary for manipulating headers. We now support 2.0rc1 and 2.0 by sub-classing boto.s3.connection.S3Connection and overloading boto.connection.HTTPRequest.authorize, respectfully.
2011-07-28 03:01:21 +00:00
except KeyError:
pass
add header-manipulation tests These tests are based on explicitly modifying headers in some way.
2011-07-22 23:57:26 +00:00
refactor header update logic
2011-07-28 18:34:52 +00:00
# Note: We need to update the headers twice. The first time so the
# authentication signing is done correctly. The second time to overwrite any
# headers modified or created in the authentication step.
add Content-Type object tests
2011-07-25 21:12:50 +00:00
refactor header update logic
2011-07-28 18:34:52 +00:00
class HeaderS3Connection(S3Connection):
RGW test-case annotation for inventory. Annotated S3 functional and error-detection test cases with resource/method/operation/assertion properties to enable automatic test case inventory generation. Signed-off-by: Mark Kampe <mark.kampe@dreamhost.com>
2011-12-22 21:08:03 +00:00
""" establish an authenticated connection w/customized headers
"""
refactor header update logic
2011-07-28 18:34:52 +00:00
def fill_in_auth(self, http_request, **kwargs):
_update_headers(http_request.headers)
S3Connection.fill_in_auth(self, http_request, **kwargs)
_update_headers(http_request.headers)
return http_request
def _our_authorize(self, connection, **kwargs):
RGW test-case annotation for inventory. Annotated S3 functional and error-detection test cases with resource/method/operation/assertion properties to enable automatic test case inventory generation. Signed-off-by: Mark Kampe <mark.kampe@dreamhost.com>
2011-12-22 21:08:03 +00:00
""" perform an authentication w/customized headers
"""
refactor header update logic
2011-07-28 18:34:52 +00:00
_update_headers(self.headers)
_orig_authorize(self, connection, **kwargs)
_update_headers(self.headers)
support multiple boto versions for header writing Depending on the version of boto, different methods are necessary for manipulating headers. We now support 2.0rc1 and 2.0 by sub-classing boto.s3.connection.S3Connection and overloading boto.connection.HTTPRequest.authorize, respectfully.
2011-07-28 03:01:21 +00:00
def setup():
global boto_type
# we determine what we need to replace by the existence of particular
# attributes. boto 2.0rc1 as fill_in_auth for S3Connection, while boto 2.0
# has authorize for HTTPRequest.
if hasattr(S3Connection, 'fill_in_auth'):
global _orig_conn
boto_type = 'S3Connection'
for conn in s3:
_orig_conn[conn] = s3[conn]
header_conn = HeaderS3Connection(
aws_access_key_id=s3[conn].aws_access_key_id,
aws_secret_access_key=s3[conn].aws_secret_access_key,
is_secure=s3[conn].is_secure,
port=s3[conn].port,
host=s3[conn].host,
calling_format=s3[conn].calling_format
)
s3[conn] = header_conn
elif hasattr(boto.connection.HTTPRequest, 'authorize'):
global _orig_authorize
boto_type = 'HTTPRequest'
_orig_authorize = boto.connection.HTTPRequest.authorize
boto.connection.HTTPRequest.authorize = _our_authorize
else:
raise RuntimeError
subclass S3Connection class for headers This makes it possible to overwrite all headers
2011-07-26 01:37:08 +00:00
def teardown():
support multiple boto versions for header writing Depending on the version of boto, different methods are necessary for manipulating headers. We now support 2.0rc1 and 2.0 by sub-classing boto.s3.connection.S3Connection and overloading boto.connection.HTTPRequest.authorize, respectfully.
2011-07-28 03:01:21 +00:00
global boto_type
# replace original functionality depending on the boto version
if boto_type is 'S3Connection':
global _orig_conn
for conn in s3:
s3[conn] = _orig_conn[conn]
_orig_conn = {}
elif boto_type is 'HTTPRequest':
global _orig_authorize
boto.connection.HTTPRequest.authorize = _orig_authorize
_orig_authorize = None
else:
raise RuntimeError
add header-manipulation tests These tests are based on explicitly modifying headers in some way.
2011-07-22 23:57:26 +00:00
def _clear_custom_headers():
RGW test-case annotation for inventory. Annotated S3 functional and error-detection test cases with resource/method/operation/assertion properties to enable automatic test case inventory generation. Signed-off-by: Mark Kampe <mark.kampe@dreamhost.com>
2011-12-22 21:08:03 +00:00
""" Eliminate any header customizations
"""
add Content-Type object tests
2011-07-25 21:12:50 +00:00
global _custom_headers, _remove_headers
add header-manipulation tests These tests are based on explicitly modifying headers in some way.
2011-07-22 23:57:26 +00:00
_custom_headers = {}
add Content-Type object tests
2011-07-25 21:12:50 +00:00
_remove_headers = []
add header-manipulation tests These tests are based on explicitly modifying headers in some way.
2011-07-22 23:57:26 +00:00
add Content-Type object tests
2011-07-25 21:12:50 +00:00
def _add_custom_headers(headers=None, remove=None):
RGW test-case annotation for inventory. Annotated S3 functional and error-detection test cases with resource/method/operation/assertion properties to enable automatic test case inventory generation. Signed-off-by: Mark Kampe <mark.kampe@dreamhost.com>
2011-12-22 21:08:03 +00:00
""" Define header customizations (additions, replacements, removals)
"""
add Content-Type object tests
2011-07-25 21:12:50 +00:00
global _custom_headers, _remove_headers
add header-manipulation tests These tests are based on explicitly modifying headers in some way.
2011-07-22 23:57:26 +00:00
if not _custom_headers:
_custom_headers = {}
add Content-Type object tests
2011-07-25 21:12:50 +00:00
if headers is not None:
_custom_headers.update(headers)
if remove is not None:
_remove_headers.extend(remove)
add header-manipulation tests These tests are based on explicitly modifying headers in some way.
2011-07-22 23:57:26 +00:00
add Content-Type object tests
2011-07-25 21:12:50 +00:00
def _setup_bad_object(headers=None, remove=None):
RGW test-case annotation for inventory. Annotated S3 functional and error-detection test cases with resource/method/operation/assertion properties to enable automatic test case inventory generation. Signed-off-by: Mark Kampe <mark.kampe@dreamhost.com>
2011-12-22 21:08:03 +00:00
""" Create a new bucket, add an object w/header customizations
"""
add header-manipulation tests These tests are based on explicitly modifying headers in some way.
2011-07-22 23:57:26 +00:00
bucket = get_new_bucket()
add Content-Type object tests
2011-07-25 21:12:50 +00:00
_add_custom_headers(headers=headers, remove=remove)
add header-manipulation tests These tests are based on explicitly modifying headers in some way.
2011-07-22 23:57:26 +00:00
return bucket.new_key('foo')
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
def tag(*tags):
def wrap(func):
for tag in tags:
setattr(func, tag, True)
return func
return wrap
RGW test-case annotation for inventory. Annotated S3 functional and error-detection test cases with resource/method/operation/assertion properties to enable automatic test case inventory generation. Signed-off-by: Mark Kampe <mark.kampe@dreamhost.com>
2011-12-22 21:08:03 +00:00
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
#
# common tests
#
Test S3 api for handling of Content-MD5 that does not match. The existing test_object_create_bad_md5_invalid is not valid base64, and hence triggers a different code path. This time, submit valid base64, but have the result not match the expected md5sum.
2011-08-10 21:55:34 +00:00
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
@tag('auth_common')
RGW test-case annotation for inventory. Annotated S3 functional and error-detection test cases with resource/method/operation/assertion properties to enable automatic test case inventory generation. Signed-off-by: Mark Kampe <mark.kampe@dreamhost.com>
2011-12-22 21:08:03 +00:00
@attr(resource='object')
@attr(method='put')
Test to find mismatched MD5 Also clarify the invalid digest test.
2014-08-23 22:52:19 +00:00
@attr(operation='create w/invalid MD5')
RGW test-case annotation for inventory. Annotated S3 functional and error-detection test cases with resource/method/operation/assertion properties to enable automatic test case inventory generation. Signed-off-by: Mark Kampe <mark.kampe@dreamhost.com>
2011-12-22 21:08:03 +00:00
@attr(assertion='fails 400')
Test S3 api for handling of Content-MD5 that does not match. The existing test_object_create_bad_md5_invalid is not valid base64, and hence triggers a different code path. This time, submit valid base64, but have the result not match the expected md5sum.
2011-08-10 21:55:34 +00:00
@nose.with_setup(teardown=_clear_custom_headers)
tests must have unique names, otherwise they override existing tests. Signed-off-by: Robin H. Johnson <robbat2@gentoo.org>
2015-06-15 04:31:30 +00:00
def test_object_create_bad_md5_invalid_short():
Test S3 api for handling of Content-MD5 that does not match. The existing test_object_create_bad_md5_invalid is not valid base64, and hence triggers a different code path. This time, submit valid base64, but have the result not match the expected md5sum.
2011-08-10 21:55:34 +00:00
key = _setup_bad_object({'Content-MD5':'YWJyYWNhZGFicmE='})
e = assert_raises(boto.exception.S3ResponseError, key.set_contents_from_string, 'bar')
eq(e.status, 400)
Improve proxy error support: "Bad Request" case If you are run the S3 testsuite against a reverse proxy (eg haproxy) rather than RGW directly, some of the tests will return errors from the proxy, rather than haproxy itself. Some proxies differ from RGW in the exact case of 'Bad Request', so do the match in a case-insensitive manner. Haproxy for example returns 'Bad request'. This removes the need for some of the prior fails_on_dho test tags, as the failure was due to haproxy. Signed-off-by: Robin H. Johnson <robin.johnson@dreamhost.com>
2015-10-07 19:31:31 +00:00
eq(e.reason.lower(), 'bad request') # some proxies vary the case
add header-manipulation tests These tests are based on explicitly modifying headers in some way.
2011-07-22 23:57:26 +00:00
eq(e.error_code, 'InvalidDigest')
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
@tag('auth_common')
Test to find mismatched MD5 Also clarify the invalid digest test.
2014-08-23 22:52:19 +00:00
@attr(resource='object')
@attr(method='put')
@attr(operation='create w/mismatched MD5')
@attr(assertion='fails 400')
@nose.with_setup(teardown=_clear_custom_headers)
def test_object_create_bad_md5_bad():
key = _setup_bad_object({'Content-MD5':'rL0Y20zC+Fzt72VPzMSk2A=='})
e = assert_raises(boto.exception.S3ResponseError, key.set_contents_from_string, 'bar')
eq(e.status, 400)
Improve proxy error support: "Bad Request" case If you are run the S3 testsuite against a reverse proxy (eg haproxy) rather than RGW directly, some of the tests will return errors from the proxy, rather than haproxy itself. Some proxies differ from RGW in the exact case of 'Bad Request', so do the match in a case-insensitive manner. Haproxy for example returns 'Bad request'. This removes the need for some of the prior fails_on_dho test tags, as the failure was due to haproxy. Signed-off-by: Robin H. Johnson <robin.johnson@dreamhost.com>
2015-10-07 19:31:31 +00:00
eq(e.reason.lower(), 'bad request') # some proxies vary the case
Test to find mismatched MD5 Also clarify the invalid digest test.
2014-08-23 22:52:19 +00:00
eq(e.error_code, 'BadDigest')
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
@tag('auth_common')
RGW test-case annotation for inventory. Annotated S3 functional and error-detection test cases with resource/method/operation/assertion properties to enable automatic test case inventory generation. Signed-off-by: Mark Kampe <mark.kampe@dreamhost.com>
2011-12-22 21:08:03 +00:00
@attr(resource='object')
@attr(method='put')
@attr(operation='create w/empty MD5')
@attr(assertion='fails 400')
update MD5 header tests * Rename a test * Add more tests
2011-07-27 02:45:48 +00:00
@nose.with_setup(teardown=_clear_custom_headers)
def test_object_create_bad_md5_empty():
key = _setup_bad_object({'Content-MD5': ''})
e = assert_raises(boto.exception.S3ResponseError, key.set_contents_from_string, 'bar')
eq(e.status, 400)
Improve proxy error support: "Bad Request" case If you are run the S3 testsuite against a reverse proxy (eg haproxy) rather than RGW directly, some of the tests will return errors from the proxy, rather than haproxy itself. Some proxies differ from RGW in the exact case of 'Bad Request', so do the match in a case-insensitive manner. Haproxy for example returns 'Bad request'. This removes the need for some of the prior fails_on_dho test tags, as the failure was due to haproxy. Signed-off-by: Robin H. Johnson <robin.johnson@dreamhost.com>
2015-10-07 19:31:31 +00:00
eq(e.reason.lower(), 'bad request') # some proxies vary the case
update MD5 header tests * Rename a test * Add more tests
2011-07-27 02:45:48 +00:00
eq(e.error_code, 'InvalidDigest')
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
@tag('auth_common')
RGW test-case annotation for inventory. Annotated S3 functional and error-detection test cases with resource/method/operation/assertion properties to enable automatic test case inventory generation. Signed-off-by: Mark Kampe <mark.kampe@dreamhost.com>
2011-12-22 21:08:03 +00:00
@attr(resource='object')
@attr(method='put')
@attr(operation='create w/non-graphics in MD5')
@attr(assertion='fails 403')
Annotate tests which create non-RFC2616 headers Signed-off-by: Andrew Gaul <andrew@gaul.org>
2016-06-06 23:19:27 +00:00
@attr('fails_strict_rfc2616')
update MD5 header tests * Rename a test * Add more tests
2011-07-27 02:45:48 +00:00
@nose.with_setup(teardown=_clear_custom_headers)
def test_object_create_bad_md5_unreadable():
key = _setup_bad_object({'Content-MD5': '\x07'})
e = assert_raises(boto.exception.S3ResponseError, key.set_contents_from_string, 'bar')
eq(e.status, 403)
eq(e.reason, 'Forbidden')
assert e.error_code in ('AccessDenied', 'SignatureDoesNotMatch')
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
@tag('auth_common')
RGW test-case annotation for inventory. Annotated S3 functional and error-detection test cases with resource/method/operation/assertion properties to enable automatic test case inventory generation. Signed-off-by: Mark Kampe <mark.kampe@dreamhost.com>
2011-12-22 21:08:03 +00:00
@attr(resource='object')
@attr(method='put')
@attr(operation='create w/no MD5 header')
@attr(assertion='succeeds')
update MD5 header tests * Rename a test * Add more tests
2011-07-27 02:45:48 +00:00
@nose.with_setup(teardown=_clear_custom_headers)
def test_object_create_bad_md5_none():
key = _setup_bad_object(remove=('Content-MD5',))
key.set_contents_from_string('bar')
add header-manipulation tests These tests are based on explicitly modifying headers in some way.
2011-07-22 23:57:26 +00:00
# strangely, amazon doesn't report an error with a non-expect 100 also, our
# error comes back as html, and not xml as I normally expect
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
@tag('auth_common')
RGW test-case annotation for inventory. Annotated S3 functional and error-detection test cases with resource/method/operation/assertion properties to enable automatic test case inventory generation. Signed-off-by: Mark Kampe <mark.kampe@dreamhost.com>
2011-12-22 21:08:03 +00:00
@attr(resource='object')
@attr(method='put')
@attr(operation='create w/Expect 200')
@attr(assertion='garbage, but S3 succeeds!')
add header-manipulation tests These tests are based on explicitly modifying headers in some way.
2011-07-22 23:57:26 +00:00
@nose.with_setup(teardown=_clear_custom_headers)
Flag some fails_on_dho tests as fails_on_rgw too.
2011-08-11 15:47:25 +00:00
@attr('fails_on_rgw')
add header-manipulation tests These tests are based on explicitly modifying headers in some way.
2011-07-22 23:57:26 +00:00
def test_object_create_bad_expect_mismatch():
key = _setup_bad_object({'Expect': 200})
key.set_contents_from_string('bar')
# this is a really long test, and I don't know if it's valid...
# again, accepts this with no troubles
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
@tag('auth_common')
RGW test-case annotation for inventory. Annotated S3 functional and error-detection test cases with resource/method/operation/assertion properties to enable automatic test case inventory generation. Signed-off-by: Mark Kampe <mark.kampe@dreamhost.com>
2011-12-22 21:08:03 +00:00
@attr(resource='object')
@attr(method='put')
@attr(operation='create w/empty expect')
@attr(assertion='succeeds ... should it?')
add header-manipulation tests These tests are based on explicitly modifying headers in some way.
2011-07-22 23:57:26 +00:00
@nose.with_setup(teardown=_clear_custom_headers)
def test_object_create_bad_expect_empty():
key = _setup_bad_object({'Expect': ''})
key.set_contents_from_string('bar')
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
@tag('auth_common')
RGW test-case annotation for inventory. Annotated S3 functional and error-detection test cases with resource/method/operation/assertion properties to enable automatic test case inventory generation. Signed-off-by: Mark Kampe <mark.kampe@dreamhost.com>
2011-12-22 21:08:03 +00:00
@attr(resource='object')
@attr(method='put')
@attr(operation='create w/no expect')
@attr(assertion='succeeds')
add another Expect header test
2011-07-27 02:59:41 +00:00
@nose.with_setup(teardown=_clear_custom_headers)
def test_object_create_bad_expect_none():
key = _setup_bad_object(remove=('Expect',))
key.set_contents_from_string('bar')
add header-manipulation tests These tests are based on explicitly modifying headers in some way.
2011-07-22 23:57:26 +00:00
# this is a really long test..
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
@tag('auth_common')
RGW test-case annotation for inventory. Annotated S3 functional and error-detection test cases with resource/method/operation/assertion properties to enable automatic test case inventory generation. Signed-off-by: Mark Kampe <mark.kampe@dreamhost.com>
2011-12-22 21:08:03 +00:00
@attr(resource='object')
@attr(method='put')
@attr(operation='create w/non-graphic expect')
@attr(assertion='garbage, but S3 succeeds!')
add header-manipulation tests These tests are based on explicitly modifying headers in some way.
2011-07-22 23:57:26 +00:00
@nose.with_setup(teardown=_clear_custom_headers)
Flag some fails_on_dho tests as fails_on_rgw too.
2011-08-11 15:47:25 +00:00
@attr('fails_on_rgw')
Annotate tests which create non-RFC2616 headers Signed-off-by: Andrew Gaul <andrew@gaul.org>
2016-06-06 23:19:27 +00:00
@attr('fails_strict_rfc2616')
change utf8 -> unreadable on header tests
2011-07-27 18:48:49 +00:00
def test_object_create_bad_expect_unreadable():
add header-manipulation tests These tests are based on explicitly modifying headers in some way.
2011-07-22 23:57:26 +00:00
key = _setup_bad_object({'Expect': '\x07'})
key.set_contents_from_string('bar')
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
@tag('auth_common')
RGW test-case annotation for inventory. Annotated S3 functional and error-detection test cases with resource/method/operation/assertion properties to enable automatic test case inventory generation. Signed-off-by: Mark Kampe <mark.kampe@dreamhost.com>
2011-12-22 21:08:03 +00:00
@attr(resource='object')
@attr(method='put')
@attr(operation='create w/empty content length')
@attr(assertion='fails 400')
add header-manipulation tests These tests are based on explicitly modifying headers in some way.
2011-07-22 23:57:26 +00:00
@nose.with_setup(teardown=_clear_custom_headers)
Flag some fails_on_dho tests as fails_on_rgw too.
2011-08-11 15:47:25 +00:00
@attr('fails_on_rgw')
add header-manipulation tests These tests are based on explicitly modifying headers in some way.
2011-07-22 23:57:26 +00:00
def test_object_create_bad_contentlength_empty():
key = _setup_bad_object({'Content-Length': ''})
e = assert_raises(boto.exception.S3ResponseError, key.set_contents_from_string, 'bar')
eq(e.status, 400)
Improve proxy error support: "Bad Request" case If you are run the S3 testsuite against a reverse proxy (eg haproxy) rather than RGW directly, some of the tests will return errors from the proxy, rather than haproxy itself. Some proxies differ from RGW in the exact case of 'Bad Request', so do the match in a case-insensitive manner. Haproxy for example returns 'Bad request'. This removes the need for some of the prior fails_on_dho test tags, as the failure was due to haproxy. Signed-off-by: Robin H. Johnson <robin.johnson@dreamhost.com>
2015-10-07 19:31:31 +00:00
eq(e.reason.lower(), 'bad request') # some proxies vary the case
add header-manipulation tests These tests are based on explicitly modifying headers in some way.
2011-07-22 23:57:26 +00:00
eq(e.error_code, None)
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
@tag('auth_common')
RGW test-case annotation for inventory. Annotated S3 functional and error-detection test cases with resource/method/operation/assertion properties to enable automatic test case inventory generation. Signed-off-by: Mark Kampe <mark.kampe@dreamhost.com>
2011-12-22 21:08:03 +00:00
@attr(resource='object')
@attr(method='put')
@attr(operation='create w/negative content length')
@attr(assertion='fails 400')
s3tests: fix test_bucket_create_bad_contentlength_empty Signed-off-by: Yehuda Sadeh <yehuda@redhat.com>
2015-02-27 18:23:09 +00:00
@attr('fails_on_mod_proxy_fcgi')
update Content-Length header tests * Add more tests * Add nose.with_setup on some tests
2011-07-27 03:01:15 +00:00
@nose.with_setup(teardown=_clear_custom_headers)
def test_object_create_bad_contentlength_negative():
key = _setup_bad_object({'Content-Length': -1})
e = assert_raises(boto.exception.S3ResponseError, key.set_contents_from_string, 'bar')
eq(e.status, 400)
Improve proxy error support: "Bad Request" case If you are run the S3 testsuite against a reverse proxy (eg haproxy) rather than RGW directly, some of the tests will return errors from the proxy, rather than haproxy itself. Some proxies differ from RGW in the exact case of 'Bad Request', so do the match in a case-insensitive manner. Haproxy for example returns 'Bad request'. This removes the need for some of the prior fails_on_dho test tags, as the failure was due to haproxy. Signed-off-by: Robin H. Johnson <robin.johnson@dreamhost.com>
2015-10-07 19:31:31 +00:00
eq(e.reason.lower(), 'bad request') # some proxies vary the case
update Content-Length header tests * Add more tests * Add nose.with_setup on some tests
2011-07-27 03:01:15 +00:00
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
@tag('auth_common')
RGW test-case annotation for inventory. Annotated S3 functional and error-detection test cases with resource/method/operation/assertion properties to enable automatic test case inventory generation. Signed-off-by: Mark Kampe <mark.kampe@dreamhost.com>
2011-12-22 21:08:03 +00:00
@attr(resource='object')
@attr(method='put')
@attr(operation='create w/no content length')
@attr(assertion='fails 411')
update Content-Length header tests * Add more tests * Add nose.with_setup on some tests
2011-07-27 03:01:15 +00:00
@nose.with_setup(teardown=_clear_custom_headers)
def test_object_create_bad_contentlength_none():
key = _setup_bad_object(remove=('Content-Length',))
e = assert_raises(boto.exception.S3ResponseError, key.set_contents_from_string, 'bar')
eq(e.status, 411)
eq(e.reason, 'Length Required')
eq(e.error_code,'MissingContentLength')
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
@tag('auth_common')
RGW test-case annotation for inventory. Annotated S3 functional and error-detection test cases with resource/method/operation/assertion properties to enable automatic test case inventory generation. Signed-off-by: Mark Kampe <mark.kampe@dreamhost.com>
2011-12-22 21:08:03 +00:00
@attr(resource='object')
@attr(method='put')
@attr(operation='create w/non-graphic content length')
@attr(assertion='fails 400')
s3tests: fix test_bucket_create_bad_contentlength_empty Signed-off-by: Yehuda Sadeh <yehuda@redhat.com>
2015-02-27 18:23:09 +00:00
@attr('fails_on_mod_proxy_fcgi')
Annotate tests which create non-RFC2616 headers Signed-off-by: Andrew Gaul <andrew@gaul.org>
2016-06-06 23:19:27 +00:00
@attr('fails_strict_rfc2616')
update Content-Length header tests * Add more tests * Add nose.with_setup on some tests
2011-07-27 03:01:15 +00:00
@nose.with_setup(teardown=_clear_custom_headers)
change utf8 -> unreadable on header tests
2011-07-27 18:48:49 +00:00
def test_object_create_bad_contentlength_unreadable():
update Content-Length header tests * Add more tests * Add nose.with_setup on some tests
2011-07-27 03:01:15 +00:00
key = _setup_bad_object({'Content-Length': '\x07'})
e = assert_raises(boto.exception.S3ResponseError, key.set_contents_from_string, 'bar')
eq(e.status, 400)
Improve proxy error support: "Bad Request" case If you are run the S3 testsuite against a reverse proxy (eg haproxy) rather than RGW directly, some of the tests will return errors from the proxy, rather than haproxy itself. Some proxies differ from RGW in the exact case of 'Bad Request', so do the match in a case-insensitive manner. Haproxy for example returns 'Bad request'. This removes the need for some of the prior fails_on_dho test tags, as the failure was due to haproxy. Signed-off-by: Robin H. Johnson <robin.johnson@dreamhost.com>
2015-10-07 19:31:31 +00:00
eq(e.reason.lower(), 'bad request') # some proxies vary the case
update Content-Length header tests * Add more tests * Add nose.with_setup on some tests
2011-07-27 03:01:15 +00:00
eq(e.error_code, None)
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
@tag('auth_common')
RGW test-case annotation for inventory. Annotated S3 functional and error-detection test cases with resource/method/operation/assertion properties to enable automatic test case inventory generation. Signed-off-by: Mark Kampe <mark.kampe@dreamhost.com>
2011-12-22 21:08:03 +00:00
@attr(resource='object')
@attr(method='put')
@attr(operation='create w/content length too long')
@attr(assertion='fails 400')
add header-manipulation tests These tests are based on explicitly modifying headers in some way.
2011-07-22 23:57:26 +00:00
@nose.with_setup(teardown=_clear_custom_headers)
Flag some fails_on_dho tests as fails_on_rgw too.
2011-08-11 15:47:25 +00:00
@attr('fails_on_rgw')
add header-manipulation tests These tests are based on explicitly modifying headers in some way.
2011-07-22 23:57:26 +00:00
def test_object_create_bad_contentlength_mismatch_above():
content = 'bar'
length = len(content) + 1
key = _setup_bad_object({'Content-Length': length})
Disable retries to test short writes Previously test_object_create_bad_contentlength_mismatch_above failed with: Traceback (most recent call last): File "/home/gaul/work/s3-tests/virtualenv/local/lib/python2.7/site-packages/nose/case.py", line 197, in runTest self.test(*self.arg) File "/home/gaul/work/s3-tests/s3tests/functional/test_headers.py", line 343, in test_object_create_bad_contentlength_mismatch_above e = assert_raises(boto.exception.S3ResponseError, key.set_contents_from_string, content) File "/home/gaul/work/s3-tests/s3tests/functional/utils.py", line 11, in assert_raises callableObj(*args, **kwargs) File "/home/gaul/work/s3-tests/virtualenv/local/lib/python2.7/site-packages/boto/s3/key.py", line 1379, in set_contents_from_string encrypt_key=encrypt_key) File "/home/gaul/work/s3-tests/virtualenv/local/lib/python2.7/site-packages/boto/s3/key.py", line 1246, in set_contents_from_file chunked_transfer=chunked_transfer, size=size) File "/home/gaul/work/s3-tests/virtualenv/local/lib/python2.7/site-packages/boto/s3/key.py", line 725, in send_file chunked_transfer=chunked_transfer, size=size) File "/home/gaul/work/s3-tests/virtualenv/local/lib/python2.7/site-packages/boto/s3/key.py", line 914, in _send_file_internal query_args=query_args File "/home/gaul/work/s3-tests/virtualenv/local/lib/python2.7/site-packages/boto/s3/connection.py", line 658, in make_request retry_handler=retry_handler File "/home/gaul/work/s3-tests/virtualenv/local/lib/python2.7/site-packages/boto/connection.py", line 1048, in make_request retry_handler=retry_handler) File "/home/gaul/work/s3-tests/virtualenv/local/lib/python2.7/site-packages/boto/connection.py", line 1004, in _mexe raise BotoServerError(response.status, response.reason, body) BotoServerError: BotoServerError: 400 Bad Request
2014-08-02 04:23:36 +00:00
# Disable retries since key.should_retry will discard the response with
# PleaseRetryException.
def no_retry(response, chunked_transfer): return False
key.should_retry = no_retry
add header-manipulation tests These tests are based on explicitly modifying headers in some way.
2011-07-22 23:57:26 +00:00
e = assert_raises(boto.exception.S3ResponseError, key.set_contents_from_string, content)
eq(e.status, 400)
Improve proxy error support: "Bad Request" case If you are run the S3 testsuite against a reverse proxy (eg haproxy) rather than RGW directly, some of the tests will return errors from the proxy, rather than haproxy itself. Some proxies differ from RGW in the exact case of 'Bad Request', so do the match in a case-insensitive manner. Haproxy for example returns 'Bad request'. This removes the need for some of the prior fails_on_dho test tags, as the failure was due to haproxy. Signed-off-by: Robin H. Johnson <robin.johnson@dreamhost.com>
2015-10-07 19:31:31 +00:00
eq(e.reason.lower(), 'bad request') # some proxies vary the case
add header-manipulation tests These tests are based on explicitly modifying headers in some way.
2011-07-22 23:57:26 +00:00
eq(e.error_code, 'RequestTimeout')
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
@tag('auth_common')
RGW test-case annotation for inventory. Annotated S3 functional and error-detection test cases with resource/method/operation/assertion properties to enable automatic test case inventory generation. Signed-off-by: Mark Kampe <mark.kampe@dreamhost.com>
2011-12-22 21:08:03 +00:00
@attr(resource='object')
@attr(method='put')
@attr(operation='create w/content type text/plain')
@attr(assertion='succeeds')
add Content-Type object tests
2011-07-25 21:12:50 +00:00
@nose.with_setup(teardown=_clear_custom_headers)
def test_object_create_bad_contenttype_invalid():
key = _setup_bad_object({'Content-Type': 'text/plain'})
key.set_contents_from_string('bar')
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
@tag('auth_common')
RGW test-case annotation for inventory. Annotated S3 functional and error-detection test cases with resource/method/operation/assertion properties to enable automatic test case inventory generation. Signed-off-by: Mark Kampe <mark.kampe@dreamhost.com>
2011-12-22 21:08:03 +00:00
@attr(resource='object')
@attr(method='put')
@attr(operation='create w/empty content type')
@attr(assertion='succeeds')
add Content-Type object tests
2011-07-25 21:12:50 +00:00
@nose.with_setup(teardown=_clear_custom_headers)
def test_object_create_bad_contenttype_empty():
key = _setup_bad_object({'Content-Type': ''})
key.set_contents_from_string('bar')
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
@tag('auth_common')
RGW test-case annotation for inventory. Annotated S3 functional and error-detection test cases with resource/method/operation/assertion properties to enable automatic test case inventory generation. Signed-off-by: Mark Kampe <mark.kampe@dreamhost.com>
2011-12-22 21:08:03 +00:00
@attr(resource='object')
@attr(method='put')
@attr(operation='create w/no content type')
@attr(assertion='succeeds')
add Content-Type object tests
2011-07-25 21:12:50 +00:00
@nose.with_setup(teardown=_clear_custom_headers)
def test_object_create_bad_contenttype_none():
key = _setup_bad_object(remove=('Content-Type',))
key.set_contents_from_string('bar')
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
@tag('auth_common')
RGW test-case annotation for inventory. Annotated S3 functional and error-detection test cases with resource/method/operation/assertion properties to enable automatic test case inventory generation. Signed-off-by: Mark Kampe <mark.kampe@dreamhost.com>
2011-12-22 21:08:03 +00:00
@attr(resource='object')
@attr(method='put')
@attr(operation='create w/non-graphic content type')
@attr(assertion='fails 403')
add Content-Type object tests
2011-07-25 21:12:50 +00:00
@nose.with_setup(teardown=_clear_custom_headers)
Flag test_object_create_bad_contenttype_unreadable as failing on both RGW and DHO.
2011-08-11 16:35:06 +00:00
@attr('fails_on_rgw')
Annotate tests which create non-RFC2616 headers Signed-off-by: Andrew Gaul <andrew@gaul.org>
2016-06-06 23:19:27 +00:00
@attr('fails_strict_rfc2616')
add Content-Type object tests
2011-07-25 21:12:50 +00:00
def test_object_create_bad_contenttype_unreadable():
key = _setup_bad_object({'Content-Type': '\x08'})
e = assert_raises(boto.exception.S3ResponseError, key.set_contents_from_string, 'bar')
eq(e.status, 403)
eq(e.reason, 'Forbidden')
assert e.error_code in ('AccessDenied', 'SignatureDoesNotMatch')
add User-Agent header tests
2011-07-27 02:39:29 +00:00
add Authorization header tests
2011-07-27 03:13:44 +00:00
# the teardown is really messed up here. check it out
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
@tag('auth_common')
RGW test-case annotation for inventory. Annotated S3 functional and error-detection test cases with resource/method/operation/assertion properties to enable automatic test case inventory generation. Signed-off-by: Mark Kampe <mark.kampe@dreamhost.com>
2011-12-22 21:08:03 +00:00
@attr(resource='object')
@attr(method='put')
@attr(operation='create w/non-graphic authorization')
@attr(assertion='fails 403')
add Authorization header tests
2011-07-27 03:13:44 +00:00
@nose.with_setup(teardown=_clear_custom_headers)
add fail_on_rgw on test_object_create_bad_authorization_unreadable
2011-09-23 22:14:26 +00:00
@attr('fails_on_rgw')
Annotate tests which create non-RFC2616 headers Signed-off-by: Andrew Gaul <andrew@gaul.org>
2016-06-06 23:19:27 +00:00
@attr('fails_strict_rfc2616')
add Authorization header tests
2011-07-27 03:13:44 +00:00
def test_object_create_bad_authorization_unreadable():
key = _setup_bad_object({'Authorization': '\x07'})
e = assert_raises(boto.exception.S3ResponseError, key.set_contents_from_string, 'bar')
eq(e.status, 403)
eq(e.reason, 'Forbidden')
eq(e.error_code, 'AccessDenied')
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
@tag('auth_common')
RGW test-case annotation for inventory. Annotated S3 functional and error-detection test cases with resource/method/operation/assertion properties to enable automatic test case inventory generation. Signed-off-by: Mark Kampe <mark.kampe@dreamhost.com>
2011-12-22 21:08:03 +00:00
@attr(resource='object')
@attr(method='put')
@attr(operation='create w/empty authorization')
@attr(assertion='fails 403')
add Authorization header tests
2011-07-27 03:13:44 +00:00
@nose.with_setup(teardown=_clear_custom_headers)
def test_object_create_bad_authorization_empty():
key = _setup_bad_object({'Authorization': ''})
e = assert_raises(boto.exception.S3ResponseError, key.set_contents_from_string, 'bar')
eq(e.status, 403)
eq(e.reason, 'Forbidden')
eq(e.error_code, 'AccessDenied')
check precedence of Date and X-Amz-Date in signatures Signed-off-by: Casey Bodley <cbodley@redhat.com>
2017-06-21 14:19:12 +00:00
@tag('auth_common')
@attr(resource='object')
@attr(method='put')
@attr(operation='create w/date and x-amz-date')
@attr(assertion='succeeds')
@nose.with_setup(teardown=_clear_custom_headers)
def test_object_create_date_and_amz_date():
date = formatdate(usegmt=True)
key = _setup_bad_object({'Date': date, 'X-Amz-Date': date})
key.set_contents_from_string('bar')
@tag('auth_common')
@attr(resource='object')
@attr(method='put')
@attr(operation='create w/x-amz-date and no date')
@attr(assertion='succeeds')
@nose.with_setup(teardown=_clear_custom_headers)
def test_object_create_amz_date_and_no_date():
date = formatdate(usegmt=True)
key = _setup_bad_object({'X-Amz-Date': date}, ('Date',))
key.set_contents_from_string('bar')
add Authorization header tests
2011-07-27 03:13:44 +00:00
# the teardown is really messed up here. check it out
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
@tag('auth_common')
RGW test-case annotation for inventory. Annotated S3 functional and error-detection test cases with resource/method/operation/assertion properties to enable automatic test case inventory generation. Signed-off-by: Mark Kampe <mark.kampe@dreamhost.com>
2011-12-22 21:08:03 +00:00
@attr(resource='object')
@attr(method='put')
@attr(operation='create w/no authorization')
@attr(assertion='fails 403')
add Authorization header tests
2011-07-27 03:13:44 +00:00
@nose.with_setup(teardown=_clear_custom_headers)
def test_object_create_bad_authorization_none():
key = _setup_bad_object(remove=('Authorization',))
e = assert_raises(boto.exception.S3ResponseError, key.set_contents_from_string, 'bar')
eq(e.status, 403)
eq(e.reason, 'Forbidden')
eq(e.error_code, 'AccessDenied')
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
@tag('auth_common')
RGW test-case annotation for inventory. Annotated S3 functional and error-detection test cases with resource/method/operation/assertion properties to enable automatic test case inventory generation. Signed-off-by: Mark Kampe <mark.kampe@dreamhost.com>
2011-12-22 21:08:03 +00:00
@attr(resource='bucket')
@attr(method='put')
@attr(operation='create w/no content length')
@attr(assertion='succeeds')
add test for missing Content-Length header bucket creation
2011-08-26 00:45:16 +00:00
@nose.with_setup(teardown=_clear_custom_headers)
def test_bucket_create_contentlength_none():
_add_custom_headers(remove=('Content-Length',))
get_new_bucket()
add no Content-Length PUT object acl test
2011-09-22 19:50:13 +00:00
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
@tag('auth_common')
RGW test-case annotation for inventory. Annotated S3 functional and error-detection test cases with resource/method/operation/assertion properties to enable automatic test case inventory generation. Signed-off-by: Mark Kampe <mark.kampe@dreamhost.com>
2011-12-22 21:08:03 +00:00
@attr(resource='bucket')
@attr(method='acls')
@attr(operation='set w/no content length')
@attr(assertion='succeeds')
add no Content-Length PUT object acl test
2011-09-22 19:50:13 +00:00
@nose.with_setup(teardown=_clear_custom_headers)
Rename object acl test
2011-09-22 20:07:02 +00:00
def test_object_acl_create_contentlength_none():
add no Content-Length PUT object acl test
2011-09-22 19:50:13 +00:00
bucket = get_new_bucket()
key = bucket.new_key('foo')
key.set_contents_from_string('blah')
_add_custom_headers(remove=('Content-Length',))
key.set_acl('public-read')
add bucket header tests
2011-11-22 21:25:42 +00:00
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
@tag('auth_common')
RGW test-case annotation for inventory. Annotated S3 functional and error-detection test cases with resource/method/operation/assertion properties to enable automatic test case inventory generation. Signed-off-by: Mark Kampe <mark.kampe@dreamhost.com>
2011-12-22 21:08:03 +00:00
@attr(resource='bucket')
@attr(method='acls')
@attr(operation='set w/invalid permission')
@attr(assertion='fails 400')
add bucket header tests
2011-11-22 21:25:42 +00:00
@nose.with_setup(teardown=_clear_custom_headers)
def test_bucket_put_bad_canned_acl():
bucket = get_new_bucket()
_add_custom_headers({'x-amz-acl': 'public-ready'})
e = assert_raises(boto.exception.S3ResponseError, bucket.set_acl, 'public-read')
eq(e.status, 400)
# strangely, amazon doesn't report an error with a non-expect 100 also, our
# error comes back as html, and not xml as I normally expect
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
@tag('auth_common')
RGW test-case annotation for inventory. Annotated S3 functional and error-detection test cases with resource/method/operation/assertion properties to enable automatic test case inventory generation. Signed-off-by: Mark Kampe <mark.kampe@dreamhost.com>
2011-12-22 21:08:03 +00:00
@attr(resource='bucket')
@attr(method='put')
@attr(operation='create w/expect 200')
@attr(assertion='garbage, but S3 succeeds!')
add bucket header tests
2011-11-22 21:25:42 +00:00
@nose.with_setup(teardown=_clear_custom_headers)
@attr('fails_on_rgw')
def test_bucket_create_bad_expect_mismatch():
_add_custom_headers({'Expect':200})
bucket = get_new_bucket()
# this is a really long test, and I don't know if it's valid...
# again, accepts this with no troubles
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
@tag('auth_common')
RGW test-case annotation for inventory. Annotated S3 functional and error-detection test cases with resource/method/operation/assertion properties to enable automatic test case inventory generation. Signed-off-by: Mark Kampe <mark.kampe@dreamhost.com>
2011-12-22 21:08:03 +00:00
@attr(resource='bucket')
@attr(method='put')
@attr(operation='create w/expect empty')
@attr(assertion='garbage, but S3 succeeds!')
add bucket header tests
2011-11-22 21:25:42 +00:00
@nose.with_setup(teardown=_clear_custom_headers)
def test_bucket_create_bad_expect_empty():
_add_custom_headers({'Expect': ''})
bucket = get_new_bucket()
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
@tag('auth_common')
RGW test-case annotation for inventory. Annotated S3 functional and error-detection test cases with resource/method/operation/assertion properties to enable automatic test case inventory generation. Signed-off-by: Mark Kampe <mark.kampe@dreamhost.com>
2011-12-22 21:08:03 +00:00
@attr(resource='bucket')
@attr(method='put')
@attr(operation='create w/expect nongraphic')
@attr(assertion='garbage, but S3 succeeds!')
add bucket header tests
2011-11-22 21:25:42 +00:00
# this is a really long test..
@nose.with_setup(teardown=_clear_custom_headers)
@attr('fails_on_rgw')
Annotate tests which create non-RFC2616 headers Signed-off-by: Andrew Gaul <andrew@gaul.org>
2016-06-06 23:19:27 +00:00
@attr('fails_strict_rfc2616')
add bucket header tests
2011-11-22 21:25:42 +00:00
def test_bucket_create_bad_expect_unreadable():
_add_custom_headers({'Expect': '\x07'})
bucket = get_new_bucket()
test_bucket_create_bad_contentlength_empty should use its own connection since it can leave the connection in a wierd state
2011-11-22 22:46:53 +00:00
def _create_new_connection():
# We're going to need to manually build a connection using bad authorization info.
# But to save the day, lets just hijack the settings from s3.main. :)
main = s3.main
conn = HeaderS3Connection(
aws_access_key_id=main.aws_access_key_id,
aws_secret_access_key=main.aws_secret_access_key,
is_secure=main.is_secure,
port=main.port,
host=main.host,
calling_format=main.calling_format,
)
s3tests: fix test_bucket_create_bad_contentlength_empty Signed-off-by: Yehuda Sadeh <yehuda@redhat.com>
2015-02-27 18:23:09 +00:00
return TargetConnection(targets.main.default.conf, conn)
test_bucket_create_bad_contentlength_empty should use its own connection since it can leave the connection in a wierd state
2011-11-22 22:46:53 +00:00
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
@tag('auth_common')
RGW test-case annotation for inventory. Annotated S3 functional and error-detection test cases with resource/method/operation/assertion properties to enable automatic test case inventory generation. Signed-off-by: Mark Kampe <mark.kampe@dreamhost.com>
2011-12-22 21:08:03 +00:00
@attr(resource='bucket')
@attr(method='put')
@attr(operation='create w/empty content length')
@attr(assertion='fails 400')
add bucket header tests
2011-11-22 21:25:42 +00:00
@nose.with_setup(teardown=_clear_custom_headers)
@attr('fails_on_rgw')
def test_bucket_create_bad_contentlength_empty():
test_bucket_create_bad_contentlength_empty should use its own connection since it can leave the connection in a wierd state
2011-11-22 22:46:53 +00:00
conn = _create_new_connection()
add bucket header tests
2011-11-22 21:25:42 +00:00
_add_custom_headers({'Content-Length': ''})
test_bucket_create_bad_contentlength_empty should use its own connection since it can leave the connection in a wierd state
2011-11-22 22:46:53 +00:00
e = assert_raises(boto.exception.S3ResponseError, get_new_bucket, conn)
add bucket header tests
2011-11-22 21:25:42 +00:00
eq(e.status, 400)
Improve proxy error support: "Bad Request" case If you are run the S3 testsuite against a reverse proxy (eg haproxy) rather than RGW directly, some of the tests will return errors from the proxy, rather than haproxy itself. Some proxies differ from RGW in the exact case of 'Bad Request', so do the match in a case-insensitive manner. Haproxy for example returns 'Bad request'. This removes the need for some of the prior fails_on_dho test tags, as the failure was due to haproxy. Signed-off-by: Robin H. Johnson <robin.johnson@dreamhost.com>
2015-10-07 19:31:31 +00:00
eq(e.reason.lower(), 'bad request') # some proxies vary the case
add bucket header tests
2011-11-22 21:25:42 +00:00
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
@tag('auth_common')
RGW test-case annotation for inventory. Annotated S3 functional and error-detection test cases with resource/method/operation/assertion properties to enable automatic test case inventory generation. Signed-off-by: Mark Kampe <mark.kampe@dreamhost.com>
2011-12-22 21:08:03 +00:00
@attr(resource='bucket')
@attr(method='put')
@attr(operation='create w/negative content length')
@attr(assertion='fails 400')
s3tests: fix test_bucket_create_bad_contentlength_empty Signed-off-by: Yehuda Sadeh <yehuda@redhat.com>
2015-02-27 18:23:09 +00:00
@attr('fails_on_mod_proxy_fcgi')
add bucket header tests
2011-11-22 21:25:42 +00:00
@nose.with_setup(teardown=_clear_custom_headers)
def test_bucket_create_bad_contentlength_negative():
_add_custom_headers({'Content-Length': -1})
e = assert_raises(boto.exception.S3ResponseError, get_new_bucket)
eq(e.status, 400)
Improve proxy error support: "Bad Request" case If you are run the S3 testsuite against a reverse proxy (eg haproxy) rather than RGW directly, some of the tests will return errors from the proxy, rather than haproxy itself. Some proxies differ from RGW in the exact case of 'Bad Request', so do the match in a case-insensitive manner. Haproxy for example returns 'Bad request'. This removes the need for some of the prior fails_on_dho test tags, as the failure was due to haproxy. Signed-off-by: Robin H. Johnson <robin.johnson@dreamhost.com>
2015-10-07 19:31:31 +00:00
eq(e.reason.lower(), 'bad request') # some proxies vary the case
add bucket header tests
2011-11-22 21:25:42 +00:00
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
@tag('auth_common')
RGW test-case annotation for inventory. Annotated S3 functional and error-detection test cases with resource/method/operation/assertion properties to enable automatic test case inventory generation. Signed-off-by: Mark Kampe <mark.kampe@dreamhost.com>
2011-12-22 21:08:03 +00:00
@attr(resource='bucket')
@attr(method='put')
@attr(operation='create w/no content length')
@attr(assertion='succeeds')
add bucket header tests
2011-11-22 21:25:42 +00:00
@nose.with_setup(teardown=_clear_custom_headers)
def test_bucket_create_bad_contentlength_none():
_add_custom_headers(remove=('Content-Length',))
bucket = get_new_bucket()
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
@tag('auth_common')
RGW test-case annotation for inventory. Annotated S3 functional and error-detection test cases with resource/method/operation/assertion properties to enable automatic test case inventory generation. Signed-off-by: Mark Kampe <mark.kampe@dreamhost.com>
2011-12-22 21:08:03 +00:00
@attr(resource='bucket')
@attr(method='put')
@attr(operation='create w/non-graphic content length')
@attr(assertion='fails 400')
s3tests: fix test_bucket_create_bad_contentlength_empty Signed-off-by: Yehuda Sadeh <yehuda@redhat.com>
2015-02-27 18:23:09 +00:00
@attr('fails_on_mod_proxy_fcgi')
Annotate tests which create non-RFC2616 headers Signed-off-by: Andrew Gaul <andrew@gaul.org>
2016-06-06 23:19:27 +00:00
@attr('fails_strict_rfc2616')
add bucket header tests
2011-11-22 21:25:42 +00:00
@nose.with_setup(teardown=_clear_custom_headers)
def test_bucket_create_bad_contentlength_unreadable():
_add_custom_headers({'Content-Length': '\x07'})
e = assert_raises(boto.exception.S3ResponseError, get_new_bucket)
eq(e.status, 400)
Improve proxy error support: "Bad Request" case If you are run the S3 testsuite against a reverse proxy (eg haproxy) rather than RGW directly, some of the tests will return errors from the proxy, rather than haproxy itself. Some proxies differ from RGW in the exact case of 'Bad Request', so do the match in a case-insensitive manner. Haproxy for example returns 'Bad request'. This removes the need for some of the prior fails_on_dho test tags, as the failure was due to haproxy. Signed-off-by: Robin H. Johnson <robin.johnson@dreamhost.com>
2015-10-07 19:31:31 +00:00
eq(e.reason.lower(), 'bad request') # some proxies vary the case
add bucket header tests
2011-11-22 21:25:42 +00:00
eq(e.error_code, None)
# the teardown is really messed up here. check it out
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
@tag('auth_common')
RGW test-case annotation for inventory. Annotated S3 functional and error-detection test cases with resource/method/operation/assertion properties to enable automatic test case inventory generation. Signed-off-by: Mark Kampe <mark.kampe@dreamhost.com>
2011-12-22 21:08:03 +00:00
@attr(resource='bucket')
@attr(method='put')
@attr(operation='create w/non-graphic authorization')
@attr(assertion='fails 403')
add bucket header tests
2011-11-22 21:25:42 +00:00
@nose.with_setup(teardown=_clear_custom_headers)
@attr('fails_on_rgw')
Annotate tests which create non-RFC2616 headers Signed-off-by: Andrew Gaul <andrew@gaul.org>
2016-06-06 23:19:27 +00:00
@attr('fails_strict_rfc2616')
add bucket header tests
2011-11-22 21:25:42 +00:00
def test_bucket_create_bad_authorization_unreadable():
_add_custom_headers({'Authorization': '\x07'})
e = assert_raises(boto.exception.S3ResponseError, get_new_bucket)
eq(e.status, 403)
eq(e.reason, 'Forbidden')
eq(e.error_code, 'AccessDenied')
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
@tag('auth_common')
RGW test-case annotation for inventory. Annotated S3 functional and error-detection test cases with resource/method/operation/assertion properties to enable automatic test case inventory generation. Signed-off-by: Mark Kampe <mark.kampe@dreamhost.com>
2011-12-22 21:08:03 +00:00
@attr(resource='bucket')
@attr(method='put')
@attr(operation='create w/empty authorization')
@attr(assertion='fails 403')
add bucket header tests
2011-11-22 21:25:42 +00:00
@nose.with_setup(teardown=_clear_custom_headers)
def test_bucket_create_bad_authorization_empty():
_add_custom_headers({'Authorization': ''})
e = assert_raises(boto.exception.S3ResponseError, get_new_bucket)
eq(e.status, 403)
eq(e.reason, 'Forbidden')
eq(e.error_code, 'AccessDenied')
# the teardown is really messed up here. check it out
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
@tag('auth_common')
RGW test-case annotation for inventory. Annotated S3 functional and error-detection test cases with resource/method/operation/assertion properties to enable automatic test case inventory generation. Signed-off-by: Mark Kampe <mark.kampe@dreamhost.com>
2011-12-22 21:08:03 +00:00
@attr(resource='bucket')
@attr(method='put')
@attr(operation='create w/no authorization')
@attr(assertion='fails 403')
add bucket header tests
2011-11-22 21:25:42 +00:00
@nose.with_setup(teardown=_clear_custom_headers)
def test_bucket_create_bad_authorization_none():
_add_custom_headers(remove=('Authorization',))
e = assert_raises(boto.exception.S3ResponseError, get_new_bucket)
eq(e.status, 403)
eq(e.reason, 'Forbidden')
eq(e.error_code, 'AccessDenied')
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
#
# AWS2 specific tests
#
@tag('auth_aws2')
@attr(resource='object')
RGW test-case annotation for inventory. Annotated S3 functional and error-detection test cases with resource/method/operation/assertion properties to enable automatic test case inventory generation. Signed-off-by: Mark Kampe <mark.kampe@dreamhost.com>
2011-12-22 21:08:03 +00:00
@attr(method='put')
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
@attr(operation='create w/invalid MD5')
@attr(assertion='fails 400')
add bucket header tests
2011-11-22 21:25:42 +00:00
@nose.with_setup(teardown=_clear_custom_headers)
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
def test_object_create_bad_md5_invalid_garbage_aws2():
rgw: skip aws2 requests when testing aws4 Signed-off-by: Yehuda Sadeh <yehuda@redhat.com>
2016-05-19 19:45:32 +00:00
check_aws2_support()
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
key = _setup_bad_object({'Content-MD5':'AWS HAHAHA'})
e = assert_raises(boto.exception.S3ResponseError, key.set_contents_from_string, 'bar')
eq(e.status, 400)
Improve proxy error support: "Bad Request" case If you are run the S3 testsuite against a reverse proxy (eg haproxy) rather than RGW directly, some of the tests will return errors from the proxy, rather than haproxy itself. Some proxies differ from RGW in the exact case of 'Bad Request', so do the match in a case-insensitive manner. Haproxy for example returns 'Bad request'. This removes the need for some of the prior fails_on_dho test tags, as the failure was due to haproxy. Signed-off-by: Robin H. Johnson <robin.johnson@dreamhost.com>
2015-10-07 19:31:31 +00:00
eq(e.reason.lower(), 'bad request') # some proxies vary the case
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
eq(e.error_code, 'InvalidDigest')
add bucket header tests
2011-11-22 21:25:42 +00:00
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
@tag('auth_aws2')
@attr(resource='object')
@attr(method='put')
@attr(operation='create w/content length too short')
@attr(assertion='fails 400')
@nose.with_setup(teardown=_clear_custom_headers)
def test_object_create_bad_contentlength_mismatch_below_aws2():
rgw: skip aws2 requests when testing aws4 Signed-off-by: Yehuda Sadeh <yehuda@redhat.com>
2016-05-19 19:45:32 +00:00
check_aws2_support()
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
content = 'bar'
length = len(content) - 1
key = _setup_bad_object({'Content-Length': length})
e = assert_raises(boto.exception.S3ResponseError, key.set_contents_from_string, content)
eq(e.status, 400)
Improve proxy error support: "Bad Request" case If you are run the S3 testsuite against a reverse proxy (eg haproxy) rather than RGW directly, some of the tests will return errors from the proxy, rather than haproxy itself. Some proxies differ from RGW in the exact case of 'Bad Request', so do the match in a case-insensitive manner. Haproxy for example returns 'Bad request'. This removes the need for some of the prior fails_on_dho test tags, as the failure was due to haproxy. Signed-off-by: Robin H. Johnson <robin.johnson@dreamhost.com>
2015-10-07 19:31:31 +00:00
eq(e.reason.lower(), 'bad request') # some proxies vary the case
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
eq(e.error_code, 'BadDigest')
@tag('auth_aws2')
@attr(resource='object')
@attr(method='put')
@attr(operation='create w/incorrect authorization')
@attr(assertion='fails 403')
@nose.with_setup(teardown=_clear_custom_headers)
def test_object_create_bad_authorization_incorrect_aws2():
rgw: skip aws2 requests when testing aws4 Signed-off-by: Yehuda Sadeh <yehuda@redhat.com>
2016-05-19 19:45:32 +00:00
check_aws2_support()
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
key = _setup_bad_object({'Authorization': 'AWS AKIAIGR7ZNNBHC5BKSUB:FWeDfwojDSdS2Ztmpfeubhd9isU='})
e = assert_raises(boto.exception.S3ResponseError, key.set_contents_from_string, 'bar')
eq(e.status, 403)
eq(e.reason, 'Forbidden')
assert e.error_code in ('AccessDenied', 'SignatureDoesNotMatch', 'InvalidAccessKeyId')
@tag('auth_aws2')
@nose.with_setup(teardown=_clear_custom_headers)
@attr(resource='object')
@attr(method='put')
@attr(operation='create w/invalid authorization')
@attr(assertion='fails 400')
def test_object_create_bad_authorization_invalid_aws2():
rgw: skip aws2 requests when testing aws4 Signed-off-by: Yehuda Sadeh <yehuda@redhat.com>
2016-05-19 19:45:32 +00:00
check_aws2_support()
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
key = _setup_bad_object({'Authorization': 'AWS HAHAHA'})
e = assert_raises(boto.exception.S3ResponseError, key.set_contents_from_string, 'bar')
eq(e.status, 400)
Improve proxy error support: "Bad Request" case If you are run the S3 testsuite against a reverse proxy (eg haproxy) rather than RGW directly, some of the tests will return errors from the proxy, rather than haproxy itself. Some proxies differ from RGW in the exact case of 'Bad Request', so do the match in a case-insensitive manner. Haproxy for example returns 'Bad request'. This removes the need for some of the prior fails_on_dho test tags, as the failure was due to haproxy. Signed-off-by: Robin H. Johnson <robin.johnson@dreamhost.com>
2015-10-07 19:31:31 +00:00
eq(e.reason.lower(), 'bad request') # some proxies vary the case
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
eq(e.error_code, 'InvalidArgument')
@tag('auth_aws2')
@attr(resource='object')
@attr(method='put')
@attr(operation='create w/empty user agent')
@attr(assertion='succeeds')
@nose.with_setup(teardown=_clear_custom_headers)
def test_object_create_bad_ua_empty_aws2():
rgw: skip aws2 requests when testing aws4 Signed-off-by: Yehuda Sadeh <yehuda@redhat.com>
2016-05-19 19:45:32 +00:00
check_aws2_support()
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
key = _setup_bad_object({'User-Agent': ''})
key.set_contents_from_string('bar')
@tag('auth_aws2')
@attr(resource='object')
@attr(method='put')
@attr(operation='create w/non-graphic user agent')
@attr(assertion='succeeds')
Annotate tests which create non-RFC2616 headers Signed-off-by: Andrew Gaul <andrew@gaul.org>
2016-06-06 23:19:27 +00:00
@attr('fails_strict_rfc2616')
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
@nose.with_setup(teardown=_clear_custom_headers)
def test_object_create_bad_ua_unreadable_aws2():
rgw: skip aws2 requests when testing aws4 Signed-off-by: Yehuda Sadeh <yehuda@redhat.com>
2016-05-19 19:45:32 +00:00
check_aws2_support()
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
key = _setup_bad_object({'User-Agent': '\x07'})
key.set_contents_from_string('bar')
@tag('auth_aws2')
@attr(resource='object')
@attr(method='put')
@attr(operation='create w/no user agent')
@attr(assertion='succeeds')
@nose.with_setup(teardown=_clear_custom_headers)
def test_object_create_bad_ua_none_aws2():
rgw: skip aws2 requests when testing aws4 Signed-off-by: Yehuda Sadeh <yehuda@redhat.com>
2016-05-19 19:45:32 +00:00
check_aws2_support()
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
key = _setup_bad_object(remove=('User-Agent',))
key.set_contents_from_string('bar')
@tag('auth_aws2')
@attr(resource='object')
@attr(method='put')
@attr(operation='create w/invalid date')
@attr(assertion='fails 403')
@nose.with_setup(teardown=_clear_custom_headers)
def test_object_create_bad_date_invalid_aws2():
rgw: skip aws2 requests when testing aws4 Signed-off-by: Yehuda Sadeh <yehuda@redhat.com>
2016-05-19 19:45:32 +00:00
check_aws2_support()
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
key = _setup_bad_object({'Date': 'Bad Date'})
e = assert_raises(boto.exception.S3ResponseError, key.set_contents_from_string, 'bar')
eq(e.status, 403)
eq(e.reason, 'Forbidden')
eq(e.error_code, 'AccessDenied')
@tag('auth_aws2')
@attr(resource='object')
RGW test-case annotation for inventory. Annotated S3 functional and error-detection test cases with resource/method/operation/assertion properties to enable automatic test case inventory generation. Signed-off-by: Mark Kampe <mark.kampe@dreamhost.com>
2011-12-22 21:08:03 +00:00
@attr(method='put')
@attr(operation='create w/empty date')
@attr(assertion='fails 403')
add bucket header tests
2011-11-22 21:25:42 +00:00
@nose.with_setup(teardown=_clear_custom_headers)
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
def test_object_create_bad_date_empty_aws2():
rgw: skip aws2 requests when testing aws4 Signed-off-by: Yehuda Sadeh <yehuda@redhat.com>
2016-05-19 19:45:32 +00:00
check_aws2_support()
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
key = _setup_bad_object({'Date': ''})
e = assert_raises(boto.exception.S3ResponseError, key.set_contents_from_string, 'bar')
eq(e.status, 403)
eq(e.reason, 'Forbidden')
eq(e.error_code, 'AccessDenied')
@tag('auth_aws2')
@attr(resource='object')
@attr(method='put')
@attr(operation='create w/non-graphic date')
@attr(assertion='fails 403')
Annotate tests which create non-RFC2616 headers Signed-off-by: Andrew Gaul <andrew@gaul.org>
2016-06-06 23:19:27 +00:00
@attr('fails_strict_rfc2616')
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
@nose.with_setup(teardown=_clear_custom_headers)
def test_object_create_bad_date_unreadable_aws2():
rgw: skip aws2 requests when testing aws4 Signed-off-by: Yehuda Sadeh <yehuda@redhat.com>
2016-05-19 19:45:32 +00:00
check_aws2_support()
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
key = _setup_bad_object({'Date': '\x07'})
e = assert_raises(boto.exception.S3ResponseError, key.set_contents_from_string, 'bar')
eq(e.status, 403)
eq(e.reason, 'Forbidden')
eq(e.error_code, 'AccessDenied')
@tag('auth_aws2')
@attr(resource='object')
@attr(method='put')
@attr(operation='create w/no date')
@attr(assertion='fails 403')
@nose.with_setup(teardown=_clear_custom_headers)
def test_object_create_bad_date_none_aws2():
rgw: skip aws2 requests when testing aws4 Signed-off-by: Yehuda Sadeh <yehuda@redhat.com>
2016-05-19 19:45:32 +00:00
check_aws2_support()
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
key = _setup_bad_object(remove=('Date',))
e = assert_raises(boto.exception.S3ResponseError, key.set_contents_from_string, 'bar')
eq(e.status, 403)
eq(e.reason, 'Forbidden')
eq(e.error_code, 'AccessDenied')
@tag('auth_aws2')
@attr(resource='object')
@attr(method='put')
@attr(operation='create w/date in past')
@attr(assertion='fails 403')
@nose.with_setup(teardown=_clear_custom_headers)
def test_object_create_bad_date_before_today_aws2():
rgw: skip aws2 requests when testing aws4 Signed-off-by: Yehuda Sadeh <yehuda@redhat.com>
2016-05-19 19:45:32 +00:00
check_aws2_support()
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
key = _setup_bad_object({'Date': 'Tue, 07 Jul 2010 21:53:04 GMT'})
e = assert_raises(boto.exception.S3ResponseError, key.set_contents_from_string, 'bar')
eq(e.status, 403)
eq(e.reason, 'Forbidden')
eq(e.error_code, 'RequestTimeTooSkewed')
@tag('auth_aws2')
@attr(resource='object')
@attr(method='put')
@attr(operation='create w/date in future')
@attr(assertion='fails 403')
@nose.with_setup(teardown=_clear_custom_headers)
def test_object_create_bad_date_after_today_aws2():
rgw: skip aws2 requests when testing aws4 Signed-off-by: Yehuda Sadeh <yehuda@redhat.com>
2016-05-19 19:45:32 +00:00
check_aws2_support()
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
key = _setup_bad_object({'Date': 'Tue, 07 Jul 2030 21:53:04 GMT'})
e = assert_raises(boto.exception.S3ResponseError, key.set_contents_from_string, 'bar')
eq(e.status, 403)
eq(e.reason, 'Forbidden')
eq(e.error_code, 'RequestTimeTooSkewed')
@tag('auth_aws2')
@attr(resource='object')
@attr(method='put')
@attr(operation='create w/date before epoch')
@attr(assertion='fails 403')
@nose.with_setup(teardown=_clear_custom_headers)
def test_object_create_bad_date_before_epoch_aws2():
rgw: skip aws2 requests when testing aws4 Signed-off-by: Yehuda Sadeh <yehuda@redhat.com>
2016-05-19 19:45:32 +00:00
check_aws2_support()
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
key = _setup_bad_object({'Date': 'Tue, 07 Jul 1950 21:53:04 GMT'})
e = assert_raises(boto.exception.S3ResponseError, key.set_contents_from_string, 'bar')
eq(e.status, 403)
eq(e.reason, 'Forbidden')
eq(e.error_code, 'AccessDenied')
@tag('auth_aws2')
@attr(resource='object')
@attr(method='put')
@attr(operation='create w/date after 9999')
@attr(assertion='fails 403')
@nose.with_setup(teardown=_clear_custom_headers)
def test_object_create_bad_date_after_end_aws2():
rgw: skip aws2 requests when testing aws4 Signed-off-by: Yehuda Sadeh <yehuda@redhat.com>
2016-05-19 19:45:32 +00:00
check_aws2_support()
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
key = _setup_bad_object({'Date': 'Tue, 07 Jul 9999 21:53:04 GMT'})
e = assert_raises(boto.exception.S3ResponseError, key.set_contents_from_string, 'bar')
eq(e.status, 403)
eq(e.reason, 'Forbidden')
eq(e.error_code, 'RequestTimeTooSkewed')
@tag('auth_aws2')
@attr(resource='bucket')
@attr(method='put')
@attr(operation='create w/invalid authorization')
@attr(assertion='fails 400')
@nose.with_setup(teardown=_clear_custom_headers)
def test_bucket_create_bad_authorization_invalid_aws2():
rgw: skip aws2 requests when testing aws4 Signed-off-by: Yehuda Sadeh <yehuda@redhat.com>
2016-05-19 19:45:32 +00:00
check_aws2_support()
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
_add_custom_headers({'Authorization': 'AWS HAHAHA'})
e = assert_raises(boto.exception.S3ResponseError, get_new_bucket)
eq(e.status, 400)
Improve proxy error support: "Bad Request" case If you are run the S3 testsuite against a reverse proxy (eg haproxy) rather than RGW directly, some of the tests will return errors from the proxy, rather than haproxy itself. Some proxies differ from RGW in the exact case of 'Bad Request', so do the match in a case-insensitive manner. Haproxy for example returns 'Bad request'. This removes the need for some of the prior fails_on_dho test tags, as the failure was due to haproxy. Signed-off-by: Robin H. Johnson <robin.johnson@dreamhost.com>
2015-10-07 19:31:31 +00:00
eq(e.reason.lower(), 'bad request') # some proxies vary the case
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
eq(e.error_code, 'InvalidArgument')
@tag('auth_aws2')
@attr(resource='bucket')
@attr(method='put')
@attr(operation='create w/empty user agent')
@attr(assertion='succeeds')
@nose.with_setup(teardown=_clear_custom_headers)
def test_bucket_create_bad_ua_empty_aws2():
rgw: skip aws2 requests when testing aws4 Signed-off-by: Yehuda Sadeh <yehuda@redhat.com>
2016-05-19 19:45:32 +00:00
check_aws2_support()
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
_add_custom_headers({'User-Agent': ''})
bucket = get_new_bucket()
@tag('auth_aws2')
@attr(resource='bucket')
@attr(method='put')
@attr(operation='create w/non-graphic user agent')
@attr(assertion='succeeds')
Annotate tests which create non-RFC2616 headers Signed-off-by: Andrew Gaul <andrew@gaul.org>
2016-06-06 23:19:27 +00:00
@attr('fails_strict_rfc2616')
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
@nose.with_setup(teardown=_clear_custom_headers)
def test_bucket_create_bad_ua_unreadable_aws2():
rgw: skip aws2 requests when testing aws4 Signed-off-by: Yehuda Sadeh <yehuda@redhat.com>
2016-05-19 19:45:32 +00:00
check_aws2_support()
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
_add_custom_headers({'User-Agent': '\x07'})
bucket = get_new_bucket()
@tag('auth_aws2')
@attr(resource='bucket')
@attr(method='put')
@attr(operation='create w/no user agent')
@attr(assertion='succeeds')
@nose.with_setup(teardown=_clear_custom_headers)
def test_bucket_create_bad_ua_none_aws2():
rgw: skip aws2 requests when testing aws4 Signed-off-by: Yehuda Sadeh <yehuda@redhat.com>
2016-05-19 19:45:32 +00:00
check_aws2_support()
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
_add_custom_headers(remove=('User-Agent',))
bucket = get_new_bucket()
@tag('auth_aws2')
@attr(resource='bucket')
@attr(method='put')
@attr(operation='create w/invalid date')
@attr(assertion='fails 403')
@nose.with_setup(teardown=_clear_custom_headers)
def test_bucket_create_bad_date_invalid_aws2():
rgw: skip aws2 requests when testing aws4 Signed-off-by: Yehuda Sadeh <yehuda@redhat.com>
2016-05-19 19:45:32 +00:00
check_aws2_support()
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
_add_custom_headers({'Date': 'Bad Date'})
add bucket header tests
2011-11-22 21:25:42 +00:00
e = assert_raises(boto.exception.S3ResponseError, get_new_bucket)
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
eq(e.status, 403)
eq(e.reason, 'Forbidden')
eq(e.error_code, 'AccessDenied')
add bucket header tests
2011-11-22 21:25:42 +00:00
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
@tag('auth_aws2')
@attr(resource='bucket')
@attr(method='put')
@attr(operation='create w/empty date')
@attr(assertion='fails 403')
@nose.with_setup(teardown=_clear_custom_headers)
def test_bucket_create_bad_date_empty_aws2():
rgw: skip aws2 requests when testing aws4 Signed-off-by: Yehuda Sadeh <yehuda@redhat.com>
2016-05-19 19:45:32 +00:00
check_aws2_support()
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
_add_custom_headers({'Date': ''})
e = assert_raises(boto.exception.S3ResponseError, get_new_bucket)
add bucket header tests
2011-11-22 21:25:42 +00:00
eq(e.status, 403)
eq(e.reason, 'Forbidden')
eq(e.error_code, 'AccessDenied')
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
@tag('auth_aws2')
RGW test-case annotation for inventory. Annotated S3 functional and error-detection test cases with resource/method/operation/assertion properties to enable automatic test case inventory generation. Signed-off-by: Mark Kampe <mark.kampe@dreamhost.com>
2011-12-22 21:08:03 +00:00
@attr(resource='bucket')
@attr(method='put')
@attr(operation='create w/non-graphic date')
@attr(assertion='fails 403')
Annotate tests which create non-RFC2616 headers Signed-off-by: Andrew Gaul <andrew@gaul.org>
2016-06-06 23:19:27 +00:00
@attr('fails_strict_rfc2616')
add bucket header tests
2011-11-22 21:25:42 +00:00
@nose.with_setup(teardown=_clear_custom_headers)
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
def test_bucket_create_bad_date_unreadable_aws2():
rgw: skip aws2 requests when testing aws4 Signed-off-by: Yehuda Sadeh <yehuda@redhat.com>
2016-05-19 19:45:32 +00:00
check_aws2_support()
add bucket header tests
2011-11-22 21:25:42 +00:00
_add_custom_headers({'Date': '\x07'})
e = assert_raises(boto.exception.S3ResponseError, get_new_bucket)
eq(e.status, 403)
eq(e.reason, 'Forbidden')
eq(e.error_code, 'AccessDenied')
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
@tag('auth_aws2')
RGW test-case annotation for inventory. Annotated S3 functional and error-detection test cases with resource/method/operation/assertion properties to enable automatic test case inventory generation. Signed-off-by: Mark Kampe <mark.kampe@dreamhost.com>
2011-12-22 21:08:03 +00:00
@attr(resource='bucket')
@attr(method='put')
@attr(operation='create w/no date')
@attr(assertion='fails 403')
add bucket header tests
2011-11-22 21:25:42 +00:00
@nose.with_setup(teardown=_clear_custom_headers)
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
def test_bucket_create_bad_date_none_aws2():
rgw: skip aws2 requests when testing aws4 Signed-off-by: Yehuda Sadeh <yehuda@redhat.com>
2016-05-19 19:45:32 +00:00
check_aws2_support()
RGW test-case annotation for inventory. Annotated S3 functional and error-detection test cases with resource/method/operation/assertion properties to enable automatic test case inventory generation. Signed-off-by: Mark Kampe <mark.kampe@dreamhost.com>
2011-12-22 21:08:03 +00:00
_add_custom_headers(remove=('Date',))
add bucket header tests
2011-11-22 21:25:42 +00:00
e = assert_raises(boto.exception.S3ResponseError, get_new_bucket)
eq(e.status, 403)
eq(e.reason, 'Forbidden')
eq(e.error_code, 'AccessDenied')
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
@tag('auth_aws2')
RGW test-case annotation for inventory. Annotated S3 functional and error-detection test cases with resource/method/operation/assertion properties to enable automatic test case inventory generation. Signed-off-by: Mark Kampe <mark.kampe@dreamhost.com>
2011-12-22 21:08:03 +00:00
@attr(resource='bucket')
@attr(method='put')
@attr(operation='create w/date in past')
@attr(assertion='fails 403')
add bucket header tests
2011-11-22 21:25:42 +00:00
@nose.with_setup(teardown=_clear_custom_headers)
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
def test_bucket_create_bad_date_before_today_aws2():
rgw: skip aws2 requests when testing aws4 Signed-off-by: Yehuda Sadeh <yehuda@redhat.com>
2016-05-19 19:45:32 +00:00
check_aws2_support()
add bucket header tests
2011-11-22 21:25:42 +00:00
_add_custom_headers({'Date': 'Tue, 07 Jul 2010 21:53:04 GMT'})
e = assert_raises(boto.exception.S3ResponseError, get_new_bucket)
eq(e.status, 403)
eq(e.reason, 'Forbidden')
eq(e.error_code, 'RequestTimeTooSkewed')
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
@tag('auth_aws2')
RGW test-case annotation for inventory. Annotated S3 functional and error-detection test cases with resource/method/operation/assertion properties to enable automatic test case inventory generation. Signed-off-by: Mark Kampe <mark.kampe@dreamhost.com>
2011-12-22 21:08:03 +00:00
@attr(resource='bucket')
@attr(method='put')
@attr(operation='create w/date in future')
@attr(assertion='fails 403')
add bucket header tests
2011-11-22 21:25:42 +00:00
@nose.with_setup(teardown=_clear_custom_headers)
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
def test_bucket_create_bad_date_after_today_aws2():
rgw: skip aws2 requests when testing aws4 Signed-off-by: Yehuda Sadeh <yehuda@redhat.com>
2016-05-19 19:45:32 +00:00
check_aws2_support()
add bucket header tests
2011-11-22 21:25:42 +00:00
_add_custom_headers({'Date': 'Tue, 07 Jul 2030 21:53:04 GMT'})
e = assert_raises(boto.exception.S3ResponseError, get_new_bucket)
eq(e.status, 403)
eq(e.reason, 'Forbidden')
eq(e.error_code, 'RequestTimeTooSkewed')
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
@tag('auth_aws2')
RGW test-case annotation for inventory. Annotated S3 functional and error-detection test cases with resource/method/operation/assertion properties to enable automatic test case inventory generation. Signed-off-by: Mark Kampe <mark.kampe@dreamhost.com>
2011-12-22 21:08:03 +00:00
@attr(resource='bucket')
@attr(method='put')
@attr(operation='create w/date before epoch')
@attr(assertion='fails 403')
add bucket header tests
2011-11-22 21:25:42 +00:00
@nose.with_setup(teardown=_clear_custom_headers)
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
def test_bucket_create_bad_date_before_epoch_aws2():
rgw: skip aws2 requests when testing aws4 Signed-off-by: Yehuda Sadeh <yehuda@redhat.com>
2016-05-19 19:45:32 +00:00
check_aws2_support()
add bucket header tests
2011-11-22 21:25:42 +00:00
_add_custom_headers({'Date': 'Tue, 07 Jul 1950 21:53:04 GMT'})
e = assert_raises(boto.exception.S3ResponseError, get_new_bucket)
eq(e.status, 403)
eq(e.reason, 'Forbidden')
eq(e.error_code, 'AccessDenied')
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
#
# AWS4 specific tests
#
def check_aws4_support():
if 'S3_USE_SIGV4' not in os.environ:
raise SkipTest
rgw: skip aws2 requests when testing aws4 Signed-off-by: Yehuda Sadeh <yehuda@redhat.com>
2016-05-19 19:45:32 +00:00
def check_aws2_support():
if 'S3_USE_SIGV4' in os.environ:
raise SkipTest
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
@tag('auth_aws4')
@attr(resource='object')
@attr(method='put')
@attr(operation='create w/invalid MD5')
@attr(assertion='fails 400')
@nose.with_setup(teardown=_clear_custom_headers)
def test_object_create_bad_md5_invalid_garbage_aws4():
check_aws4_support()
key = _setup_bad_object({'Content-MD5':'AWS4 HAHAHA'})
e = assert_raises(boto.exception.S3ResponseError, key.set_contents_from_string, 'bar')
eq(e.status, 400)
Improve proxy error support: "Bad Request" case If you are run the S3 testsuite against a reverse proxy (eg haproxy) rather than RGW directly, some of the tests will return errors from the proxy, rather than haproxy itself. Some proxies differ from RGW in the exact case of 'Bad Request', so do the match in a case-insensitive manner. Haproxy for example returns 'Bad request'. This removes the need for some of the prior fails_on_dho test tags, as the failure was due to haproxy. Signed-off-by: Robin H. Johnson <robin.johnson@dreamhost.com>
2015-10-07 19:31:31 +00:00
eq(e.reason.lower(), 'bad request') # some proxies vary the case
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
eq(e.error_code, 'InvalidDigest')
@tag('auth_aws4')
@attr(resource='object')
@attr(method='put')
@attr(operation='create w/content length too short')
@attr(assertion='fails 400')
@nose.with_setup(teardown=_clear_custom_headers)
def test_object_create_bad_contentlength_mismatch_below_aws4():
check_aws4_support()
content = 'bar'
length = len(content) - 1
key = _setup_bad_object({'Content-Length': length})
e = assert_raises(boto.exception.S3ResponseError, key.set_contents_from_string, content)
eq(e.status, 400)
Improve proxy error support: "Bad Request" case If you are run the S3 testsuite against a reverse proxy (eg haproxy) rather than RGW directly, some of the tests will return errors from the proxy, rather than haproxy itself. Some proxies differ from RGW in the exact case of 'Bad Request', so do the match in a case-insensitive manner. Haproxy for example returns 'Bad request'. This removes the need for some of the prior fails_on_dho test tags, as the failure was due to haproxy. Signed-off-by: Robin H. Johnson <robin.johnson@dreamhost.com>
2015-10-07 19:31:31 +00:00
eq(e.reason.lower(), 'bad request') # some proxies vary the case
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
eq(e.error_code, 'XAmzContentSHA256Mismatch')
@tag('auth_aws4')
@attr(resource='object')
@attr(method='put')
@attr(operation='create w/incorrect authorization')
@attr(assertion='fails 403')
@nose.with_setup(teardown=_clear_custom_headers)
def test_object_create_bad_authorization_incorrect_aws4():
check_aws4_support()
key = _setup_bad_object({'Authorization': 'AWS4-HMAC-SHA256 Credential=AKIAIGR7ZNNBHC5BKSUB/20150930/us-east-1/s3/aws4_request,SignedHeaders=host;user-agent,Signature=FWeDfwojDSdS2Ztmpfeubhd9isU='})
e = assert_raises(boto.exception.S3ResponseError, key.set_contents_from_string, 'bar')
eq(e.status, 403)
eq(e.reason, 'Forbidden')
assert e.error_code in ('AccessDenied', 'SignatureDoesNotMatch', 'InvalidAccessKeyId')
@tag('auth_aws4')
@nose.with_setup(teardown=_clear_custom_headers)
@attr(resource='object')
@attr(method='put')
@attr(operation='create w/invalid authorization')
@attr(assertion='fails 400')
def test_object_create_bad_authorization_invalid_aws4():
check_aws4_support()
key = _setup_bad_object({'Authorization': 'AWS4-HMAC-SHA256 Credential=HAHAHA'})
e = assert_raises(boto.exception.S3ResponseError, key.set_contents_from_string, 'bar')
eq(e.status, 400)
Improve proxy error support: "Bad Request" case If you are run the S3 testsuite against a reverse proxy (eg haproxy) rather than RGW directly, some of the tests will return errors from the proxy, rather than haproxy itself. Some proxies differ from RGW in the exact case of 'Bad Request', so do the match in a case-insensitive manner. Haproxy for example returns 'Bad request'. This removes the need for some of the prior fails_on_dho test tags, as the failure was due to haproxy. Signed-off-by: Robin H. Johnson <robin.johnson@dreamhost.com>
2015-10-07 19:31:31 +00:00
eq(e.reason.lower(), 'bad request') # some proxies vary the case
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
assert e.error_code in ('AuthorizationHeaderMalformed', 'InvalidArgument')
@tag('auth_aws4')
@attr(resource='object')
@attr(method='put')
@attr(operation='create w/empty user agent')
@attr(assertion='fails 403')
@nose.with_setup(teardown=_clear_custom_headers)
def test_object_create_bad_ua_empty_aws4():
check_aws4_support()
key = _setup_bad_object({'User-Agent': ''})
e = assert_raises(boto.exception.S3ResponseError, key.set_contents_from_string, 'bar')
eq(e.status, 403)
eq(e.reason, 'Forbidden')
eq(e.error_code, 'SignatureDoesNotMatch')
@tag('auth_aws4')
@attr(resource='object')
@attr(method='put')
@attr(operation='create w/non-graphic user agent')
@attr(assertion='fails 403')
Annotate tests which create non-RFC2616 headers Signed-off-by: Andrew Gaul <andrew@gaul.org>
2016-06-06 23:19:27 +00:00
@attr('fails_strict_rfc2616')
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
@nose.with_setup(teardown=_clear_custom_headers)
def test_object_create_bad_ua_unreadable_aws4():
check_aws4_support()
key = _setup_bad_object({'User-Agent': '\x07'})
e = assert_raises(boto.exception.S3ResponseError, key.set_contents_from_string, 'bar')
eq(e.status, 403)
eq(e.reason, 'Forbidden')
eq(e.error_code, 'SignatureDoesNotMatch')
@tag('auth_aws4')
@attr(resource='object')
@attr(method='put')
@attr(operation='create w/no user agent')
@attr(assertion='fails 403')
@nose.with_setup(teardown=_clear_custom_headers)
def test_object_create_bad_ua_none_aws4():
check_aws4_support()
key = _setup_bad_object(remove=('User-Agent',))
e = assert_raises(boto.exception.S3ResponseError, key.set_contents_from_string, 'bar')
eq(e.status, 403)
eq(e.reason, 'Forbidden')
eq(e.error_code, 'SignatureDoesNotMatch')
@tag('auth_aws4')
@attr(resource='object')
@attr(method='put')
@attr(operation='create w/invalid date')
@attr(assertion='succeeds')
@nose.with_setup(teardown=_clear_custom_headers)
def test_object_create_bad_date_invalid_aws4():
check_aws4_support()
key = _setup_bad_object({'Date': 'Bad Date'})
key.set_contents_from_string('bar')
@tag('auth_aws4')
@attr(resource='object')
@attr(method='put')
@attr(operation='create w/invalid x-amz-date')
@attr(assertion='fails 403')
@nose.with_setup(teardown=_clear_custom_headers)
def test_object_create_bad_amz_date_invalid_aws4():
check_aws4_support()
key = _setup_bad_object({'X-Amz-Date': 'Bad Date'})
e = assert_raises(boto.exception.S3ResponseError, key.set_contents_from_string, 'bar')
eq(e.status, 403)
eq(e.reason, 'Forbidden')
assert e.error_code in ('AccessDenied', 'SignatureDoesNotMatch')
@tag('auth_aws4')
@attr(resource='object')
@attr(method='put')
@attr(operation='create w/empty date')
@attr(assertion='succeeds')
@nose.with_setup(teardown=_clear_custom_headers)
def test_object_create_bad_date_empty_aws4():
check_aws4_support()
key = _setup_bad_object({'Date': ''})
key.set_contents_from_string('bar')
@tag('auth_aws4')
@attr(resource='object')
@attr(method='put')
@attr(operation='create w/empty x-amz-date')
@attr(assertion='fails 403')
@nose.with_setup(teardown=_clear_custom_headers)
def test_object_create_bad_amz_date_empty_aws4():
check_aws4_support()
key = _setup_bad_object({'X-Amz-Date': ''})
e = assert_raises(boto.exception.S3ResponseError, key.set_contents_from_string, 'bar')
eq(e.status, 403)
eq(e.reason, 'Forbidden')
assert e.error_code in ('AccessDenied', 'SignatureDoesNotMatch')
@tag('auth_aws4')
@attr(resource='object')
@attr(method='put')
@attr(operation='create w/non-graphic date')
@attr(assertion='fails 403')
Annotate tests which create non-RFC2616 headers Signed-off-by: Andrew Gaul <andrew@gaul.org>
2016-06-06 23:19:27 +00:00
@attr('fails_strict_rfc2616')
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
@nose.with_setup(teardown=_clear_custom_headers)
def test_object_create_bad_date_unreadable_aws4():
check_aws4_support()
key = _setup_bad_object({'Date': '\x07'})
e = assert_raises(boto.exception.S3ResponseError, key.set_contents_from_string, 'bar')
eq(e.status, 403)
eq(e.reason, 'Forbidden')
eq(e.error_code, 'SignatureDoesNotMatch')
@tag('auth_aws4')
@attr(resource='object')
@attr(method='put')
@attr(operation='create w/non-graphic x-amz-date')
@attr(assertion='fails 403')
Annotate tests which create non-RFC2616 headers Signed-off-by: Andrew Gaul <andrew@gaul.org>
2016-06-06 23:19:27 +00:00
@attr('fails_strict_rfc2616')
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
@nose.with_setup(teardown=_clear_custom_headers)
def test_object_create_bad_amz_date_unreadable_aws4():
check_aws4_support()
key = _setup_bad_object({'X-Amz-Date': '\x07'})
e = assert_raises(boto.exception.S3ResponseError, key.set_contents_from_string, 'bar')
eq(e.status, 403)
eq(e.reason, 'Forbidden')
assert e.error_code in ('AccessDenied', 'SignatureDoesNotMatch')
@tag('auth_aws4')
@attr(resource='object')
@attr(method='put')
@attr(operation='create w/no date')
@attr(assertion='succeeds')
@nose.with_setup(teardown=_clear_custom_headers)
def test_object_create_bad_date_none_aws4():
check_aws4_support()
key = _setup_bad_object(remove=('Date',))
key.set_contents_from_string('bar')
@tag('auth_aws4')
@attr(resource='object')
@attr(method='put')
@attr(operation='create w/no x-amz-date')
@attr(assertion='fails 403')
@nose.with_setup(teardown=_clear_custom_headers)
def test_object_create_bad_amz_date_none_aws4():
check_aws4_support()
key = _setup_bad_object(remove=('X-Amz-Date',))
e = assert_raises(boto.exception.S3ResponseError, key.set_contents_from_string, 'bar')
eq(e.status, 403)
eq(e.reason, 'Forbidden')
assert e.error_code in ('AccessDenied', 'SignatureDoesNotMatch')
@tag('auth_aws4')
@attr(resource='object')
@attr(method='put')
@attr(operation='create w/date in past')
@attr(assertion='succeeds')
@nose.with_setup(teardown=_clear_custom_headers)
def test_object_create_bad_date_before_today_aws4():
check_aws4_support()
key = _setup_bad_object({'Date': 'Tue, 07 Jul 2010 21:53:04 GMT'})
key.set_contents_from_string('bar')
@tag('auth_aws4')
@attr(resource='object')
@attr(method='put')
@attr(operation='create w/x-amz-date in past')
@attr(assertion='fails 403')
@nose.with_setup(teardown=_clear_custom_headers)
def test_object_create_bad_amz_date_before_today_aws4():
check_aws4_support()
key = _setup_bad_object({'X-Amz-Date': '20100707T215304Z'})
e = assert_raises(boto.exception.S3ResponseError, key.set_contents_from_string, 'bar')
eq(e.status, 403)
eq(e.reason, 'Forbidden')
assert e.error_code in ('RequestTimeTooSkewed', 'SignatureDoesNotMatch')
@tag('auth_aws4')
@attr(resource='object')
@attr(method='put')
@attr(operation='create w/date in future')
@attr(assertion='succeeds')
@nose.with_setup(teardown=_clear_custom_headers)
def test_object_create_bad_date_after_today_aws4():
check_aws4_support()
key = _setup_bad_object({'Date': 'Tue, 07 Jul 2030 21:53:04 GMT'})
key.set_contents_from_string('bar')
@tag('auth_aws4')
@attr(resource='object')
@attr(method='put')
@attr(operation='create w/x-amz-date in future')
@attr(assertion='fails 403')
@nose.with_setup(teardown=_clear_custom_headers)
def test_object_create_bad_amz_date_after_today_aws4():
check_aws4_support()
key = _setup_bad_object({'X-Amz-Date': '20300707T215304Z'})
e = assert_raises(boto.exception.S3ResponseError, key.set_contents_from_string, 'bar')
eq(e.status, 403)
eq(e.reason, 'Forbidden')
assert e.error_code in ('RequestTimeTooSkewed', 'SignatureDoesNotMatch')
@tag('auth_aws4')
@attr(resource='object')
@attr(method='put')
@attr(operation='create w/date before epoch')
@attr(assertion='succeeds')
@nose.with_setup(teardown=_clear_custom_headers)
def test_object_create_bad_date_before_epoch_aws4():
check_aws4_support()
key = _setup_bad_object({'Date': 'Tue, 07 Jul 1950 21:53:04 GMT'})
key.set_contents_from_string('bar')
@tag('auth_aws4')
@attr(resource='object')
@attr(method='put')
@attr(operation='create w/x-amz-date before epoch')
@attr(assertion='fails 403')
@nose.with_setup(teardown=_clear_custom_headers)
def test_object_create_bad_amz_date_before_epoch_aws4():
check_aws4_support()
key = _setup_bad_object({'X-Amz-Date': '19500707T215304Z'})
e = assert_raises(boto.exception.S3ResponseError, key.set_contents_from_string, 'bar')
eq(e.status, 403)
eq(e.reason, 'Forbidden')
assert e.error_code in ('AccessDenied', 'SignatureDoesNotMatch')
@tag('auth_aws4')
@attr(resource='object')
@attr(method='put')
@attr(operation='create w/date after 9999')
@attr(assertion='fails 403')
@nose.with_setup(teardown=_clear_custom_headers)
def test_object_create_bad_date_after_end_aws4():
check_aws4_support()
key = _setup_bad_object({'Date': 'Tue, 07 Jul 9999 21:53:04 GMT'})
key.set_contents_from_string('bar')
@tag('auth_aws4')
@attr(resource='object')
@attr(method='put')
@attr(operation='create w/x-amz-date after 9999')
@attr(assertion='fails 403')
@nose.with_setup(teardown=_clear_custom_headers)
def test_object_create_bad_amz_date_after_end_aws4():
check_aws4_support()
key = _setup_bad_object({'X-Amz-Date': '99990707T215304Z'})
e = assert_raises(boto.exception.S3ResponseError, key.set_contents_from_string, 'bar')
eq(e.status, 403)
eq(e.reason, 'Forbidden')
assert e.error_code in ('RequestTimeTooSkewed', 'SignatureDoesNotMatch')
@tag('auth_aws4')
@attr(resource='object')
@attr(method='put')
@attr(operation='create with missing signed custom header')
@attr(assertion='fails 403')
@nose.with_setup(teardown=_clear_custom_headers)
def test_object_create_missing_signed_custom_header_aws4():
check_aws4_support()
rgw: aws4: fix test_object_create_missing_signed_custom_header_aws4 Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2016-06-02 20:33:40 +00:00
method='PUT'
expires_in='100000'
bucket = get_new_bucket()
key = bucket.new_key('foo')
body='zoo'
# compute the signature with 'x-amz-foo=bar' in the headers...
request_headers = {'x-amz-foo':'bar'}
url = key.generate_url(expires_in, method=method, headers=request_headers)
o = urlparse(url)
path = o.path + '?' + o.query
# avoid sending 'x-amz-foo=bar' in the headers
request_headers.pop('x-amz-foo')
res =_make_raw_request(host=s3.main.host, port=s3.main.port, method=method, path=path,
body=body, request_headers=request_headers, secure=s3.main.is_secure)
eq(res.status, 403)
eq(res.reason, 'Forbidden')
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
@tag('auth_aws4')
@attr(resource='object')
@attr(method='put')
@attr(opearation='create with missing signed header')
@attr(assertion='fails 403')
@nose.with_setup(teardown=_clear_custom_headers)
def test_object_create_missing_signed_header_aws4():
check_aws4_support()
rgw: aws4: fix test_object_create_missing_signed_header_aws4 Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2016-06-02 20:57:48 +00:00
method='PUT'
expires_in='100000'
bucket = get_new_bucket()
key = bucket.new_key('foo')
body='zoo'
# compute the signature...
request_headers = {}
url = key.generate_url(expires_in, method=method, headers=request_headers)
o = urlparse(url)
path = o.path + '?' + o.query
# 'X-Amz-Expires' is missing
target = r'&X-Amz-Expires=' + expires_in
path = re.sub(target, '', path)
res =_make_raw_request(host=s3.main.host, port=s3.main.port, method=method, path=path,
body=body, request_headers=request_headers, secure=s3.main.is_secure)
eq(res.status, 403)
eq(res.reason, 'Forbidden')
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
@tag('auth_aws4')
@attr(resource='bucket')
@attr(method='put')
@attr(operation='create w/invalid authorization')
@attr(assertion='fails 400')
@nose.with_setup(teardown=_clear_custom_headers)
def test_bucket_create_bad_authorization_invalid_aws4():
check_aws4_support()
_add_custom_headers({'Authorization': 'AWS4 HAHAHA'})
e = assert_raises(boto.exception.S3ResponseError, get_new_bucket)
eq(e.status, 400)
Improve proxy error support: "Bad Request" case If you are run the S3 testsuite against a reverse proxy (eg haproxy) rather than RGW directly, some of the tests will return errors from the proxy, rather than haproxy itself. Some proxies differ from RGW in the exact case of 'Bad Request', so do the match in a case-insensitive manner. Haproxy for example returns 'Bad request'. This removes the need for some of the prior fails_on_dho test tags, as the failure was due to haproxy. Signed-off-by: Robin H. Johnson <robin.johnson@dreamhost.com>
2015-10-07 19:31:31 +00:00
eq(e.reason.lower(), 'bad request') # some proxies vary the case
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
eq(e.error_code, 'InvalidArgument')
@tag('auth_aws4')
@attr(resource='bucket')
@attr(method='put')
@attr(operation='create w/empty user agent')
@attr(assertion='fails 403')
@nose.with_setup(teardown=_clear_custom_headers)
def test_bucket_create_bad_ua_empty_aws4():
check_aws4_support()
_add_custom_headers({'User-Agent': ''})
e = assert_raises(boto.exception.S3ResponseError, get_new_bucket)
eq(e.status, 403)
eq(e.reason, 'Forbidden')
eq(e.error_code, 'SignatureDoesNotMatch')
@tag('auth_aws4')
@attr(resource='bucket')
@attr(method='put')
@attr(operation='create w/non-graphic user agent')
@attr(assertion='fails 403')
Annotate tests which create non-RFC2616 headers Signed-off-by: Andrew Gaul <andrew@gaul.org>
2016-06-06 23:19:27 +00:00
@attr('fails_strict_rfc2616')
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
@nose.with_setup(teardown=_clear_custom_headers)
def test_bucket_create_bad_ua_unreadable_aws4():
check_aws4_support()
_add_custom_headers({'User-Agent': '\x07'})
e = assert_raises(boto.exception.S3ResponseError, get_new_bucket)
eq(e.status, 403)
eq(e.reason, 'Forbidden')
eq(e.error_code, 'SignatureDoesNotMatch')
@tag('auth_aws4')
@attr(resource='bucket')
@attr(method='put')
@attr(operation='create w/no user agent')
@attr(assertion='fails 403')
@nose.with_setup(teardown=_clear_custom_headers)
def test_bucket_create_bad_ua_none_aws4():
check_aws4_support()
_add_custom_headers(remove=('User-Agent',))
e = assert_raises(boto.exception.S3ResponseError, get_new_bucket)
eq(e.status, 403)
eq(e.reason, 'Forbidden')
eq(e.error_code, 'SignatureDoesNotMatch')
@tag('auth_aws4')
@attr(resource='bucket')
@attr(method='put')
@attr(operation='create w/invalid date')
@attr(assertion='succeeds')
@nose.with_setup(teardown=_clear_custom_headers)
def test_bucket_create_bad_date_invalid_aws4():
check_aws4_support()
_add_custom_headers({'Date': 'Bad Date'})
get_new_bucket()
@tag('auth_aws4')
@attr(resource='bucket')
@attr(method='put')
@attr(operation='create w/invalid x-amz-date')
@attr(assertion='fails 403')
@nose.with_setup(teardown=_clear_custom_headers)
def test_bucket_create_bad_amz_date_invalid_aws4():
check_aws4_support()
_add_custom_headers({'X-Amz-Date': 'Bad Date'})
e = assert_raises(boto.exception.S3ResponseError, get_new_bucket)
eq(e.status, 403)
eq(e.reason, 'Forbidden')
assert e.error_code in ('AccessDenied', 'SignatureDoesNotMatch')
@tag('auth_aws4')
@attr(resource='bucket')
@attr(method='put')
@attr(operation='create w/empty date')
@attr(assertion='succeeds')
@nose.with_setup(teardown=_clear_custom_headers)
def test_bucket_create_bad_date_empty_aws4():
check_aws4_support()
_add_custom_headers({'Date': ''})
get_new_bucket()
@tag('auth_aws4')
@attr(resource='bucket')
@attr(method='put')
@attr(operation='create w/empty x-amz-date')
@attr(assertion='fails 403')
@nose.with_setup(teardown=_clear_custom_headers)
def test_bucket_create_bad_amz_date_empty_aws4():
check_aws4_support()
_add_custom_headers({'X-Amz-Date': ''})
e = assert_raises(boto.exception.S3ResponseError, get_new_bucket)
eq(e.status, 403)
eq(e.reason, 'Forbidden')
assert e.error_code in ('AccessDenied', 'SignatureDoesNotMatch')
@tag('auth_aws4')
@attr(resource='bucket')
@attr(method='put')
@attr(operation='create w/non-graphic date')
@attr(assertion='fails 403')
Annotate tests which create non-RFC2616 headers Signed-off-by: Andrew Gaul <andrew@gaul.org>
2016-06-06 23:19:27 +00:00
@attr('fails_strict_rfc2616')
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
@nose.with_setup(teardown=_clear_custom_headers)
def test_bucket_create_bad_date_unreadable_aws4():
check_aws4_support()
_add_custom_headers({'Date': '\x07'})
e = assert_raises(boto.exception.S3ResponseError, get_new_bucket)
eq(e.status, 403)
eq(e.reason, 'Forbidden')
eq(e.error_code, 'SignatureDoesNotMatch')
@tag('auth_aws4')
@attr(resource='bucket')
@attr(method='put')
@attr(operation='create w/non-graphic x-amz-date')
@attr(assertion='fails 403')
Annotate tests which create non-RFC2616 headers Signed-off-by: Andrew Gaul <andrew@gaul.org>
2016-06-06 23:19:27 +00:00
@attr('fails_strict_rfc2616')
rgw: add AWS4 auth testing support Signed-off-by: Javier M. Mellid <jmunhoz@igalia.com>
2015-10-23 09:52:05 +00:00
@nose.with_setup(teardown=_clear_custom_headers)
def test_bucket_create_bad_amz_date_unreadable_aws4():
check_aws4_support()
_add_custom_headers({'X-Amz-Date': '\x07'})
e = assert_raises(boto.exception.S3ResponseError, get_new_bucket)
eq(e.status, 403)
eq(e.reason, 'Forbidden')
assert e.error_code in ('AccessDenied', 'SignatureDoesNotMatch')
@tag('auth_aws4')
@attr(resource='bucket')
@attr(method='put')
@attr(operation='create w/no date')
@attr(assertion='succeeds')
@nose.with_setup(teardown=_clear_custom_headers)
def test_bucket_create_bad_date_none_aws4():
check_aws4_support()
_add_custom_headers(remove=('Date',))
get_new_bucket()
@tag('auth_aws4')
@attr(resource='bucket')
@attr(method='put')
@attr(operation='create w/no x-amz-date')
@attr(assertion='fails 403')
@nose.with_setup(teardown=_clear_custom_headers)
def test_bucket_create_bad_amz_date_none_aws4():
check_aws4_support()
_add_custom_headers(remove=('X-Amz-Date',))
e = assert_raises(boto.exception.S3ResponseError, get_new_bucket)
eq(e.status, 403)
eq(e.reason, 'Forbidden')
assert e.error_code in ('AccessDenied', 'SignatureDoesNotMatch')
@tag('auth_aws4')
@attr(resource='bucket')
@attr(method='put')
@attr(operation='create w/date in past')
@attr(assertion='succeeds')
@nose.with_setup(teardown=_clear_custom_headers)
def test_bucket_create_bad_date_before_today_aws4():
check_aws4_support()
_add_custom_headers({'Date': 'Tue, 07 Jul 2010 21:53:04 GMT'})
get_new_bucket()
@tag('auth_aws4')
@attr(resource='bucket')
@attr(method='put')
@attr(operation='create w/x-amz-date in past')
@attr(assertion='fails 403')
@nose.with_setup(teardown=_clear_custom_headers)
def test_bucket_create_bad_amz_date_before_today_aws4():
check_aws4_support()
_add_custom_headers({'X-Amz-Date': '20100707T215304Z'})
e = assert_raises(boto.exception.S3ResponseError, get_new_bucket)
eq(e.status, 403)
eq(e.reason, 'Forbidden')
assert e.error_code in ('RequestTimeTooSkewed', 'SignatureDoesNotMatch')
@tag('auth_aws4')
@attr(resource='bucket')
@attr(method='put')
@attr(operation='create w/date in future')
@attr(assertion='succeeds')
@nose.with_setup(teardown=_clear_custom_headers)
def test_bucket_create_bad_date_after_today_aws4():
check_aws4_support()
_add_custom_headers({'Date': 'Tue, 07 Jul 2030 21:53:04 GMT'})
get_new_bucket()
@tag('auth_aws4')
@attr(resource='bucket')
@attr(method='put')
@attr(operation='create w/x-amz-date in future')
@attr(assertion='fails 403')
@nose.with_setup(teardown=_clear_custom_headers)
def test_bucket_create_bad_amz_date_after_today_aws4():
check_aws4_support()
_add_custom_headers({'X-Amz-Date': '20300707T215304Z'})
e = assert_raises(boto.exception.S3ResponseError, get_new_bucket)
eq(e.status, 403)
eq(e.reason, 'Forbidden')
assert e.error_code in ('RequestTimeTooSkewed', 'SignatureDoesNotMatch')
@tag('auth_aws4')
@attr(resource='bucket')
@attr(method='put')
@attr(operation='create w/date before epoch')
@attr(assertion='succeeds')
@nose.with_setup(teardown=_clear_custom_headers)
def test_bucket_create_bad_date_before_epoch_aws4():
check_aws4_support()
_add_custom_headers({'Date': 'Tue, 07 Jul 1950 21:53:04 GMT'})
get_new_bucket()
@tag('auth_aws4')
@attr(resource='bucket')
@attr(method='put')
@attr(operation='create w/x-amz-date before epoch')
@attr(assertion='fails 403')
@nose.with_setup(teardown=_clear_custom_headers)
def test_bucket_create_bad_amz_date_before_epoch_aws4():
check_aws4_support()
_add_custom_headers({'X-Amz-Date': '19500707T215304Z'})
e = assert_raises(boto.exception.S3ResponseError, get_new_bucket)
eq(e.status, 403)
eq(e.reason, 'Forbidden')
assert e.error_code in ('AccessDenied', 'SignatureDoesNotMatch')
Reference in a new issue Copy permalink