Changeset 1751

Timestamp:

08/20/08 11:40:10 (3 months ago)

Author:

dbryson

Message:

Added testing of bee controller with custom signed_post

Files:

• hive/trunk/data_webapp/test/fixtures/history_urls.yml (modified) (1 diff)
• hive/trunk/data_webapp/test/functional/bee_controller_test.rb (modified) (3 diffs)
• hive/trunk/data_webapp/test/test_helper.rb (modified) (1 diff)

hive/trunk/data_webapp/test/fixtures/history_urls.yml

@@ -1 +1 @@
-# Read about fixtures at http://ar.rubyonrails.org/classes/Fixtures.html
-
+
+
+
-  id: 2
-1234.00
-http://www.google.com
+<%= string_to_microseconds(Time.now.tomorrow.to_s) %>
+"http://www.future.com"
-  client_id: 2
-
+
+
+
+
+
+
+
+
+

hive/trunk/data_webapp/test/functional/bee_controller_test.rb

@@ -6 +6 @@
-
-class BeeControllerTest < Test::Unit::TestCase
-users, :heartbeat
+history_url
-  
-  def setup
@@ -12 +12 @@
-    @request    = ActionController::TestRequest.new
-    @response   = ActionController::TestResponse.new
-    
-    # Raw data as if pulled from the BeeJob and cleaned
-    #@client_data = {"status"=>"running", "os"=>{"name"=>"Default Windows XP SP2", "shortname"=>"Microsoft Windows", "version"=>"XP Professional", "os_applications"=>[{"shortname"=>"Internet Explorer", "manufacturer"=>"Microsoft", "version"=>6}]}, "start"=>"2008-03-25T11:25:00", "host"=>{"org"=>"MITRE", "ip"=>"172.16.164.108", "hostname"=>"honeyclient8.mitre.org"}, "cid"=>"2df4455a3b0aa690ef4f7da84b"}
-    #@finger_data = {"os_processes"=>[{"name"=>"C:\\WINDOWS\\system32\\wbem\\wmiprvse.exe", "pid"=>1256, "process_files"=>[{"name"=>"C:\\WINDOWS\\PCHEALTH\\HELPCTR\\DataColl", "event"=>"Write", "file_content"=>{"size"=>-1, "mime_type"=>"UNKNOWN", "sha1"=>"C:\\WINDOWS\\PCHEALTH\\HELPCTR\\DataColl2008-03-25 11:58:05.13", "md5"=>"C:\\WINDOWS\\PCHEALTH\\HELPCTR\\DataColl2008-03-25 11:58:05.13"}, "time_at"=>"2008-03-25 11:58:05.13"}, {"name"=>"C:\\Documents and Settings", "event"=>"Write", "file_content"=>{"size"=>-1, "mime_type"=>"UNKNOWN", "sha1"=>"C:\\Documents and Settings2008-03-25 11:58:05.13", "md5"=>"C:\\Documents and Settings2008-03-25 11:58:05.13"}, "time_at"=>"2008-03-25 11:58:05.13"}, {"name"=>"C:\\Documents and Settings\\Default User", "event"=>"Write", "file_content"=>{"size"=>-1, "mime_type"=>"UNKNOWN", "sha1"=>"C:\\Documents and Settings\\Default User2008-03-25 11:58:05.13", "md5"=>"C:\\Documents and Settings\\Default User2008-03-25 11:58:05.13"}, "time_at"=>"2008-03-25 11:58:05.13"}, {"name"=>"C:\\Documents and Settings\\ALL USERS", "event"=>"Write", "file_content"=>{"size"=>-1, "mime_type"=>"UNKNOWN", "sha1"=>"C:\\Documents and Settings\\ALL USERS2008-03-25 11:58:05.13", "md5"=>"C:\\Documents and Settings\\ALL USERS2008-03-25 11:58:05.13"}, "time_at"=>"2008-03-25 11:58:05.13"}, {"name"=>"C:\\Documents and Settings\\Default User\\Start Menu\\Programs", "event"=>"Write", "file_content"=>{"size"=>-1, "mime_type"=>"UNKNOWN", "sha1"=>"C:\\Documents and Settings\\Default User\\Start Menu\\Programs2008-03-25 11:58:05.13", "md5"=>"C:\\Documents and Settings\\Default User\\Start Menu\\Programs2008-03-25 11:58:05.13"}, "time_at"=>"2008-03-25 11:58:05.13"}, {"name"=>"C:\\WINDOWS\\system32\\config\\systemprofile", "event"=>"Write", "file_content"=>{"size"=>-1, "mime_type"=>"UNKNOWN", "sha1"=>"C:\\WINDOWS\\system32\\config\\systemprofile2008-03-25 11:58:05.13", "md5"=>"C:\\WINDOWS\\system32\\config\\systemprofile2008-03-25 11:58:05.13"}, "time_at"=>"2008-03-25 11:58:05.13"}], "regkeys"=>[]}], "cid"=>"2df4455a3b0aa690ef4f7da84b"}
-    #@history_data = {"urls"=>[{"status"=>"visited", "url"=>"http://www.softcashier.com/members/link.php?wmid=1020&l=9&it=2&s=2", "time_at"=>1206468143.41987}], "cid"=>"2df4455a3b0aa690ef4f7da84b"}
-  end
-
-  def test_jobs_from_bee
-
-
-
-
+
-    
-
-
+
+
+
-    assert_response :success
-
@@ -34 +27 @@
-  end
-  
+  def test_latest_no_param
+    WorkerBeeAuthorization.configuration = {:activate => true, :secret_key => "1", :access_key => "1"}
+    signed_get(:latest,"1","1")
+    assert_response :success
+   
+    decoded = ActiveSupport::JSON.decode(@response.body)
+    assert_equal 1, decoded.size
+  end
+  
+  def test_latest_with_param
+    WorkerBeeAuthorization.configuration = {:activate => true, :secret_key => "1", :access_key => "1"}
+    signed_get(:latest,"1","1",{"id" => "12191111.01"})
+    assert_response :success
+    
+    decoded = ActiveSupport::JSON.decode(@response.body)
+    puts "DECODED: #{decoded.inspect}"
+    assert_equal 1, decoded.size
+  end
+  
+  def test_no_latest_urls
+    WorkerBeeAuthorization.configuration = {:activate => true, :secret_key => "1", :access_key => "1"}
+    future = string_to_microseconds(Time.now.advance(:days => 3).to_s)
+    signed_get(:latest,"1","1",{"id" => future.to_s})
+    assert_response :success
+    
+    decoded = ActiveSupport::JSON.decode(@response.body)
+    assert_equal 0, decoded.size
+  end
+  
+  def test_not_activated
+    WorkerBeeAuthorization.configuration = {:activate => false, :secret_key => "1", :access_key => "1"}
+    signed_post(:work,"hello","1","1",parameters=nil)
+    assert_response(401)
+  end
+  
+  def test_authorized_post
+    WorkerBeeAuthorization.configuration = {:activate => true, :secret_key => "1", :access_key => "1"}
+    signed_post(:work,"hello","1","1",parameters=nil)
+    assert_response :success
+  end
+  
+  def test_not_authorized_post
+    WorkerBeeAuthorization.configuration = {:activate => true, :secret_key => "1000", :access_key => "1"}
+    signed_post(:work,"hello","1","1",parameters=nil)
+    assert_response(401)
+  end
+  
+  def test_authorized_get
+    WorkerBeeAuthorization.configuration = {:activate => true, :secret_key => "1", :access_key => "1"}
+    signed_get(:latest,"1","1")
+    assert_response :success
+  end
+
+  def test_not_authorized_get
+    WorkerBeeAuthorization.configuration = {:activate => true, :secret_key => "1000", :access_key => "1"}
+    signed_get(:latest,"1","1")
+    assert_response(401)
+  end
+ 
-end

hive/trunk/data_webapp/test/test_helper.rb

@@ -28 +28 @@
-  # Add more helper methods to be used by all tests here...
-end
+
+require 'openssl'
+require 'base64'
+
+
+# Helper to simulate signed JSON requests
+ActionController::TestProcess.class_eval do
+  
+  def sign_request(sk,method,path,date,content_type)
+    data = [method,path,date,content_type].join("\n")
+    #puts "Client signing: #{data}"
+    digest   = OpenSSL::Digest::Digest.new('sha1')
+    Base64.encode64(OpenSSL::HMAC.digest(digest, sk, data.to_s))
+  end
+  
+  def signed_post(action,body,ak,sk,parameters=nil)
+    date = Time.now.to_s
+    sign =  sign_request(sk,"POST","/bee/#{action.to_s}",date,"application/json")
+    @request.env['AUTHORIZATION'] = "HIVE:#{ak}:#{sign}"
+    @request.env['DATE'] = date
+    @request.env['CONTENT_TYPE'] = "application/json"
+    @request.env['ACCEPT'] = 'application/json'
+    @request.env['RAW_POST_DATA'] = body
+    returning send!(:post, action, parameters,nil,nil) do
+    end
+  end
+  
+  def signed_get(action,ak,sk,parameters=nil)
+    date = Time.now.to_s
+    path = "/bee/#{action.to_s}"
+    path << "/#{parameters["id"]}" if parameters
+    sign =  sign_request(sk,"GET",path,date,"application/json")
+    @request.env['AUTHORIZATION'] = "HIVE:#{ak}:#{sign}"
+    @request.env['DATE'] = date
+    @request.env['CONTENT_TYPE'] = "application/json"
+    @request.env['ACCEPT'] = 'application/json'
+    returning send!(:get,action,parameters,nil,nil) do
+    end
+  end
+  
+end