oauth2_proxy/logging_handler_test.go

package main

import (
	"bytes"
	"fmt"
	"net/http"
	"net/http/httptest"
	"strings"
	"testing"
	"time"

	"github.com/pusher/oauth2_proxy/pkg/logger"
)

func TestLoggingHandler_ServeHTTP(t *testing.T) {
	ts := time.Now()

	tests := []struct {
		Format,
		ExpectedLogMessage,
		Path string
		ExcludePaths       []string
		SilencePingLogging bool
	}{
		{logger.DefaultRequestLoggingFormat, fmt.Sprintf("127.0.0.1 - - [%s] test-server GET - \"/foo/bar\" HTTP/1.1 \"\" 200 4 0.000\n", logger.FormatTimestamp(ts)), "/foo/bar", []string{}, false},
		{logger.DefaultRequestLoggingFormat, fmt.Sprintf("127.0.0.1 - - [%s] test-server GET - \"/foo/bar\" HTTP/1.1 \"\" 200 4 0.000\n", logger.FormatTimestamp(ts)), "/foo/bar", []string{}, true},
		{logger.DefaultRequestLoggingFormat, fmt.Sprintf("127.0.0.1 - - [%s] test-server GET - \"/foo/bar\" HTTP/1.1 \"\" 200 4 0.000\n", logger.FormatTimestamp(ts)), "/foo/bar", []string{"/ping"}, false},
		{logger.DefaultRequestLoggingFormat, "", "/foo/bar", []string{"/foo/bar"}, false},
		{logger.DefaultRequestLoggingFormat, "", "/ping", []string{}, true},
		{logger.DefaultRequestLoggingFormat, "", "/ping", []string{"/ping"}, false},
		{logger.DefaultRequestLoggingFormat, "", "/ping", []string{"/ping"}, true},
		{logger.DefaultRequestLoggingFormat, "", "/ping", []string{"/foo/bar", "/ping"}, false},
		{"{{.RequestMethod}}", "GET\n", "/foo/bar", []string{}, true},
		{"{{.RequestMethod}}", "GET\n", "/foo/bar", []string{"/ping"}, false},
		{"{{.RequestMethod}}", "GET\n", "/ping", []string{}, false},
		{"{{.RequestMethod}}", "", "/ping", []string{"/ping"}, true},
	}

	for _, test := range tests {
		buf := bytes.NewBuffer(nil)
		handler := func(w http.ResponseWriter, req *http.Request) {
			_, ok := w.(http.Hijacker)
			if !ok {
				t.Error("http.Hijacker is not available")
			}

			w.Write([]byte("test"))
		}

		logger.SetOutput(buf)
		logger.SetReqTemplate(test.Format)
		if test.SilencePingLogging {
			test.ExcludePaths = append(test.ExcludePaths, "/ping")
		}
		logger.SetExcludePaths(test.ExcludePaths)
		h := LoggingHandler(http.HandlerFunc(handler))

		r, _ := http.NewRequest("GET", test.Path, nil)
		r.RemoteAddr = "127.0.0.1"
		r.Host = "test-server"

		h.ServeHTTP(httptest.NewRecorder(), r)

		actual := buf.String()
		if !strings.Contains(actual, test.ExpectedLogMessage) {
			t.Errorf("Log message was\n%s\ninstead of matching \n%s", actual, test.ExpectedLogMessage)
		}
	}
}
Test request logging 2017-07-14 11:51:16 +00:00			`package main`

			`import (`
			`"bytes"`
			`"fmt"`
			`"net/http"`
			`"net/http/httptest"`
add login.gov provider (#55) * first stab at login.gov provider * fixing bugs now that I think I understand things better * fixing up dependencies * remove some debug stuff * Fixing all dependencies to point at my fork * forgot to hit save on the github rehome here * adding options for setting keys and so on, use JWT workflow instead of PKCE * forgot comma * was too aggressive with search/replace * need JWTKey to be byte array * removed custom refresh stuff * do our own custom jwt claim and store it in the normal session store * golang json types are strange * I have much to learn about golang * fix time and signing key * add http lib * fixed claims up since we don't need custom claims * add libs * forgot ioutil * forgot ioutil * moved back to pusher location * changed proxy github location back so that it builds externally, fixed up []byte stuff, removed client_secret if we are using login.gov * update dependencies * do JWTs properly * finished oidc flow, fixed up tests to work better * updated comments, added test that we set expiresOn properly * got confused with header and post vs get * clean up debug and test dir * add login.gov to README, remove references to my repo * forgot to remove un-needed code * can use sample_key* instead of generating your own * updated changelog * apparently golint wants comments like this * linter wants non-standard libs in a separate grouping * Update options.go Co-Authored-By: timothy-spencer <timothy.spencer@gsa.gov> * Update options.go Co-Authored-By: timothy-spencer <timothy.spencer@gsa.gov> * remove sample_key, improve comments related to client-secret, fix changelog related to PR feedback * github doesn't seem to do gofmt when merging. :-) * update CODEOWNERS * check the nonce * validate the JWT fully * forgot to add pubjwk-url to README * unexport the struct * fix up the err masking that travis found * update nonce comment by request of @JoelSpeed * argh. Thought I'd formatted the merge properly, but apparently not. * fixed test to not fail if the query time was greater than zero 2019-03-20 13:44:51 +00:00			`"strings"`
Test request logging 2017-07-14 11:51:16 +00:00			`"testing"`
			`"time"`
Auth and standard logging with file rolling 2019-02-10 16:37:45 +00:00
Move logger to pkg/logger 2019-05-24 16:08:48 +00:00			`"github.com/pusher/oauth2_proxy/pkg/logger"`
Test request logging 2017-07-14 11:51:16 +00:00			`)`

			`func TestLoggingHandler_ServeHTTP(t *testing.T) {`
			`ts := time.Now()`

			`tests := []struct {`
			`Format,`
Add silence ping logging flag Add ability to silence logging of requests to /ping endpoint, reducing log clutter Pros: - Don't have to change all handlers to set/not set silent ping logging - Don't have to duplicate `loggingHandler` (this could be preferable yet) Cons: - Leaking oauth2proxy logic into `package logger` - Defining default pingPath in two locations Alternative: - Add generic exclude path to `logger.go` and pass in `/ping`. 2019-05-31 08:11:28 +00:00			`ExpectedLogMessage,`
			`Path string`
logger.go ExcludedPaths changed to slice of paths. - `logger.go` convert slice of paths to map for quicker lookup - `options.go` combines csv paths and pingpath into slice 2019-06-21 21:39:46 +00:00			`ExcludePaths []string`
			`SilencePingLogging bool`
Test request logging 2017-07-14 11:51:16 +00:00			`}{`
logger.go ExcludedPaths changed to slice of paths. - `logger.go` convert slice of paths to map for quicker lookup - `options.go` combines csv paths and pingpath into slice 2019-06-21 21:39:46 +00:00			`{logger.DefaultRequestLoggingFormat, fmt.Sprintf("127.0.0.1 - - [%s] test-server GET - \"/foo/bar\" HTTP/1.1 \"\" 200 4 0.000\n", logger.FormatTimestamp(ts)), "/foo/bar", []string{}, false},`
			`{logger.DefaultRequestLoggingFormat, fmt.Sprintf("127.0.0.1 - - [%s] test-server GET - \"/foo/bar\" HTTP/1.1 \"\" 200 4 0.000\n", logger.FormatTimestamp(ts)), "/foo/bar", []string{}, true},`
			`{logger.DefaultRequestLoggingFormat, fmt.Sprintf("127.0.0.1 - - [%s] test-server GET - \"/foo/bar\" HTTP/1.1 \"\" 200 4 0.000\n", logger.FormatTimestamp(ts)), "/foo/bar", []string{"/ping"}, false},`
			`{logger.DefaultRequestLoggingFormat, "", "/foo/bar", []string{"/foo/bar"}, false},`
			`{logger.DefaultRequestLoggingFormat, "", "/ping", []string{}, true},`
			`{logger.DefaultRequestLoggingFormat, "", "/ping", []string{"/ping"}, false},`
			`{logger.DefaultRequestLoggingFormat, "", "/ping", []string{"/ping"}, true},`
			`{logger.DefaultRequestLoggingFormat, "", "/ping", []string{"/foo/bar", "/ping"}, false},`
			`{"{{.RequestMethod}}", "GET\n", "/foo/bar", []string{}, true},`
			`{"{{.RequestMethod}}", "GET\n", "/foo/bar", []string{"/ping"}, false},`
			`{"{{.RequestMethod}}", "GET\n", "/ping", []string{}, false},`
			`{"{{.RequestMethod}}", "", "/ping", []string{"/ping"}, true},`
Test request logging 2017-07-14 11:51:16 +00:00			`}`

			`for _, test := range tests {`
			`buf := bytes.NewBuffer(nil)`
			`handler := func(w http.ResponseWriter, req *http.Request) {`
Improve websocket support 2019-03-22 21:19:38 +00:00			`_, ok := w.(http.Hijacker)`
			`if !ok {`
			`t.Error("http.Hijacker is not available")`
			`}`

Test request logging 2017-07-14 11:51:16 +00:00			`w.Write([]byte("test"))`
			`}`

Auth and standard logging with file rolling 2019-02-10 16:37:45 +00:00			`logger.SetOutput(buf)`
			`logger.SetReqTemplate(test.Format)`
logger.go ExcludedPaths changed to slice of paths. - `logger.go` convert slice of paths to map for quicker lookup - `options.go` combines csv paths and pingpath into slice 2019-06-21 21:39:46 +00:00			`if test.SilencePingLogging {`
			`test.ExcludePaths = append(test.ExcludePaths, "/ping")`
			`}`
			`logger.SetExcludePaths(test.ExcludePaths)`
Auth and standard logging with file rolling 2019-02-10 16:37:45 +00:00			`h := LoggingHandler(http.HandlerFunc(handler))`
Test request logging 2017-07-14 11:51:16 +00:00
Add silence ping logging flag Add ability to silence logging of requests to /ping endpoint, reducing log clutter Pros: - Don't have to change all handlers to set/not set silent ping logging - Don't have to duplicate `loggingHandler` (this could be preferable yet) Cons: - Leaking oauth2proxy logic into `package logger` - Defining default pingPath in two locations Alternative: - Add generic exclude path to `logger.go` and pass in `/ping`. 2019-05-31 08:11:28 +00:00			`r, _ := http.NewRequest("GET", test.Path, nil)`
Test request logging 2017-07-14 11:51:16 +00:00			`r.RemoteAddr = "127.0.0.1"`
			`r.Host = "test-server"`

			`h.ServeHTTP(httptest.NewRecorder(), r)`

			`actual := buf.String()`
add login.gov provider (#55) * first stab at login.gov provider * fixing bugs now that I think I understand things better * fixing up dependencies * remove some debug stuff * Fixing all dependencies to point at my fork * forgot to hit save on the github rehome here * adding options for setting keys and so on, use JWT workflow instead of PKCE * forgot comma * was too aggressive with search/replace * need JWTKey to be byte array * removed custom refresh stuff * do our own custom jwt claim and store it in the normal session store * golang json types are strange * I have much to learn about golang * fix time and signing key * add http lib * fixed claims up since we don't need custom claims * add libs * forgot ioutil * forgot ioutil * moved back to pusher location * changed proxy github location back so that it builds externally, fixed up []byte stuff, removed client_secret if we are using login.gov * update dependencies * do JWTs properly * finished oidc flow, fixed up tests to work better * updated comments, added test that we set expiresOn properly * got confused with header and post vs get * clean up debug and test dir * add login.gov to README, remove references to my repo * forgot to remove un-needed code * can use sample_key* instead of generating your own * updated changelog * apparently golint wants comments like this * linter wants non-standard libs in a separate grouping * Update options.go Co-Authored-By: timothy-spencer <timothy.spencer@gsa.gov> * Update options.go Co-Authored-By: timothy-spencer <timothy.spencer@gsa.gov> * remove sample_key, improve comments related to client-secret, fix changelog related to PR feedback * github doesn't seem to do gofmt when merging. :-) * update CODEOWNERS * check the nonce * validate the JWT fully * forgot to add pubjwk-url to README * unexport the struct * fix up the err masking that travis found * update nonce comment by request of @JoelSpeed * argh. Thought I'd formatted the merge properly, but apparently not. * fixed test to not fail if the query time was greater than zero 2019-03-20 13:44:51 +00:00			`if !strings.Contains(actual, test.ExpectedLogMessage) {`
			`t.Errorf("Log message was\n%s\ninstead of matching \n%s", actual, test.ExpectedLogMessage)`
Test request logging 2017-07-14 11:51:16 +00:00			`}`
			`}`
			`}`