2014-03-11 01:16:58 +01:00
|
|
|
package registry
|
|
|
|
|
|
|
|
import (
|
|
|
|
"io/ioutil"
|
|
|
|
"os"
|
2015-04-02 00:39:37 +02:00
|
|
|
"path/filepath"
|
2014-03-11 01:16:58 +01:00
|
|
|
"testing"
|
2015-04-22 14:06:58 +02:00
|
|
|
|
|
|
|
"github.com/docker/docker/cliconfig"
|
2014-03-11 01:16:58 +01:00
|
|
|
)
|
|
|
|
|
|
|
|
func TestEncodeAuth(t *testing.T) {
|
2015-04-22 14:06:58 +02:00
|
|
|
newAuthConfig := &cliconfig.AuthConfig{Username: "ken", Password: "test", Email: "test@example.com"}
|
|
|
|
authStr := cliconfig.EncodeAuth(newAuthConfig)
|
|
|
|
decAuthConfig := &cliconfig.AuthConfig{}
|
2014-03-11 01:16:58 +01:00
|
|
|
var err error
|
2015-04-22 14:06:58 +02:00
|
|
|
decAuthConfig.Username, decAuthConfig.Password, err = cliconfig.DecodeAuth(authStr)
|
2014-03-11 01:16:58 +01:00
|
|
|
if err != nil {
|
|
|
|
t.Fatal(err)
|
|
|
|
}
|
|
|
|
if newAuthConfig.Username != decAuthConfig.Username {
|
|
|
|
t.Fatal("Encode Username doesn't match decoded Username")
|
|
|
|
}
|
|
|
|
if newAuthConfig.Password != decAuthConfig.Password {
|
|
|
|
t.Fatal("Encode Password doesn't match decoded Password")
|
|
|
|
}
|
|
|
|
if authStr != "a2VuOnRlc3Q=" {
|
|
|
|
t.Fatal("AuthString encoding isn't correct.")
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2015-04-22 14:06:58 +02:00
|
|
|
func setupTempConfigFile() (*cliconfig.ConfigFile, error) {
|
2014-03-11 01:16:58 +01:00
|
|
|
root, err := ioutil.TempDir("", "docker-test-auth")
|
|
|
|
if err != nil {
|
|
|
|
return nil, err
|
|
|
|
}
|
2015-07-21 00:39:07 +02:00
|
|
|
root = filepath.Join(root, cliconfig.ConfigFileName)
|
2015-04-22 14:06:58 +02:00
|
|
|
configFile := cliconfig.NewConfigFile(root)
|
2014-03-11 01:16:58 +01:00
|
|
|
|
2015-02-12 19:23:22 +01:00
|
|
|
for _, registry := range []string{"testIndex", INDEXSERVER} {
|
2015-04-22 14:06:58 +02:00
|
|
|
configFile.AuthConfigs[registry] = cliconfig.AuthConfig{
|
2014-03-11 01:16:58 +01:00
|
|
|
Username: "docker-user",
|
|
|
|
Password: "docker-pass",
|
|
|
|
Email: "docker@docker.io",
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
return configFile, nil
|
|
|
|
}
|
|
|
|
|
|
|
|
func TestSameAuthDataPostSave(t *testing.T) {
|
|
|
|
configFile, err := setupTempConfigFile()
|
|
|
|
if err != nil {
|
|
|
|
t.Fatal(err)
|
|
|
|
}
|
2015-04-22 14:06:58 +02:00
|
|
|
defer os.RemoveAll(configFile.Filename())
|
2014-03-11 01:16:58 +01:00
|
|
|
|
2015-04-02 00:39:37 +02:00
|
|
|
err = configFile.Save()
|
2014-03-11 01:16:58 +01:00
|
|
|
if err != nil {
|
|
|
|
t.Fatal(err)
|
|
|
|
}
|
|
|
|
|
2015-04-02 00:39:37 +02:00
|
|
|
authConfig := configFile.AuthConfigs["testIndex"]
|
2014-03-11 01:16:58 +01:00
|
|
|
if authConfig.Username != "docker-user" {
|
|
|
|
t.Fail()
|
|
|
|
}
|
|
|
|
if authConfig.Password != "docker-pass" {
|
|
|
|
t.Fail()
|
|
|
|
}
|
|
|
|
if authConfig.Email != "docker@docker.io" {
|
|
|
|
t.Fail()
|
|
|
|
}
|
|
|
|
if authConfig.Auth != "" {
|
|
|
|
t.Fail()
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
func TestResolveAuthConfigIndexServer(t *testing.T) {
|
|
|
|
configFile, err := setupTempConfigFile()
|
|
|
|
if err != nil {
|
|
|
|
t.Fatal(err)
|
|
|
|
}
|
2015-04-22 14:06:58 +02:00
|
|
|
defer os.RemoveAll(configFile.Filename())
|
2014-03-11 01:16:58 +01:00
|
|
|
|
2015-02-12 19:23:22 +01:00
|
|
|
indexConfig := configFile.AuthConfigs[INDEXSERVER]
|
2014-10-07 03:54:52 +02:00
|
|
|
|
|
|
|
officialIndex := &IndexInfo{
|
|
|
|
Official: true,
|
|
|
|
}
|
|
|
|
privateIndex := &IndexInfo{
|
|
|
|
Official: false,
|
2014-03-11 01:16:58 +01:00
|
|
|
}
|
2014-10-07 03:54:52 +02:00
|
|
|
|
2015-04-22 14:06:58 +02:00
|
|
|
resolved := ResolveAuthConfig(configFile, officialIndex)
|
2015-02-12 19:23:22 +01:00
|
|
|
assertEqual(t, resolved, indexConfig, "Expected ResolveAuthConfig to return INDEXSERVER")
|
2014-10-07 03:54:52 +02:00
|
|
|
|
2015-04-22 14:06:58 +02:00
|
|
|
resolved = ResolveAuthConfig(configFile, privateIndex)
|
2015-02-12 19:23:22 +01:00
|
|
|
assertNotEqual(t, resolved, indexConfig, "Expected ResolveAuthConfig to not return INDEXSERVER")
|
2014-03-11 01:16:58 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
func TestResolveAuthConfigFullURL(t *testing.T) {
|
|
|
|
configFile, err := setupTempConfigFile()
|
|
|
|
if err != nil {
|
|
|
|
t.Fatal(err)
|
|
|
|
}
|
2015-04-22 14:06:58 +02:00
|
|
|
defer os.RemoveAll(configFile.Filename())
|
2014-03-11 01:16:58 +01:00
|
|
|
|
2015-04-22 14:06:58 +02:00
|
|
|
registryAuth := cliconfig.AuthConfig{
|
2014-03-11 01:16:58 +01:00
|
|
|
Username: "foo-user",
|
|
|
|
Password: "foo-pass",
|
|
|
|
Email: "foo@example.com",
|
|
|
|
}
|
2015-04-22 14:06:58 +02:00
|
|
|
localAuth := cliconfig.AuthConfig{
|
2014-03-11 01:16:58 +01:00
|
|
|
Username: "bar-user",
|
|
|
|
Password: "bar-pass",
|
|
|
|
Email: "bar@example.com",
|
|
|
|
}
|
2015-04-22 14:06:58 +02:00
|
|
|
officialAuth := cliconfig.AuthConfig{
|
2014-10-07 03:54:52 +02:00
|
|
|
Username: "baz-user",
|
|
|
|
Password: "baz-pass",
|
|
|
|
Email: "baz@example.com",
|
|
|
|
}
|
2015-02-12 19:23:22 +01:00
|
|
|
configFile.AuthConfigs[INDEXSERVER] = officialAuth
|
2014-10-07 03:54:52 +02:00
|
|
|
|
2015-04-22 14:06:58 +02:00
|
|
|
expectedAuths := map[string]cliconfig.AuthConfig{
|
2014-10-07 03:54:52 +02:00
|
|
|
"registry.example.com": registryAuth,
|
|
|
|
"localhost:8000": localAuth,
|
|
|
|
"registry.com": localAuth,
|
|
|
|
}
|
2014-03-11 01:16:58 +01:00
|
|
|
|
|
|
|
validRegistries := map[string][]string{
|
2014-10-07 03:54:52 +02:00
|
|
|
"registry.example.com": {
|
2014-03-11 01:16:58 +01:00
|
|
|
"https://registry.example.com/v1/",
|
|
|
|
"http://registry.example.com/v1/",
|
|
|
|
"registry.example.com",
|
|
|
|
"registry.example.com/v1/",
|
|
|
|
},
|
2014-10-07 03:54:52 +02:00
|
|
|
"localhost:8000": {
|
2014-03-11 01:16:58 +01:00
|
|
|
"https://localhost:8000/v1/",
|
|
|
|
"http://localhost:8000/v1/",
|
|
|
|
"localhost:8000",
|
|
|
|
"localhost:8000/v1/",
|
|
|
|
},
|
|
|
|
"registry.com": {
|
|
|
|
"https://registry.com/v1/",
|
|
|
|
"http://registry.com/v1/",
|
|
|
|
"registry.com",
|
|
|
|
"registry.com/v1/",
|
|
|
|
},
|
|
|
|
}
|
|
|
|
|
|
|
|
for configKey, registries := range validRegistries {
|
2014-10-07 03:54:52 +02:00
|
|
|
configured, ok := expectedAuths[configKey]
|
|
|
|
if !ok || configured.Email == "" {
|
2015-01-14 23:12:03 +01:00
|
|
|
t.Fail()
|
2014-10-07 03:54:52 +02:00
|
|
|
}
|
|
|
|
index := &IndexInfo{
|
|
|
|
Name: configKey,
|
|
|
|
}
|
2014-03-11 01:16:58 +01:00
|
|
|
for _, registry := range registries {
|
2015-04-02 00:39:37 +02:00
|
|
|
configFile.AuthConfigs[registry] = configured
|
2015-04-22 14:06:58 +02:00
|
|
|
resolved := ResolveAuthConfig(configFile, index)
|
2014-03-11 01:16:58 +01:00
|
|
|
if resolved.Email != configured.Email {
|
|
|
|
t.Errorf("%s -> %q != %q\n", registry, resolved.Email, configured.Email)
|
|
|
|
}
|
2015-04-02 00:39:37 +02:00
|
|
|
delete(configFile.AuthConfigs, registry)
|
2015-04-22 14:06:58 +02:00
|
|
|
resolved = ResolveAuthConfig(configFile, index)
|
2014-10-07 03:54:52 +02:00
|
|
|
if resolved.Email == configured.Email {
|
|
|
|
t.Errorf("%s -> %q == %q\n", registry, resolved.Email, configured.Email)
|
|
|
|
}
|
2014-03-11 01:16:58 +01:00
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|