| Index: third_party/grpc/src/node/test/credentials_test.js
|
| diff --git a/third_party/grpc/src/node/test/credentials_test.js b/third_party/grpc/src/node/test/credentials_test.js
|
| new file mode 100644
|
| index 0000000000000000000000000000000000000000..294600c85a93b66ca3da31614ccb5366a55cd2c5
|
| --- /dev/null
|
| +++ b/third_party/grpc/src/node/test/credentials_test.js
|
| @@ -0,0 +1,457 @@
|
| +/*
|
| + *
|
| + * Copyright 2015, Google Inc.
|
| + * All rights reserved.
|
| + *
|
| + * Redistribution and use in source and binary forms, with or without
|
| + * modification, are permitted provided that the following conditions are
|
| + * met:
|
| + *
|
| + * * Redistributions of source code must retain the above copyright
|
| + * notice, this list of conditions and the following disclaimer.
|
| + * * Redistributions in binary form must reproduce the above
|
| + * copyright notice, this list of conditions and the following disclaimer
|
| + * in the documentation and/or other materials provided with the
|
| + * distribution.
|
| + * * Neither the name of Google Inc. nor the names of its
|
| + * contributors may be used to endorse or promote products derived from
|
| + * this software without specific prior written permission.
|
| + *
|
| + * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
|
| + * "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
|
| + * LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
|
| + * A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
|
| + * OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
|
| + * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
|
| + * LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
|
| + * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
|
| + * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
|
| + * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
|
| + * OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
|
| + *
|
| + */
|
| +
|
| +'use strict';
|
| +
|
| +var assert = require('assert');
|
| +var fs = require('fs');
|
| +var path = require('path');
|
| +
|
| +var grpc = require('..');
|
| +
|
| +/**
|
| + * This is used for testing functions with multiple asynchronous calls that
|
| + * can happen in different orders. This should be passed the number of async
|
| + * function invocations that can occur last, and each of those should call this
|
| + * function's return value
|
| + * @param {function()} done The function that should be called when a test is
|
| + * complete.
|
| + * @param {number} count The number of calls to the resulting function if the
|
| + * test passes.
|
| + * @return {function()} The function that should be called at the end of each
|
| + * sequence of asynchronous functions.
|
| + */
|
| +function multiDone(done, count) {
|
| + return function() {
|
| + count -= 1;
|
| + if (count <= 0) {
|
| + done();
|
| + }
|
| + };
|
| +}
|
| +
|
| +var fakeSuccessfulGoogleCredentials = {
|
| + getRequestMetadata: function(service_url, callback) {
|
| + setTimeout(function() {
|
| + callback(null, {Authorization: 'success'});
|
| + }, 0);
|
| + }
|
| +};
|
| +
|
| +var fakeFailingGoogleCredentials = {
|
| + getRequestMetadata: function(service_url, callback) {
|
| + setTimeout(function() {
|
| + callback(new Error('Authentication failure'));
|
| + }, 0);
|
| + }
|
| +};
|
| +
|
| +var key_data, pem_data, ca_data;
|
| +
|
| +before(function() {
|
| + var key_path = path.join(__dirname, './data/server1.key');
|
| + var pem_path = path.join(__dirname, './data/server1.pem');
|
| + var ca_path = path.join(__dirname, '../test/data/ca.pem');
|
| + key_data = fs.readFileSync(key_path);
|
| + pem_data = fs.readFileSync(pem_path);
|
| + ca_data = fs.readFileSync(ca_path);
|
| +});
|
| +
|
| +describe('channel credentials', function() {
|
| + describe('#createSsl', function() {
|
| + it('works with no arguments', function() {
|
| + var creds;
|
| + assert.doesNotThrow(function() {
|
| + creds = grpc.credentials.createSsl();
|
| + });
|
| + assert.notEqual(creds, null);
|
| + });
|
| + it('works with just one Buffer argument', function() {
|
| + var creds;
|
| + assert.doesNotThrow(function() {
|
| + creds = grpc.credentials.createSsl(ca_data);
|
| + });
|
| + assert.notEqual(creds, null);
|
| + });
|
| + it('works with 3 Buffer arguments', function() {
|
| + var creds;
|
| + assert.doesNotThrow(function() {
|
| + creds = grpc.credentials.createSsl(ca_data, key_data, pem_data);
|
| + });
|
| + assert.notEqual(creds, null);
|
| + });
|
| + it('works if the first argument is null', function() {
|
| + var creds;
|
| + assert.doesNotThrow(function() {
|
| + creds = grpc.credentials.createSsl(null, key_data, pem_data);
|
| + });
|
| + assert.notEqual(creds, null);
|
| + });
|
| + it('fails if the first argument is a non-Buffer value', function() {
|
| + assert.throws(function() {
|
| + grpc.credentials.createSsl('test');
|
| + }, TypeError);
|
| + });
|
| + it('fails if the second argument is a non-Buffer value', function() {
|
| + assert.throws(function() {
|
| + grpc.credentials.createSsl(null, 'test', pem_data);
|
| + }, TypeError);
|
| + });
|
| + it('fails if the third argument is a non-Buffer value', function() {
|
| + assert.throws(function() {
|
| + grpc.credentials.createSsl(null, key_data, 'test');
|
| + }, TypeError);
|
| + });
|
| + it('fails if only 1 of the last 2 arguments is provided', function() {
|
| + assert.throws(function() {
|
| + grpc.credentials.createSsl(null, key_data);
|
| + });
|
| + assert.throws(function() {
|
| + grpc.credentials.createSsl(null, null, pem_data);
|
| + });
|
| + });
|
| + });
|
| +});
|
| +
|
| +describe('server credentials', function() {
|
| + describe('#createSsl', function() {
|
| + it('accepts a buffer and array as the first 2 arguments', function() {
|
| + var creds;
|
| + assert.doesNotThrow(function() {
|
| + creds = grpc.ServerCredentials.createSsl(ca_data, []);
|
| + });
|
| + assert.notEqual(creds, null);
|
| + });
|
| + it('accepts a boolean as the third argument', function() {
|
| + var creds;
|
| + assert.doesNotThrow(function() {
|
| + creds = grpc.ServerCredentials.createSsl(ca_data, [], true);
|
| + });
|
| + assert.notEqual(creds, null);
|
| + });
|
| + it('accepts an object with two buffers in the second argument', function() {
|
| + var creds;
|
| + assert.doesNotThrow(function() {
|
| + creds = grpc.ServerCredentials.createSsl(null,
|
| + [{private_key: key_data,
|
| + cert_chain: pem_data}]);
|
| + });
|
| + assert.notEqual(creds, null);
|
| + });
|
| + it('accepts multiple objects in the second argument', function() {
|
| + var creds;
|
| + assert.doesNotThrow(function() {
|
| + creds = grpc.ServerCredentials.createSsl(null,
|
| + [{private_key: key_data,
|
| + cert_chain: pem_data},
|
| + {private_key: key_data,
|
| + cert_chain: pem_data}]);
|
| + });
|
| + assert.notEqual(creds, null);
|
| + });
|
| + it('fails if the second argument is not an Array', function() {
|
| + assert.throws(function() {
|
| + grpc.ServerCredentials.createSsl(ca_data, 'test');
|
| + }, TypeError);
|
| + });
|
| + it('fails if the first argument is a non-Buffer value', function() {
|
| + assert.throws(function() {
|
| + grpc.ServerCredentials.createSsl('test', []);
|
| + }, TypeError);
|
| + });
|
| + it('fails if the third argument is a non-boolean value', function() {
|
| + assert.throws(function() {
|
| + grpc.ServerCredentials.createSsl(ca_data, [], 'test');
|
| + }, TypeError);
|
| + });
|
| + it('fails if the array elements are not objects', function() {
|
| + assert.throws(function() {
|
| + grpc.ServerCredentials.createSsl(ca_data, 'test');
|
| + }, TypeError);
|
| + });
|
| + it('fails if the object does not have a Buffer private_key', function() {
|
| + assert.throws(function() {
|
| + grpc.ServerCredentials.createSsl(null,
|
| + [{private_key: 'test',
|
| + cert_chain: pem_data}]);
|
| + }, TypeError);
|
| + });
|
| + it('fails if the object does not have a Buffer cert_chain', function() {
|
| + assert.throws(function() {
|
| + grpc.ServerCredentials.createSsl(null,
|
| + [{private_key: key_data,
|
| + cert_chain: 'test'}]);
|
| + }, TypeError);
|
| + });
|
| + });
|
| +});
|
| +
|
| +describe('client credentials', function() {
|
| + var Client;
|
| + var server;
|
| + var port;
|
| + var client_ssl_creds;
|
| + var client_options = {};
|
| + before(function() {
|
| + var proto = grpc.load(__dirname + '/test_service.proto');
|
| + server = new grpc.Server();
|
| + server.addProtoService(proto.TestService.service, {
|
| + unary: function(call, cb) {
|
| + call.sendMetadata(call.metadata);
|
| + cb(null, {});
|
| + },
|
| + clientStream: function(stream, cb){
|
| + stream.on('data', function(data) {});
|
| + stream.on('end', function() {
|
| + stream.sendMetadata(stream.metadata);
|
| + cb(null, {});
|
| + });
|
| + },
|
| + serverStream: function(stream) {
|
| + stream.sendMetadata(stream.metadata);
|
| + stream.end();
|
| + },
|
| + bidiStream: function(stream) {
|
| + stream.on('data', function(data) {});
|
| + stream.on('end', function() {
|
| + stream.sendMetadata(stream.metadata);
|
| + stream.end();
|
| + });
|
| + }
|
| + });
|
| + var creds = grpc.ServerCredentials.createSsl(null,
|
| + [{private_key: key_data,
|
| + cert_chain: pem_data}]);
|
| + port = server.bind('localhost:0', creds);
|
| + server.start();
|
| +
|
| + Client = proto.TestService;
|
| + client_ssl_creds = grpc.credentials.createSsl(ca_data);
|
| + var host_override = 'foo.test.google.fr';
|
| + client_options['grpc.ssl_target_name_override'] = host_override;
|
| + client_options['grpc.default_authority'] = host_override;
|
| + });
|
| + after(function() {
|
| + server.forceShutdown();
|
| + });
|
| + it('Should accept SSL creds for a client', function(done) {
|
| + var client = new Client('localhost:' + port, client_ssl_creds,
|
| + client_options);
|
| + client.unary({}, function(err, data) {
|
| + assert.ifError(err);
|
| + done();
|
| + });
|
| + });
|
| + it('Should update metadata with SSL creds', function(done) {
|
| + var metadataUpdater = function(service_url, callback) {
|
| + var metadata = new grpc.Metadata();
|
| + metadata.set('plugin_key', 'plugin_value');
|
| + callback(null, metadata);
|
| + };
|
| + var creds = grpc.credentials.createFromMetadataGenerator(metadataUpdater);
|
| + var combined_creds = grpc.credentials.combineChannelCredentials(
|
| + client_ssl_creds, creds);
|
| + var client = new Client('localhost:' + port, combined_creds,
|
| + client_options);
|
| + var call = client.unary({}, function(err, data) {
|
| + assert.ifError(err);
|
| + });
|
| + call.on('metadata', function(metadata) {
|
| + assert.deepEqual(metadata.get('plugin_key'), ['plugin_value']);
|
| + done();
|
| + });
|
| + });
|
| + it('Should update metadata for two simultaneous calls', function(done) {
|
| + done = multiDone(done, 2);
|
| + var metadataUpdater = function(service_url, callback) {
|
| + var metadata = new grpc.Metadata();
|
| + metadata.set('plugin_key', 'plugin_value');
|
| + callback(null, metadata);
|
| + };
|
| + var creds = grpc.credentials.createFromMetadataGenerator(metadataUpdater);
|
| + var combined_creds = grpc.credentials.combineChannelCredentials(
|
| + client_ssl_creds, creds);
|
| + var client = new Client('localhost:' + port, combined_creds,
|
| + client_options);
|
| + var call = client.unary({}, function(err, data) {
|
| + assert.ifError(err);
|
| + });
|
| + call.on('metadata', function(metadata) {
|
| + assert.deepEqual(metadata.get('plugin_key'), ['plugin_value']);
|
| + done();
|
| + });
|
| + var call2 = client.unary({}, function(err, data) {
|
| + assert.ifError(err);
|
| + });
|
| + call2.on('metadata', function(metadata) {
|
| + assert.deepEqual(metadata.get('plugin_key'), ['plugin_value']);
|
| + done();
|
| + });
|
| + });
|
| + it.skip('should propagate errors that the updater emits', function(done) {
|
| + var metadataUpdater = function(service_url, callback) {
|
| + var error = new Error('Authentication error');
|
| + error.code = grpc.status.UNAUTHENTICATED;
|
| + callback(error);
|
| + };
|
| + var creds = grpc.credentials.createFromMetadataGenerator(metadataUpdater);
|
| + var combined_creds = grpc.credentials.combineChannelCredentials(
|
| + client_ssl_creds, creds);
|
| + var client = new Client('localhost:' + port, combined_creds,
|
| + client_options);
|
| + client.unary({}, function(err, data) {
|
| + assert(err);
|
| + assert.strictEqual(err.message, 'Authentication error');
|
| + assert.strictEqual(err.code, grpc.status.UNAUTHENTICATED);
|
| + done();
|
| + });
|
| + });
|
| + it('should successfully wrap a Google credential', function(done) {
|
| + var creds = grpc.credentials.createFromGoogleCredential(
|
| + fakeSuccessfulGoogleCredentials);
|
| + var combined_creds = grpc.credentials.combineChannelCredentials(
|
| + client_ssl_creds, creds);
|
| + var client = new Client('localhost:' + port, combined_creds,
|
| + client_options);
|
| + var call = client.unary({}, function(err, data) {
|
| + assert.ifError(err);
|
| + });
|
| + call.on('metadata', function(metadata) {
|
| + assert.deepEqual(metadata.get('authorization'), ['success']);
|
| + done();
|
| + });
|
| + });
|
| + it('Should not add metadata with just SSL credentials', function(done) {
|
| + // Tests idempotency of credentials composition
|
| + var metadataUpdater = function(service_url, callback) {
|
| + var metadata = new grpc.Metadata();
|
| + metadata.set('plugin_key', 'plugin_value');
|
| + callback(null, metadata);
|
| + };
|
| + var creds = grpc.credentials.createFromMetadataGenerator(metadataUpdater);
|
| + grpc.credentials.combineChannelCredentials(client_ssl_creds, creds);
|
| + var client = new Client('localhost:' + port, client_ssl_creds,
|
| + client_options);
|
| + var call = client.unary({}, function(err, data) {
|
| + assert.ifError(err);
|
| + });
|
| + call.on('metadata', function(metadata) {
|
| + assert.deepEqual(metadata.get('plugin_key'), []);
|
| + done();
|
| + });
|
| + });
|
| + it.skip('should get an error from a Google credential', function(done) {
|
| + var creds = grpc.credentials.createFromGoogleCredential(
|
| + fakeFailingGoogleCredentials);
|
| + var combined_creds = grpc.credentials.combineChannelCredentials(
|
| + client_ssl_creds, creds);
|
| + var client = new Client('localhost:' + port, combined_creds,
|
| + client_options);
|
| + client.unary({}, function(err, data) {
|
| + assert(err);
|
| + assert.strictEqual(err.message, 'Authentication failure');
|
| + done();
|
| + });
|
| + });
|
| + describe('Per-rpc creds', function() {
|
| + var client;
|
| + var updater_creds;
|
| + before(function() {
|
| + client = new Client('localhost:' + port, client_ssl_creds,
|
| + client_options);
|
| + var metadataUpdater = function(service_url, callback) {
|
| + var metadata = new grpc.Metadata();
|
| + metadata.set('plugin_key', 'plugin_value');
|
| + callback(null, metadata);
|
| + };
|
| + updater_creds = grpc.credentials.createFromMetadataGenerator(
|
| + metadataUpdater);
|
| + });
|
| + it('Should update metadata on a unary call', function(done) {
|
| + var call = client.unary({}, function(err, data) {
|
| + assert.ifError(err);
|
| + }, null, {credentials: updater_creds});
|
| + call.on('metadata', function(metadata) {
|
| + assert.deepEqual(metadata.get('plugin_key'), ['plugin_value']);
|
| + done();
|
| + });
|
| + });
|
| + it('should update metadata on a client streaming call', function(done) {
|
| + var call = client.clientStream(function(err, data) {
|
| + assert.ifError(err);
|
| + }, null, {credentials: updater_creds});
|
| + call.on('metadata', function(metadata) {
|
| + assert.deepEqual(metadata.get('plugin_key'), ['plugin_value']);
|
| + done();
|
| + });
|
| + call.end();
|
| + });
|
| + it('should update metadata on a server streaming call', function(done) {
|
| + var call = client.serverStream({}, null, {credentials: updater_creds});
|
| + call.on('data', function() {});
|
| + call.on('metadata', function(metadata) {
|
| + assert.deepEqual(metadata.get('plugin_key'), ['plugin_value']);
|
| + done();
|
| + });
|
| + });
|
| + it('should update metadata on a bidi streaming call', function(done) {
|
| + var call = client.bidiStream(null, {credentials: updater_creds});
|
| + call.on('data', function() {});
|
| + call.on('metadata', function(metadata) {
|
| + assert.deepEqual(metadata.get('plugin_key'), ['plugin_value']);
|
| + done();
|
| + });
|
| + call.end();
|
| + });
|
| + it('should be able to use multiple plugin credentials', function(done) {
|
| + var altMetadataUpdater = function(service_url, callback) {
|
| + var metadata = new grpc.Metadata();
|
| + metadata.set('other_plugin_key', 'other_plugin_value');
|
| + callback(null, metadata);
|
| + };
|
| + var alt_updater_creds = grpc.credentials.createFromMetadataGenerator(
|
| + altMetadataUpdater);
|
| + var combined_updater = grpc.credentials.combineCallCredentials(
|
| + updater_creds, alt_updater_creds);
|
| + var call = client.unary({}, function(err, data) {
|
| + assert.ifError(err);
|
| + }, null, {credentials: combined_updater});
|
| + call.on('metadata', function(metadata) {
|
| + assert.deepEqual(metadata.get('plugin_key'), ['plugin_value']);
|
| + assert.deepEqual(metadata.get('other_plugin_key'),
|
| + ['other_plugin_value']);
|
| + done();
|
| + });
|
| + });
|
| + });
|
| +});
|
|
|
Chromium Code Reviews
Issue 1932353002:
Initial checkin of gRPC to third_party/
Base URL: https://chromium.googlesource.com/chromium/src.git@master