Map WebSocket URL schemes to HTTP URL schemes for auth purposes.

net/tools/testserver/testserver.py

 #!/usr/bin/env python
 # Copyright 2013 The Chromium Authors. All rights reserved.
 # Use of this source code is governed by a BSD-style license that can be
 # found in the LICENSE file.
 
 """This is a simple HTTP/FTP/TCP/UDP/BASIC_AUTH_PROXY/WEBSOCKET server used for
 testing Chrome.
 
 It supports several test URLs, as specified by the handlers in TestPageHandler.
 By default, it listens on an ephemeral port and sends the port number back to
@@ skipping 85 matching lines @@
     self.allow_draft75 = False
     self.strict = True
 
     self.use_tls = False
     self.private_key = None
     self.certificate = None
     self.tls_client_auth = False
     self.tls_client_ca = None
     self.tls_module = 'ssl'
     self.use_basic_auth = False
+    self.basic_auth_credential = 'Basic ' + base64.b64encode('test:test')
 
 
 class RecordingSSLSessionCache(object):
   """RecordingSSLSessionCache acts as a TLS session cache and maintains a log of
   lookups and inserts in order to test session cache behaviours."""
 
   def __init__(self):
     self.log = []
 
   def __getitem__(self, sessionID):
@@ skipping 1901 matching lines @@
               'one trusted client CA file should be specified')
         if not os.path.isfile(self.options.ssl_client_ca[0]):
           raise testserver_base.OptionError(
               'specified trusted client CA file not found: ' +
               self.options.ssl_client_ca[0] + ' exiting...')
         websocket_options.tls_client_ca = self.options.ssl_client_ca[0]
       server = WebSocketServer(websocket_options)
       print 'WebSocket server started on %s://%s:%d...' % \
           (scheme, host, server.server_port)
       server_data['port'] = server.server_port
+      websocket_options.use_basic_auth = self.options.ws_basic_auth
     elif self.options.server_type == SERVER_TCP_ECHO:
       # Used for generating the key (randomly) that encodes the "echo request"
       # message.
       random.seed()
       server = TCPEchoServer((host, port), TCPEchoHandler)
       print 'Echo TCP server started on port %d...' % server.server_port
       server_data['port'] = server.server_port
     elif self.options.server_type == SERVER_UDP_ECHO:
       # Used for generating the key (randomly) that encodes the "echo request"
       # message.
@@ skipping 161 matching lines @@
                                   'enabled.');
     # TODO(davidben): Add ALPN support to tlslite.
     self.option_parser.add_option('--enable-npn', dest='enable_npn',
                                   default=False, const=True,
                                   action='store_const',
                                   help='Enable server support for the NPN '
                                   'extension. The server will advertise '
                                   'support for exactly one protocol, http/1.1')
     self.option_parser.add_option('--file-root-url', default='/files/',
                                   help='Specify a root URL for files served.')
+    # TODO(ricea): Generalise this to support basic auth for HTTP too.

[Johnny, 2014/07/08 20:27:40]

nit: s/Generalise/Generalize/

[Adam Rice, 2014/07/09 06:35:01]

Done.

+    self.option_parser.add_option('--ws-basic-auth', action='store_true',
+                                  dest='ws_basic_auth',
+                                  help='Enable basic-auth for WebSocket')
 
 
 if __name__ == '__main__':
   sys.exit(ServerRunner().main())