1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
|
#!/usr/bin/perl
#
# Testing with TKTAuthIgnoreIP on
#
use strict;
use warnings FATAL => 'all';
use Apache::Test;
use Apache::TestUtil;
use Apache::TestRequest qw(GET);
use HTTP::Cookies;
use lib "cgi";
use Apache::AuthTkt;
plan tests => 6, need_lwp;
# Turn off automatic redirection following
Apache::TestRequest::user_agent(
requests_redirectable => 0,
reset => 1,
);
ok 1; # simple load test
my $url = '/secret_ignore_ip/index.html';
my $res = GET $url;
# No cookie - should be redirected
ok t_cmp($res->code, 307, 'redirected');
ok t_cmp($res->content, qr/redirect.*login/is, 'no ticket: redirect to login');
# Generate ticket and cookie jar
my $at = Apache::AuthTkt->new(conf => 't/conf/extra.conf');
my $ticket = $at->ticket(uid => 'testuser', ip_addr => '127.0.0.1');
my $jar = HTTP::Cookies->new;
$jar->set_cookie(1, 'auth_tkt', $ticket, '/', '.localdomain');
# print $jar->as_string;
# Reset the TestRequest user_agent to use our cookie jar
Apache::TestRequest::user_agent(
cookie_jar => $jar,
requests_redirectable => 0,
reset => 1,
);
# Test with cookie - should redirect, since TKTAuthIgnoreIP on
$res = GET $url;
ok t_cmp($res->code, 307, 'redirected');
ok t_cmp($res->content, qr/redirect.*login/is, 'ip addr ticket: redirect to login');
# Create ticket with 0.0.0.0 ip address - accepted with TKTAuthIgnoreIP on
$ticket = $at->ticket(uid => 'testuser', ip_addr => '0.0.0.0');
$jar->set_cookie(1, 'auth_tkt', $ticket, '/', '.localdomain');
$res = GET $url;
ok t_cmp($res->code, 200, 'not redirected with 0.0.0.0 ip ticket');
# vim:sw=2:et:sm:smartindent:ft=perl
|
