File: proxy.rb

package info (click to toggle)
ruby-async-http 0.94.2-1
  • links: PTS, VCS
  • area: main
  • in suites: sid
  • size: 916 kB
  • sloc: ruby: 5,224; javascript: 40; makefile: 4
file content (249 lines) | stat: -rw-r--r-- 6,499 bytes parent folder | download 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
 
# frozen_string_literal: true

# Released under the MIT License.
# Copyright, 2019-2026, by Samuel Williams.
# Copyright, 2020, by Sam Shadwell.

require "async"
require "async/http/proxy"
require "async/http/protocol"
require "async/http/body/hijack"

require "sus/fixtures/async/http"

AProxy = Sus::Shared("a proxy") do
	include Sus::Fixtures::Async::HTTP::ServerContext
	
	let(:protocol) {subject}
	
	with ".proxied_endpoint" do
		it "can construct valid endpoint" do
			endpoint = Async::HTTP::Endpoint.parse("http://www.codeotaku.com")
			proxied_endpoint = client.proxied_endpoint(endpoint)
			
			expect(proxied_endpoint).to be_a(Async::HTTP::Endpoint)
		end
	end
	
	with ".proxied_client" do
		it "can construct valid client" do
			endpoint = Async::HTTP::Endpoint.parse("http://www.codeotaku.com")
			proxied_client = client.proxied_client(endpoint)
			
			expect(proxied_client).to be_a(Async::HTTP::Client)
		end
	end
	
	with "CONNECT" do
		let(:app) do
			Protocol::HTTP::Middleware.for do |request|
				Async::HTTP::Body::Hijack.response(request, 200, {}) do |stream|
					chunk = stream.read
					stream.close_read
					
					stream.write(chunk)
					stream.close_write
				ensure
					stream.close
				end
			end
		end
		
		let(:data) {"Hello World!"}
		
		it "can connect and hijack connection" do
			input = Async::HTTP::Body::Writable.new
			
			response = client.connect(body: input, authority: "127.0.0.1:1234")
			
			expect(response).to be(:success?)
			
			input.write(data)
			input.close_write
			
			expect(response.read).to be == data
		end
	end
	
	with "echo server" do
		let(:app) do
			Protocol::HTTP::Middleware.for do |request|
				expect(request.authority).to be == "localhost:1"
				
				Async::HTTP::Body::Hijack.response(request, 200, {}) do |stream|
					while chunk = stream.read_partial(1024)
						stream.write(chunk)
						stream.flush
					end
					
					stream.close_write
				end
			end
		end
		
		let(:data) {"Hello World!"}
		
		it "can connect to remote system using block" do
			proxy = Async::HTTP::Proxy.tcp(client, "localhost", 1)
			expect(proxy.client.pool).to be(:empty?)
			
			proxy.connect do |peer|
				peer.write(data)
				peer.close_write
				
				expect(peer.read).to be == data
			end
			
			proxy.close
			expect(proxy.client.pool).to be(:empty?)
		end
		
		it "can connect to remote system" do
			proxy = Async::HTTP::Proxy.tcp(client, "localhost", 1)
			expect(proxy.client.pool).to be(:empty?)
			
			peer = proxy.connect
			
			peer.write(data)
			peer.close_write
			
			expect(peer.read).to be == data
			
			peer.close
			proxy.close
			
			expect(proxy.client.pool).to be(:empty?)
		end
	end
	
	with "proxied client" do
		let(:app) do
			Protocol::HTTP::Middleware.for do |request|
				expect(request.method).to be == "CONNECT"
				
				unless authorization_lambda.call(request)
					next Protocol::HTTP::Response[407, [], nil]
				end
				
				host, port = request.authority.split(":", 2)
				endpoint = IO::Endpoint.tcp(host, port)
				
				Console.debug(self){"Making connection to #{endpoint}..."}
				
				Async::HTTP::Body::Hijack.response(request, 200, {}) do |stream|
					upstream = ::IO::Stream::Buffered.wrap(endpoint.connect)
					Console.debug(self){"Connected to #{upstream}..."}
					
					reader = Async do |task|
						task.annotate "Upstream reader."
						
						while chunk = upstream.read_partial
							stream.write(chunk)
							stream.flush
						end
					ensure
						Console.debug(self){"Finished reading from upstream..."}
						stream.close_write unless stream.closed?
					end
					
					writer = Async do |task|
						task.annotate "Upstream writer."
						
						while chunk = stream.read_partial
							upstream.write(chunk)
							upstream.flush
						end
					ensure
						Console.debug(self){"Finished writing to upstream..."}
						upstream.close_write unless upstream.closed?
					end
					
					reader.wait
					writer.wait
				ensure
					upstream.close
					stream.close
				end
			end
		end
		
		let(:authorization_lambda) {->(request){true}}
		
		it "can get insecure website" do
			endpoint = Async::HTTP::Endpoint.parse("http://www.google.com")
			proxy_client = client.proxied_client(endpoint)
			
			response = proxy_client.get("/search")
			expect(response).not.to be(:failure?)
			
			# The response would be a redirect:
			expect(response).to be(:redirection?)
			response.finish
			
			# The proxy.connnect response is not being released correctly - after pipe is done:
			expect(proxy_client.pool).not.to be(:empty?)
			proxy_client.close
			expect(proxy_client.pool).to be(:empty?)
		end
		
		it "can get secure website" do
			endpoint = Async::HTTP::Endpoint.parse("https://www.google.com")
			proxy_client = client.proxied_client(endpoint)
			
			response = proxy_client.get("/search")
			
			expect(response).not.to be(:failure?)
			expect(response.read).not.to be(:empty?)
			
			proxy_client.close
		end
		
		with "authorization header required" do
			let(:authorization_lambda) do
				->(request){request.headers["proxy-authorization"] == "supersecretpassword"}
			end
			
			with "request includes headers" do
				let(:headers) {[["proxy-authorization", "supersecretpassword"]]}
				
				it "succeeds" do
					endpoint = Async::HTTP::Endpoint.parse("https://www.google.com")
					proxy_client = client.proxied_client(endpoint, headers)
					
					response = proxy_client.get("/search")
					
					expect(response).not.to be(:failure?)
					expect(response.read).not.to be(:empty?)
					
					proxy_client.close
				end
			end
			
			with "request does not include headers" do
				it "does not succeed" do
					endpoint = Async::HTTP::Endpoint.parse("https://www.google.com")
					proxy_client = client.proxied_client(endpoint)
					
					expect do
						# Why is this response not 407? Because the response should come from the proxied connection, but that connection failed to be established. Because of that, there is no response. If we respond here with 407, it would be indistinguisable from the remote server returning 407. That would be an odd case, but none-the-less a valid one.
						response = proxy_client.get("/search")
					end.to raise_exception(Async::HTTP::Proxy::ConnectFailure)
					
					proxy_client.close
				end
			end
		end
	end
end

describe Async::HTTP::Protocol::HTTP10 do
	it_behaves_like AProxy
end

describe Async::HTTP::Protocol::HTTP11 do
	it_behaves_like AProxy
end

describe Async::HTTP::Protocol::HTTP2 do
	it_behaves_like AProxy
end