1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
|
package api
import (
"net/http"
"testing"
)
// TestExplorerPreset checks that the default configuration for the explorer is
// working correctly.
func TestExplorerPreset(t *testing.T) {
if testing.Short() {
t.SkipNow()
}
t.Parallel()
st, err := createExplorerServerTester(t.Name())
if err != nil {
t.Fatal(err)
}
defer st.server.panicClose()
// Try calling a legal endpoint without a user agent.
err = st.stdGetAPIUA("/explorer", "")
if err != nil {
t.Fatal(err)
}
}
// TestReloading reloads a server and does smoke testing to see that modules
// are still working after reload.
func TestReloading(t *testing.T) {
if testing.Short() {
t.SkipNow()
}
t.Parallel()
st, err := createServerTester(t.Name())
height := st.server.api.cs.Height()
if err != nil {
t.Fatal(err)
}
err = st.server.Close()
if err != nil {
t.Fatal(err)
}
rst, err := st.reloadedServerTester()
if err != nil {
t.Fatal(err)
}
defer rst.server.panicClose()
if height != rst.server.api.cs.Height() {
t.Error("server heights do not match")
}
// Mine some blocks on the reloaded server and see if any errors or panics
// are triggered.
for i := 0; i < 3; i++ {
_, err := rst.miner.AddBlock()
if err != nil {
t.Fatal(err)
}
}
}
// TestAuthenticated tests creating a server that requires authenticated API
// calls, and then makes (un)authenticated API calls to test the
// authentication.
func TestAuthentication(t *testing.T) {
if testing.Short() {
t.SkipNow()
}
t.Parallel()
st, err := createAuthenticatedServerTester(t.Name(), "password")
if err != nil {
t.Fatal(err)
}
defer st.server.panicClose()
testGETURL := "http://" + st.server.listener.Addr().String() + "/wallet/seeds"
testPOSTURL := "http://" + st.server.listener.Addr().String() + "/host/announce"
// Test that unauthenticated API calls fail.
// GET
resp, err := HttpGET(testGETURL)
if err != nil {
t.Fatal(err)
}
if resp.StatusCode != http.StatusUnauthorized {
t.Fatal("unauthenticated API call succeeded on a server that requires authentication")
}
// POST
resp, err = HttpPOST(testPOSTURL, "")
if err != nil {
t.Fatal(err)
}
if resp.StatusCode != http.StatusUnauthorized {
t.Fatal("unauthenticated API call succeeded on a server that requires authentication")
}
// Test that authenticated API calls with the wrong password fail.
// GET
resp, err = HttpGETAuthenticated(testGETURL, "wrong password")
if err != nil {
t.Fatal(err)
}
if resp.StatusCode != http.StatusUnauthorized {
t.Fatal("authenticated API call succeeded with an incorrect password")
}
// POST
resp, err = HttpPOSTAuthenticated(testPOSTURL, "", "wrong password")
if err != nil {
t.Fatal(err)
}
if resp.StatusCode != http.StatusUnauthorized {
t.Fatal("authenticated API call succeeded with an incorrect password")
}
// Test that authenticated API calls with the correct password succeed.
// GET
resp, err = HttpGETAuthenticated(testGETURL, "password")
if err != nil {
t.Fatal(err)
}
if non2xx(resp.StatusCode) {
t.Fatal("authenticated API call failed with the correct password")
}
// POST
resp, err = HttpPOSTAuthenticated(testPOSTURL, "", "password")
if err != nil {
t.Fatal(err)
}
if non2xx(resp.StatusCode) {
t.Fatal("authenticated API call failed with the correct password")
}
}
|
