2017-07-23 12:24:45 +00:00
|
|
|
/*
|
2017-12-08 19:45:59 +00:00
|
|
|
* Minio Go Library for Amazon S3 Compatible Cloud Storage
|
|
|
|
* Copyright 2015-2017 Minio, Inc.
|
2017-07-23 12:24:45 +00:00
|
|
|
*
|
|
|
|
* Licensed under the Apache License, Version 2.0 (the "License");
|
|
|
|
* you may not use this file except in compliance with the License.
|
|
|
|
* You may obtain a copy of the License at
|
|
|
|
*
|
|
|
|
* http://www.apache.org/licenses/LICENSE-2.0
|
|
|
|
*
|
|
|
|
* Unless required by applicable law or agreed to in writing, software
|
|
|
|
* distributed under the License is distributed on an "AS IS" BASIS,
|
|
|
|
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
|
|
* See the License for the specific language governing permissions and
|
|
|
|
* limitations under the License.
|
|
|
|
*/
|
|
|
|
|
|
|
|
package s3signer
|
|
|
|
|
|
|
|
import (
|
|
|
|
"net/http"
|
|
|
|
"strings"
|
|
|
|
"testing"
|
|
|
|
)
|
|
|
|
|
|
|
|
// Tests signature calculation.
|
2018-03-30 10:33:40 +00:00
|
|
|
func TestSignatureCalculationV4(t *testing.T) {
|
2017-07-23 12:24:45 +00:00
|
|
|
req, err := http.NewRequest("GET", "https://s3.amazonaws.com", nil)
|
|
|
|
if err != nil {
|
|
|
|
t.Fatal("Error:", err)
|
|
|
|
}
|
|
|
|
req = SignV4(*req, "", "", "", "us-east-1")
|
|
|
|
if req.Header.Get("Authorization") != "" {
|
|
|
|
t.Fatal("Error: anonymous credentials should not have Authorization header.")
|
|
|
|
}
|
|
|
|
|
|
|
|
req = PreSignV4(*req, "", "", "", "us-east-1", 0)
|
|
|
|
if strings.Contains(req.URL.RawQuery, "X-Amz-Signature") {
|
|
|
|
t.Fatal("Error: anonymous credentials should not have Signature query resource.")
|
|
|
|
}
|
|
|
|
|
|
|
|
req = SignV4(*req, "ACCESS-KEY", "SECRET-KEY", "", "us-east-1")
|
|
|
|
if req.Header.Get("Authorization") == "" {
|
|
|
|
t.Fatal("Error: normal credentials should have Authorization header.")
|
|
|
|
}
|
|
|
|
|
|
|
|
req = PreSignV4(*req, "ACCESS-KEY", "SECRET-KEY", "", "us-east-1", 0)
|
|
|
|
if !strings.Contains(req.URL.RawQuery, "X-Amz-Signature") {
|
|
|
|
t.Fatal("Error: normal credentials should have Signature query resource.")
|
|
|
|
}
|
2018-03-30 10:33:40 +00:00
|
|
|
}
|
2017-07-23 12:24:45 +00:00
|
|
|
|
2018-03-30 10:33:40 +00:00
|
|
|
func TestSignatureCalculationV2(t *testing.T) {
|
|
|
|
|
|
|
|
var testCases = []struct {
|
|
|
|
endpointURL string
|
|
|
|
virtualHost bool
|
|
|
|
}{
|
|
|
|
{endpointURL: "https://s3.amazonaws.com/", virtualHost: false},
|
|
|
|
{endpointURL: "https://testbucket.s3.amazonaws.com/", virtualHost: true},
|
2017-07-23 12:24:45 +00:00
|
|
|
}
|
|
|
|
|
2018-03-30 10:33:40 +00:00
|
|
|
for i, testCase := range testCases {
|
|
|
|
req, err := http.NewRequest("GET", testCase.endpointURL, nil)
|
|
|
|
if err != nil {
|
|
|
|
t.Fatalf("Test %d, Error: %v", i+1, err)
|
|
|
|
}
|
|
|
|
|
|
|
|
req = SignV2(*req, "", "", testCase.virtualHost)
|
|
|
|
if req.Header.Get("Authorization") != "" {
|
|
|
|
t.Fatalf("Test %d, Error: anonymous credentials should not have Authorization header.", i+1)
|
|
|
|
}
|
|
|
|
|
|
|
|
req = PreSignV2(*req, "", "", 0, testCase.virtualHost)
|
|
|
|
if strings.Contains(req.URL.RawQuery, "Signature") {
|
|
|
|
t.Fatalf("Test %d, Error: anonymous credentials should not have Signature query resource.", i+1)
|
|
|
|
}
|
|
|
|
|
|
|
|
req = SignV2(*req, "ACCESS-KEY", "SECRET-KEY", testCase.virtualHost)
|
|
|
|
if req.Header.Get("Authorization") == "" {
|
|
|
|
t.Fatalf("Test %d, Error: normal credentials should have Authorization header.", i+1)
|
|
|
|
}
|
|
|
|
|
|
|
|
req = PreSignV2(*req, "ACCESS-KEY", "SECRET-KEY", 0, testCase.virtualHost)
|
|
|
|
if !strings.Contains(req.URL.RawQuery, "Signature") {
|
|
|
|
t.Fatalf("Test %d, Error: normal credentials should not have Signature query resource.", i+1)
|
|
|
|
}
|
2017-07-23 12:24:45 +00:00
|
|
|
}
|
|
|
|
}
|