ruby--ruby/test/soap/header/test_authheader.rb

require 'test/unit'
require 'soap/rpc/driver'
require 'soap/rpc/standaloneServer'
require 'soap/header/simplehandler'


module SOAP
module Header


class TestAuthHeader < Test::Unit::TestCase
  Port = 17171
  PortName = 'http://tempuri.org/authHeaderPort'
  MyHeaderName = XSD::QName.new("http://tempuri.org/authHeader", "auth")
  DummyHeaderName = XSD::QName.new("http://tempuri.org/authHeader", "dummy")

  class AuthHeaderPortServer < SOAP::RPC::StandaloneServer
    class AuthHeaderService
      def self.create
	new
      end

      def deposit(amt)
	"deposit #{amt} OK"
      end

      def withdrawal(amt)
	"withdrawal #{amt} OK"
      end
    end

    def initialize(*arg)
      super
      add_rpc_servant(AuthHeaderService.new, PortName)
      ServerAuthHeaderHandler.init
      add_request_headerhandler(ServerAuthHeaderHandler)
    end

    class ServerAuthHeaderHandler < SOAP::Header::SimpleHandler
      class << self
	def create
	  new
	end

	def init
	  @users = {
	    'NaHi' => 'passwd',
	    'HiNa' => 'wspass'
	  }
	  @sessions = {}
	end

	def login(userid, passwd)
	  userid and passwd and @users[userid] == passwd
	end

	def auth(sessionid)
	  @sessions[sessionid][0]
	end

	def create_session(userid)
	  while true
	    key = create_sessionkey
	    break unless @sessions[key]
	  end
	  @sessions[key] = [userid]
	  key
	end

	def destroy_session(sessionkey)
	  @sessions.delete(sessionkey)
	end

	def sessions
	  @sessions
	end

      private

	def create_sessionkey
	  Time.now.usec.to_s
	end
      end

      def initialize
	super(MyHeaderName)
	@userid = @sessionid = nil
      end

      def on_simple_outbound
	{ "sessionid" => @sessionid }
      end

      def on_simple_inbound(my_header, mu)
	auth = false
	userid = my_header["userid"]
	passwd = my_header["passwd"]
	if self.class.login(userid, passwd)
	  auth = true
	elsif sessionid = my_header["sessionid"]
	  if userid = self.class.auth(sessionid)
	    self.class.destroy_session(sessionid)
	    auth = true
	  end
	end
	raise RuntimeError.new("authentication failed") unless auth
	@userid = userid
	@sessionid = self.class.create_session(userid)
      end
    end
  end

  class ClientAuthHeaderHandler < SOAP::Header::SimpleHandler
    def initialize(userid, passwd, mustunderstand)
      super(MyHeaderName)
      @sessionid = nil
      @userid = userid
      @passwd = passwd
      @mustunderstand = mustunderstand
    end

    def on_simple_outbound
      if @sessionid
	{ "sessionid" => @sessionid }
      else
	{ "userid" => @userid, "passwd" => @passwd }
      end
    end

    def on_simple_inbound(my_header, mustunderstand)
      @sessionid = my_header["sessionid"]
    end

    def sessionid
      @sessionid
    end
  end

  class DummyHeaderHandler < SOAP::Header::SimpleHandler
    def initialize(mustunderstand)
      super(DummyHeaderName)
      @mustunderstand = mustunderstand
    end

    def on_simple_outbound
      { XSD::QName.new("foo", "bar") => nil }
    end

    def on_simple_inbound(my_header, mustunderstand)
    end
  end

  def setup
    @endpoint = "http://localhost:#{Port}/"
    setup_server
    setup_client
  end

  def setup_server
    @server = AuthHeaderPortServer.new(self.class.name, nil, '0.0.0.0', Port)
    @server.level = Logger::Severity::ERROR
    @t = Thread.new {
      @server.start
    }
  end

  def setup_client
    @client = SOAP::RPC::Driver.new(@endpoint, PortName)
    @client.wiredump_dev = STDERR if $DEBUG
    @client.add_method('deposit', 'amt')
    @client.add_method('withdrawal', 'amt')
  end

  def teardown
    teardown_server
    teardown_client
  end

  def teardown_server
    @server.shutdown
    @t.kill
    @t.join
  end

  def teardown_client
    @client.reset_stream
  end

  def test_success_no_mu
    h = ClientAuthHeaderHandler.new('NaHi', 'passwd', false)
    @client.headerhandler << h
    do_transaction_check(h)
  end

  def test_success_mu
    h = ClientAuthHeaderHandler.new('NaHi', 'passwd', true)
    @client.headerhandler << h
    do_transaction_check(h)
  end

  def test_no_mu
    h = ClientAuthHeaderHandler.new('NaHi', 'passwd', true)
    @client.headerhandler << h
    @client.headerhandler << DummyHeaderHandler.new(false)
    do_transaction_check(h)
  end

  def test_mu
    h = ClientAuthHeaderHandler.new('NaHi', 'passwd', true)
    @client.headerhandler << h
    @client.headerhandler << (h2 = DummyHeaderHandler.new(true))
    assert_raise(SOAP::UnhandledMustUnderstandHeaderError) do
      assert_equal("deposit 150 OK", @client.deposit(150))
    end
    @client.headerhandler.delete(h2)
    @client.headerhandler << (h2 = DummyHeaderHandler.new(false))
    do_transaction_check(h)
  end

  def do_transaction_check(h)
    assert_equal("deposit 150 OK", @client.deposit(150))
    serversess = AuthHeaderPortServer::ServerAuthHeaderHandler.sessions[h.sessionid]
    assert_equal("NaHi", serversess[0])
    assert_equal("withdrawal 120 OK", @client.withdrawal(120))
    serversess = AuthHeaderPortServer::ServerAuthHeaderHandler.sessions[h.sessionid]
    assert_equal("NaHi", serversess[0])
  end

  def test_authfailure
    h = ClientAuthHeaderHandler.new('NaHi', 'pa', false)
    @client.headerhandler << h
    assert_raises(RuntimeError) do
      @client.deposit(150)
    end
  end
end


end
end
* added files: * lib/soap/header/* * lib/soap/rpc/httpserver.rb * lib/wsdl/soap/cgiStubCreator.rb * lib/wsdl/soap/classDefCreator.rb * lib/wsdl/soap/classDefCreatorSupport.rb * lib/wsdl/soap/clientSkeltonCreator.rb * lib/wsdl/soap/driverCreator.rb * lib/wsdl/soap/mappingRegistryCreator.rb * lib/wsdl/soap/methodDefCreator.rb * lib/wsdl/soap/servantSkeltonCreator.rb * lib/wsdl/soap/standaloneServerStubCreator.rb * lib/wsdl/xmlSchema/enumeration.rb * lib/wsdl/xmlSchema/simpleRestriction.rb * lib/wsdl/xmlSchema/simpleType.rb * lib/xsd/codegen/* * lib/xsd/codegen.rb * sample/soap/authheader/* * sample/soap/raa2.4/* * sample/soap/ssl/* * sample/soap/swa/* * sample/soap/whois.rb * sample/wsdl/raa2.4/* * test/soap/header/* * test/soap/ssl/* * test/soap/struct/* * test/soap/swa/* * test/soap/wsdlDriver/* * test/wsdl/multiplefault.wsdl * test/wsdl/simpletype/* * test/wsdl/test_multiplefault.rb * modified files: * lib/soap/baseData.rb * lib/soap/element.rb * lib/soap/generator.rb * lib/soap/netHttpClient.rb * lib/soap/parser.rb * lib/soap/property.rb * lib/soap/soap.rb * lib/soap/streamHandler.rb * lib/soap/wsdlDriver.rb * lib/soap/wsdlDriver.rb * lib/soap/encodingstyle/handler.rb * lib/soap/encodingstyle/literalHandler.rb * lib/soap/encodingstyle/soapHandler.rb * lib/soap/mapping/factory.rb * lib/soap/mapping/mapping.rb * lib/soap/mapping/registry.rb * lib/soap/mapping/rubytypeFactory.rb * lib/soap/mapping/wsdlRegistry.rb * lib/soap/rpc/cgistub.rb * lib/soap/rpc/driver.rb * lib/soap/rpc/proxy.rb * lib/soap/rpc/router.rb * lib/soap/rpc/soaplet.rb * lib/soap/rpc/standaloneServer.rb * lib/wsdl/data.rb * lib/wsdl/definitions.rb * lib/wsdl/operation.rb * lib/wsdl/parser.rb * lib/wsdl/soap/definitions.rb * lib/wsdl/xmlSchema/complexContent.rb * lib/wsdl/xmlSchema/complexType.rb * lib/wsdl/xmlSchema/data.rb * lib/wsdl/xmlSchema/parser.rb * lib/wsdl/xmlSchema/schema.rb * lib/xsd/datatypes.rb * lib/xsd/qname.rb * sample/soap/sampleStruct/server.rb * sample/wsdl/amazon/AmazonSearch.rb * sample/wsdl/amazon/AmazonSearchDriver.rb * test/soap/test_property.rb * test/soap/calc/test_calc_cgi.rb * test/wsdl/test_emptycomplextype.rb * summary * add SOAP Header mustUnderstand support. * add HTTP client SSL configuration and Cookies support (works completely with http-access2). * add header handler for handling sending/receiving SOAP Header. * map Ruby's anonymous Struct to common SOAP Struct in SOAP Object Model. it caused error. * add WSDL simpleType support to restrict lexical value space. git-svn-id: svn+ssh://ci.ruby-lang.org/ruby/trunk@6565 b2dd03c8-39d4-4d8f-98ff-823fe69b080e 2004-07-03 13:33:20 +00:00			`require 'test/unit'`
			`require 'soap/rpc/driver'`
			`require 'soap/rpc/standaloneServer'`
			`require 'soap/header/simplehandler'`


			`module SOAP`
			`module Header`


			`class TestAuthHeader < Test::Unit::TestCase`
			`Port = 17171`
			`PortName = 'http://tempuri.org/authHeaderPort'`
			`MyHeaderName = XSD::QName.new("http://tempuri.org/authHeader", "auth")`
			`DummyHeaderName = XSD::QName.new("http://tempuri.org/authHeader", "dummy")`

			`class AuthHeaderPortServer < SOAP::RPC::StandaloneServer`
			`class AuthHeaderService`
			`def self.create`
			`new`
			`end`

			`def deposit(amt)`
			`"deposit #{amt} OK"`
			`end`

			`def withdrawal(amt)`
			`"withdrawal #{amt} OK"`
			`end`
			`end`

			`def initialize(*arg)`
			`super`
			`add_rpc_servant(AuthHeaderService.new, PortName)`
			`ServerAuthHeaderHandler.init`
* lib/{soap,wsdl,xsd}, test/{soap,wsdl,xsd}: imported soap4r/1.5.4. == SOAP client and server == === for both client side and server side === * improved document/literal service support. style(rpc,document)/use(encoding, literal) combination are all supported. for the detail about combination, see test/soap/test_style.rb. * let WSDLEncodedRegistry#soap2obj map SOAP/OM to Ruby according to WSDL as well as obj2soap. closes #70. * let SOAP::Mapping::Object handle XML attribute for doc/lit service. you can set/get XML attribute via accessor methods which as a name 'xmlattr_' prefixed (<foo name="bar"/> -> Foo#xmlattr_name). === client side === * WSDLDriver capitalized name operation bug fixed. from 1.5.3-ruby1.8.2, operation which has capitalized name (such as KeywordSearchRequest in AWS) is defined as a method having uncapitalized name. (converted with GenSupport.safemethodname to handle operation name 'foo-bar'). it introduced serious incompatibility; in the past, it was defined as a capitalized. define capitalized method as well under that circumstance. * added new factory interface 'WSDLDriverFactory#create_rpc_driver' to create RPC::Driver, not WSDLDriver (RPC::Driver and WSDLDriver are merged). 'WSDLDriverFactory#create_driver' still creates WSDLDriver for compatibility but it warns that the method is deprecated. please use create_rpc_driver instead of create_driver. * allow to use an URI object as an endpoint_url even with net/http, not http-access2. === server side === * added mod_ruby support to SOAP::CGIStub. rename a CGI script server.cgi to server.rb and let mod_ruby's RubyHandler handles the script. CGIStub detects if it's running under mod_ruby environment or not. * added fcgi support to SOAP::CGIStub. see the sample at sample/soap/calc/server.fcgi. (almost same as server.cgi but has fcgi handler at the bottom.) * allow to return a SOAPFault object to respond customized SOAP fault. * added the interface 'generate_explicit_type' for server side (CGIStub, HTTPServer). call 'self.generate_explicit_type = true' if you want to return simplified XML even if it's rpc/encoded service. == WSDL == === WSDL definition === * improved XML Schema support such as extension, restriction, simpleType, complexType + simpleContent, ref, length, import, include. * reduced "unknown element/attribute" warnings (warn only 1 time for each QName). * importing XSD file at schemaLocation with xsd:import. === code generation from WSDL === * generator crashed when there's '-' in defined element/attribute name. * added ApacheMap WSDL definition. * sample/{soap,wsdl}: removed. git-svn-id: svn+ssh://ci.ruby-lang.org/ruby/trunk@8500 b2dd03c8-39d4-4d8f-98ff-823fe69b080e 2005-05-22 13:03:38 +00:00			`add_request_headerhandler(ServerAuthHeaderHandler)`
* added files: * lib/soap/header/* * lib/soap/rpc/httpserver.rb * lib/wsdl/soap/cgiStubCreator.rb * lib/wsdl/soap/classDefCreator.rb * lib/wsdl/soap/classDefCreatorSupport.rb * lib/wsdl/soap/clientSkeltonCreator.rb * lib/wsdl/soap/driverCreator.rb * lib/wsdl/soap/mappingRegistryCreator.rb * lib/wsdl/soap/methodDefCreator.rb * lib/wsdl/soap/servantSkeltonCreator.rb * lib/wsdl/soap/standaloneServerStubCreator.rb * lib/wsdl/xmlSchema/enumeration.rb * lib/wsdl/xmlSchema/simpleRestriction.rb * lib/wsdl/xmlSchema/simpleType.rb * lib/xsd/codegen/* * lib/xsd/codegen.rb * sample/soap/authheader/* * sample/soap/raa2.4/* * sample/soap/ssl/* * sample/soap/swa/* * sample/soap/whois.rb * sample/wsdl/raa2.4/* * test/soap/header/* * test/soap/ssl/* * test/soap/struct/* * test/soap/swa/* * test/soap/wsdlDriver/* * test/wsdl/multiplefault.wsdl * test/wsdl/simpletype/* * test/wsdl/test_multiplefault.rb * modified files: * lib/soap/baseData.rb * lib/soap/element.rb * lib/soap/generator.rb * lib/soap/netHttpClient.rb * lib/soap/parser.rb * lib/soap/property.rb * lib/soap/soap.rb * lib/soap/streamHandler.rb * lib/soap/wsdlDriver.rb * lib/soap/wsdlDriver.rb * lib/soap/encodingstyle/handler.rb * lib/soap/encodingstyle/literalHandler.rb * lib/soap/encodingstyle/soapHandler.rb * lib/soap/mapping/factory.rb * lib/soap/mapping/mapping.rb * lib/soap/mapping/registry.rb * lib/soap/mapping/rubytypeFactory.rb * lib/soap/mapping/wsdlRegistry.rb * lib/soap/rpc/cgistub.rb * lib/soap/rpc/driver.rb * lib/soap/rpc/proxy.rb * lib/soap/rpc/router.rb * lib/soap/rpc/soaplet.rb * lib/soap/rpc/standaloneServer.rb * lib/wsdl/data.rb * lib/wsdl/definitions.rb * lib/wsdl/operation.rb * lib/wsdl/parser.rb * lib/wsdl/soap/definitions.rb * lib/wsdl/xmlSchema/complexContent.rb * lib/wsdl/xmlSchema/complexType.rb * lib/wsdl/xmlSchema/data.rb * lib/wsdl/xmlSchema/parser.rb * lib/wsdl/xmlSchema/schema.rb * lib/xsd/datatypes.rb * lib/xsd/qname.rb * sample/soap/sampleStruct/server.rb * sample/wsdl/amazon/AmazonSearch.rb * sample/wsdl/amazon/AmazonSearchDriver.rb * test/soap/test_property.rb * test/soap/calc/test_calc_cgi.rb * test/wsdl/test_emptycomplextype.rb * summary * add SOAP Header mustUnderstand support. * add HTTP client SSL configuration and Cookies support (works completely with http-access2). * add header handler for handling sending/receiving SOAP Header. * map Ruby's anonymous Struct to common SOAP Struct in SOAP Object Model. it caused error. * add WSDL simpleType support to restrict lexical value space. git-svn-id: svn+ssh://ci.ruby-lang.org/ruby/trunk@6565 b2dd03c8-39d4-4d8f-98ff-823fe69b080e 2004-07-03 13:33:20 +00:00			`end`

			`class ServerAuthHeaderHandler < SOAP::Header::SimpleHandler`
			`class << self`
			`def create`
			`new`
			`end`

			`def init`
			`@users = {`
			`'NaHi' => 'passwd',`
			`'HiNa' => 'wspass'`
			`}`
			`@sessions = {}`
			`end`

			`def login(userid, passwd)`
			`userid and passwd and @users[userid] == passwd`
			`end`

			`def auth(sessionid)`
			`@sessions[sessionid][0]`
			`end`

			`def create_session(userid)`
			`while true`
			`key = create_sessionkey`
			`break unless @sessions[key]`
			`end`
			`@sessions[key] = [userid]`
			`key`
			`end`

			`def destroy_session(sessionkey)`
			`@sessions.delete(sessionkey)`
			`end`

			`def sessions`
			`@sessions`
			`end`

			`private`

			`def create_sessionkey`
			`Time.now.usec.to_s`
			`end`
			`end`

			`def initialize`
			`super(MyHeaderName)`
			`@userid = @sessionid = nil`
			`end`

			`def on_simple_outbound`
			`{ "sessionid" => @sessionid }`
			`end`

			`def on_simple_inbound(my_header, mu)`
			`auth = false`
			`userid = my_header["userid"]`
			`passwd = my_header["passwd"]`
			`if self.class.login(userid, passwd)`
			`auth = true`
			`elsif sessionid = my_header["sessionid"]`
			`if userid = self.class.auth(sessionid)`
			`self.class.destroy_session(sessionid)`
			`auth = true`
			`end`
			`end`
			`raise RuntimeError.new("authentication failed") unless auth`
			`@userid = userid`
			`@sessionid = self.class.create_session(userid)`
			`end`
			`end`
			`end`

			`class ClientAuthHeaderHandler < SOAP::Header::SimpleHandler`
			`def initialize(userid, passwd, mustunderstand)`
			`super(MyHeaderName)`
			`@sessionid = nil`
			`@userid = userid`
			`@passwd = passwd`
			`@mustunderstand = mustunderstand`
			`end`

			`def on_simple_outbound`
			`if @sessionid`
			`{ "sessionid" => @sessionid }`
			`else`
			`{ "userid" => @userid, "passwd" => @passwd }`
			`end`
			`end`

			`def on_simple_inbound(my_header, mustunderstand)`
			`@sessionid = my_header["sessionid"]`
			`end`

			`def sessionid`
			`@sessionid`
			`end`
			`end`

			`class DummyHeaderHandler < SOAP::Header::SimpleHandler`
			`def initialize(mustunderstand)`
			`super(DummyHeaderName)`
			`@mustunderstand = mustunderstand`
			`end`

			`def on_simple_outbound`
			`{ XSD::QName.new("foo", "bar") => nil }`
			`end`

			`def on_simple_inbound(my_header, mustunderstand)`
			`end`
			`end`

			`def setup`
			`@endpoint = "http://localhost:#{Port}/"`
			`setup_server`
			`setup_client`
			`end`

			`def setup_server`
			`@server = AuthHeaderPortServer.new(self.class.name, nil, '0.0.0.0', Port)`
			`@server.level = Logger::Severity::ERROR`
			`@t = Thread.new {`
			`@server.start`
			`}`
			`end`

			`def setup_client`
			`@client = SOAP::RPC::Driver.new(@endpoint, PortName)`
			`@client.wiredump_dev = STDERR if $DEBUG`
			`@client.add_method('deposit', 'amt')`
			`@client.add_method('withdrawal', 'amt')`
			`end`

			`def teardown`
			`teardown_server`
			`teardown_client`
			`end`

			`def teardown_server`
			`@server.shutdown`
			`@t.kill`
			`@t.join`
			`end`

			`def teardown_client`
			`@client.reset_stream`
			`end`

			`def test_success_no_mu`
			`h = ClientAuthHeaderHandler.new('NaHi', 'passwd', false)`
			`@client.headerhandler << h`
			`do_transaction_check(h)`
			`end`

			`def test_success_mu`
			`h = ClientAuthHeaderHandler.new('NaHi', 'passwd', true)`
			`@client.headerhandler << h`
			`do_transaction_check(h)`
			`end`

			`def test_no_mu`
			`h = ClientAuthHeaderHandler.new('NaHi', 'passwd', true)`
			`@client.headerhandler << h`
			`@client.headerhandler << DummyHeaderHandler.new(false)`
			`do_transaction_check(h)`
			`end`

			`def test_mu`
			`h = ClientAuthHeaderHandler.new('NaHi', 'passwd', true)`
			`@client.headerhandler << h`
			`@client.headerhandler << (h2 = DummyHeaderHandler.new(true))`
			`assert_raise(SOAP::UnhandledMustUnderstandHeaderError) do`
			`assert_equal("deposit 150 OK", @client.deposit(150))`
			`end`
			`@client.headerhandler.delete(h2)`
			`@client.headerhandler << (h2 = DummyHeaderHandler.new(false))`
			`do_transaction_check(h)`
			`end`

			`def do_transaction_check(h)`
			`assert_equal("deposit 150 OK", @client.deposit(150))`
			`serversess = AuthHeaderPortServer::ServerAuthHeaderHandler.sessions[h.sessionid]`
			`assert_equal("NaHi", serversess[0])`
			`assert_equal("withdrawal 120 OK", @client.withdrawal(120))`
			`serversess = AuthHeaderPortServer::ServerAuthHeaderHandler.sessions[h.sessionid]`
			`assert_equal("NaHi", serversess[0])`
			`end`

			`def test_authfailure`
			`h = ClientAuthHeaderHandler.new('NaHi', 'pa', false)`
			`@client.headerhandler << h`
			`assert_raises(RuntimeError) do`
			`@client.deposit(150)`
			`end`
			`end`
			`end`


			`end`
			`end`