Home Explore Help
Register Sign In
lqb
/
imgproxy
mirror of https://github.com/imgproxy/imgproxy.git
1
0
Fork 0
Files Issues 0 Wiki
Tree: 355e3c506e
Branches Tags
imgproxy
/
security
/
signature_test.go

signature_test.go 2.1 KB
History Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283848586 
  1. package security
    2. 

  2. 

  3. import (
    4. 

  4. 	"testing"
    5. 

  5. 

  6. 	"github.com/stretchr/testify/suite"
    7. 

  7. 

  8. 	"github.com/imgproxy/imgproxy/v3/config"
    9. 

  9. 	"github.com/imgproxy/imgproxy/v3/testutil"
    10. 

  10. )
    11. 

  11. 

  12. type SignatureTestSuite struct {
    13. 

  13. 	testutil.LazySuite
    14. 

  14. 

  15. 	config   testutil.LazyObj[*Config]
    16. 

  16. 	security testutil.LazyObj[*Checker]
    17. 

  17. }
    18. 

  18. 

  19. func (s *SignatureTestSuite) SetupSuite() {
    20. 

  20. 	s.config, _ = testutil.NewLazySuiteObj(
    21. 

  21. 		s,
    22. 

  22. 		func() (*Config, error) {
    23. 

  23. 			c := NewDefaultConfig()
    24. 

  24. 			return &c, nil
    25. 

  25. 		},
    26. 

  26. 	)
    27. 

  27. 

  28. 	s.security, _ = testutil.NewLazySuiteObj(
    29. 

  29. 		s,
    30. 

  30. 		func() (*Checker, error) {
    31. 

  31. 			return New(s.config())
    32. 

  32. 		},
    33. 

  33. 	)
    34. 

  34. }
    35. 

  35. 

  36. func (s *SignatureTestSuite) SetupTest() {
    37. 

  37. 	config.Reset()
    38. 

  38. 

  39. 	s.config().Keys = [][]byte{[]byte("test-key")}
    40. 

  40. 	s.config().Salts = [][]byte{[]byte("test-salt")}
    41. 

  41. }
    42. 

  42. 

  43. func (s *SignatureTestSuite) TestVerifySignature() {
    44. 

  44. 	err := s.security().VerifySignature("oWaL7QoW5TsgbuiS9-5-DI8S3Ibbo1gdB2SteJh3a20", "asd")
    45. 

  45. 	s.Require().NoError(err)
    46. 

  46. }
    47. 

  47. 

  48. func (s *SignatureTestSuite) TestVerifySignatureTruncated() {
    49. 

  49. 	s.config().SignatureSize = 8
    50. 

  50. 

  51. 	err := s.security().VerifySignature("oWaL7QoW5Ts", "asd")
    52. 

  52. 	s.Require().NoError(err)
    53. 

  53. }
    54. 

  54. 

  55. func (s *SignatureTestSuite) TestVerifySignatureInvalid() {
    56. 

  56. 	err := s.security().VerifySignature("oWaL7QoW5Ts", "asd")
    57. 

  57. 	s.Require().Error(err)
    58. 

  58. }
    59. 

  59. 

  60. func (s *SignatureTestSuite) TestVerifySignatureMultiplePairs() {
    61. 

  61. 	s.config().Keys = append(s.config().Keys, []byte("test-key2"))
    62. 

  62. 	s.config().Salts = append(s.config().Salts, []byte("test-salt2"))
    63. 

  63. 

  64. 	err := s.security().VerifySignature("jYz1UZ7j1BCdSzH3pZhaYf0iuz0vusoOTdqJsUT6WXI", "asd")
    65. 

  65. 	s.Require().NoError(err)
    66. 

  66. 

  67. 	err = s.security().VerifySignature("oWaL7QoW5TsgbuiS9-5-DI8S3Ibbo1gdB2SteJh3a20", "asd")
    68. 

  68. 	s.Require().NoError(err)
    69. 

  69. 

  70. 	err = s.security().VerifySignature("dtLwhdnPPis", "asd")
    71. 

  71. 	s.Require().Error(err)
    72. 

  72. }
    73. 

  73. 

  74. func (s *SignatureTestSuite) TestVerifySignatureTrusted() {
    75. 

  75. 	s.config().TrustedSignatures = []string{"truested"}
    76. 

  76. 

  77. 	err := s.security().VerifySignature("truested", "asd")
    78. 

  78. 	s.Require().NoError(err)
    79. 

  79. 

  80. 	err = s.security().VerifySignature("untrusted", "asd")
    81. 

  81. 	s.Require().Error(err)
    82. 

  82. }
    83. 

  83. 

  84. func TestSignature(t *testing.T) {
    85. 

  85. 	suite.Run(t, new(SignatureTestSuite))
    86. 

  86. }
    87.