Commit | Line | Data |
007935b8 |
1 | #!/usr/bin/perl |
007935b8 |
2 | use strict; |
3 | use warnings; |
007935b8 |
4 | use Test::More; |
007935b8 |
5 | BEGIN { |
6 | eval { require Test::WWW::Mechanize::Catalyst } |
7 | or plan skip_all => |
8 | "Test::WWW::Mechanize::Catalyst is needed for this test"; |
5b51e987 |
9 | eval { require Catalyst::Plugin::Cache } |
007935b8 |
10 | or plan skip_all => |
5b51e987 |
11 | "Catalyst::Plugin::Cache is needed for this test"; |
513d8ab6 |
12 | eval { require Cache::FileCache } |
5b51e987 |
13 | or plan skip_all => |
14 | "Cache::FileCache is needed for this test"; |
c5a1fa88 |
15 | plan tests => 8; |
007935b8 |
16 | } |
c5a1fa88 |
17 | use Digest::MD5; |
007935b8 |
18 | use HTTP::Request; |
007935b8 |
19 | { |
007935b8 |
20 | package AuthTestApp; |
21 | use Catalyst qw/ |
22 | Authentication |
5b51e987 |
23 | Cache |
007935b8 |
24 | /; |
007935b8 |
25 | use Test::More; |
513d8ab6 |
26 | our %users; |
007935b8 |
27 | sub moose : Local { |
28 | my ( $self, $c ) = @_; |
513d8ab6 |
29 | #$c->authenticate( { realm => 'testrealm@host.com' } ); |
30 | $c->authenticate(); |
007935b8 |
31 | $c->res->body( $c->user->id ); |
32 | } |
c5a1fa88 |
33 | my $digest_pass = Digest::MD5->new; |
34 | $digest_pass->add('Mufasa2:testrealm@host.com:Circle Of Life'); |
35 | %users = ( |
36 | Mufasa => { pass => "Circle Of Life", }, |
37 | Mufasa2 => { pass => $digest_pass->hexdigest, }, |
38 | ); |
5b51e987 |
39 | __PACKAGE__->config->{cache}{backend} = { |
40 | class => 'Cache::FileCache', |
41 | }; |
513d8ab6 |
42 | __PACKAGE__->config( authentication => { |
43 | default_realm => 'testrealm@host.com', |
44 | realms => { |
45 | 'testrealm@host.com' => { |
46 | store => { |
47 | class => 'Minimal', |
48 | users => \%users, |
49 | }, |
50 | credential => { |
51 | class => 'HTTP', |
52 | type => 'digest', |
490754a8 |
53 | password_type => 'clear', |
54 | password_field => 'pass' |
513d8ab6 |
55 | }, |
56 | }, |
57 | }, |
58 | }); |
007935b8 |
59 | __PACKAGE__->setup; |
60 | } |
007935b8 |
61 | use Test::WWW::Mechanize::Catalyst qw/AuthTestApp/; |
a14203f8 |
62 | |
c5a1fa88 |
63 | sub do_test { |
64 | my $username = shift; |
65 | my $mech = Test::WWW::Mechanize::Catalyst->new; |
66 | $mech->get("http://localhost/moose"); |
67 | is( $mech->status, 401, "status is 401" ); |
68 | my $www_auth = $mech->res->headers->header('WWW-Authenticate'); |
69 | my %www_auth_params = map { |
70 | my @key_val = split /=/, $_, 2; |
71 | $key_val[0] = lc $key_val[0]; |
72 | $key_val[1] =~ s{"}{}g; # remove the quotes |
73 | @key_val; |
74 | } split /, /, substr( $www_auth, 7 ); #7 == length "Digest " |
75 | $mech->content_lacks( "foo", "no output" ); |
76 | my $response = ''; |
77 | { |
78 | my $password = 'Circle Of Life'; |
79 | my $realm = $www_auth_params{realm}; |
80 | my $nonce = $www_auth_params{nonce}; |
81 | my $cnonce = '0a4f113b'; |
82 | my $opaque = $www_auth_params{opaque}; |
83 | my $nc = '00000001'; |
84 | my $method = 'GET'; |
85 | my $qop = 'auth'; |
86 | my $uri = '/moose'; |
87 | my $ctx = Digest::MD5->new; |
88 | $ctx->add( join( ':', $username, $realm, $password ) ); |
89 | my $A1_digest = $ctx->hexdigest; |
90 | $ctx = Digest::MD5->new; |
91 | $ctx->add( join( ':', $method, $uri ) ); |
92 | my $A2_digest = $ctx->hexdigest; |
93 | my $digest = Digest::MD5::md5_hex( |
94 | join( ':', |
95 | $A1_digest, $nonce, $qop ? ( $nc, $cnonce, $qop ) : (), $A2_digest ) |
96 | ); |
97 | |
98 | $response = qq{Digest username="$username", realm="$realm", nonce="$nonce", uri="$uri", qop=$qop, nc=$nc, cnonce="$cnonce", response="$digest", opaque="$opaque"}; |
99 | } |
100 | my $r = HTTP::Request->new( GET => "http://localhost/moose" ); |
101 | $mech->request($r); |
102 | $r->headers->push_header( Authorization => $response ); |
103 | $mech->request($r); |
104 | is( $mech->status, 200, "status is 200" ); |
105 | $mech->content_contains( $username, "Mufasa output" ); |
007935b8 |
106 | } |
513d8ab6 |
107 | |
c5a1fa88 |
108 | do_test('Mufasa'); |
109 | do_test('Mufasa2'); |