projects / catagits/Catalyst-Authentication-Credential-HTTP.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | history | HEAD
Checking in changes prior to tagging of version 1.004. Changelog diff is:
[catagits/Catalyst-Authentication-Credential-HTTP.git] / t / live_app_digest.t
CommitLineData
007935b8 1#!/usr/bin/perl
007935b8 2use strict;
3use warnings;
007935b8 4use Test::More;
007935b8 5BEGIN {
6 eval { require Test::WWW::Mechanize::Catalyst }
7 or plan skip_all =>
8 "Test::WWW::Mechanize::Catalyst is needed for this test";
5b51e987 9 eval { require Catalyst::Plugin::Cache }
007935b8 10 or plan skip_all =>
5b51e987 11 "Catalyst::Plugin::Cache is needed for this test";
513d8ab6 12 eval { require Cache::FileCache }
5b51e987 13 or plan skip_all =>
14 "Cache::FileCache is needed for this test";
c5a1fa88 15 plan tests => 8;
007935b8 16}
c5a1fa88 17use Digest::MD5;
007935b8 18use HTTP::Request;
007935b8 19{
007935b8 20 package AuthTestApp;
21 use Catalyst qw/
22 Authentication
5b51e987 23 Cache
007935b8 24 /;
007935b8 25 use Test::More;
513d8ab6 26 our %users;
007935b8 27 sub moose : Local {
28 my ( $self, $c ) = @_;
513d8ab6 29 #$c->authenticate( { realm => 'testrealm@host.com' } );
30 $c->authenticate();
007935b8 31 $c->res->body( $c->user->id );
32 }
c5a1fa88 33 my $digest_pass = Digest::MD5->new;
34 $digest_pass->add('Mufasa2:testrealm@host.com:Circle Of Life');
35 %users = (
36 Mufasa => { pass => "Circle Of Life", },
37 Mufasa2 => { pass => $digest_pass->hexdigest, },
38 );
5b51e987 39 __PACKAGE__->config->{cache}{backend} = {
40 class => 'Cache::FileCache',
41 };
513d8ab6 42 __PACKAGE__->config( authentication => {
43 default_realm => 'testrealm@host.com',
44 realms => {
45 'testrealm@host.com' => {
46 store => {
47 class => 'Minimal',
48 users => \%users,
49 },
50 credential => {
51 class => 'HTTP',
52 type => 'digest',
490754a8 53 password_type => 'clear',
54 password_field => 'pass'
513d8ab6 55 },
56 },
57 },
58 });
007935b8 59 __PACKAGE__->setup;
60}
007935b8 61use Test::WWW::Mechanize::Catalyst qw/AuthTestApp/;
a14203f8 62
c5a1fa88 63sub do_test {
64 my $username = shift;
65 my $mech = Test::WWW::Mechanize::Catalyst->new;
66 $mech->get("http://localhost/moose");
67 is( $mech->status, 401, "status is 401" );
68 my $www_auth = $mech->res->headers->header('WWW-Authenticate');
69 my %www_auth_params = map {
70 my @key_val = split /=/, $_, 2;
71 $key_val[0] = lc $key_val[0];
72 $key_val[1] =~ s{"}{}g; # remove the quotes
73 @key_val;
74 } split /, /, substr( $www_auth, 7 ); #7 == length "Digest "
75 $mech->content_lacks( "foo", "no output" );
76 my $response = '';
77 {
78 my $password = 'Circle Of Life';
79 my $realm = $www_auth_params{realm};
80 my $nonce = $www_auth_params{nonce};
81 my $cnonce = '0a4f113b';
82 my $opaque = $www_auth_params{opaque};
83 my $nc = '00000001';
84 my $method = 'GET';
85 my $qop = 'auth';
86 my $uri = '/moose';
87 my $ctx = Digest::MD5->new;
88 $ctx->add( join( ':', $username, $realm, $password ) );
89 my $A1_digest = $ctx->hexdigest;
90 $ctx = Digest::MD5->new;
91 $ctx->add( join( ':', $method, $uri ) );
92 my $A2_digest = $ctx->hexdigest;
93 my $digest = Digest::MD5::md5_hex(
94 join( ':',
95 $A1_digest, $nonce, $qop ? ( $nc, $cnonce, $qop ) : (), $A2_digest )
96 );
97
98 $response = qq{Digest username="$username", realm="$realm", nonce="$nonce", uri="$uri", qop=$qop, nc=$nc, cnonce="$cnonce", response="$digest", opaque="$opaque"};
99 }
100 my $r = HTTP::Request->new( GET => "http://localhost/moose" );
101 $mech->request($r);
102 $r->headers->push_header( Authorization => $response );
103 $mech->request($r);
104 is( $mech->status, 200, "status is 200" );
105 $mech->content_contains( $username, "Mufasa output" );
007935b8 106}
513d8ab6 107
c5a1fa88 108do_test('Mufasa');
109do_test('Mufasa2');
git://git.shadowcat.co.uk:catagits/Catalyst-Authentication-Credential-HTTP.git