mirror/kopia
1
0
Fork 0
mirror of https://github.com/kopia/kopia.git synced 2025-12-23 22:57:50 -05:00
Code Issues Packages Projects Releases Wiki Activity
Files
master
kopia/cli/command_user_hash_password_test.go
Julio López 9c5fc842a1 feat(cli): add server user set-password-hash command (#3974) 
Objectives:
- Facilitate the generation of valid password hashes that can be used with
  the `server user --user-password` CLI command.
- Encapsulate implementation details of password hashing in
  the `user` package.

Adds a new `server user hash-password` CLI command to generate the
hash from a supplied password.

Modifies the `server user set/add --user-password-hash` CLI command
to accept the password hash generated using the `hash-password`
command.

Adds `GetNewProfile(ctx, rep, username)` helper to move implementation
details to the `user` package.

Includes CLI and unit tests.

Cleans up and removes unused functions.
2024-07-11 19:29:06 -07:00

105 lines
3.1 KiB
Go
Raw Permalink Blame History

package cli_test
import (
"math/rand"
"strconv"
"testing"
"github.com/stretchr/testify/require"
"github.com/kopia/kopia/internal/testutil"
"github.com/kopia/kopia/tests/testenv"
)
func TestServerUserHashPassword(t *testing.T) {
const (
userName = "user78"
userHost = "client-host"
userFull = userName + "@" + userHost
)
runner := testenv.NewInProcRunner(t)
e := testenv.NewCLITest(t, testenv.RepoFormatNotImportant, runner)
e.RunAndExpectSuccess(t, "repo", "create", "filesystem", "--path", e.RepoDir, "--override-username", "server", "--override-hostname", "host")
t.Cleanup(func() {
e.RunAndExpectSuccess(t, "repo", "disconnect")
})
userPassword := "bad-password-" + strconv.Itoa(int(rand.Int31()))
out := e.RunAndExpectSuccess(t, "server", "users", "hash-password", "--user-password", userPassword)
require.Len(t, out, 1)
passwordHash := out[0]
require.NotEmpty(t, passwordHash)
// attempt to create a user with a bad password hash
e.RunAndExpectFailure(t, "server", "users", "add", userFull, "--user-password-hash", "bad-base64")
// create a new user with and set the password using the password hash
e.RunAndExpectSuccess(t, "server", "users", "add", userFull, "--user-password-hash", passwordHash)
// start server to test accessing the server with user created above
var sp testutil.ServerParameters
wait, kill := e.RunAndProcessStderr(t, sp.ProcessOutput,
"server", "start",
"--address=localhost:0",
"--tls-generate-cert",
"--random-server-control-password",
"--shutdown-grace-period", "100ms",
)
t.Cleanup(func() {
kill()
wait()
t.Log("server stopped")
})
t.Logf("detected server parameters %#v", sp)
// connect to the server repo using a client with the user created above
cr := testenv.NewInProcRunner(t)
clientEnv := testenv.NewCLITest(t, testenv.RepoFormatNotImportant, cr)
delete(clientEnv.Environment, "KOPIA_PASSWORD")
clientEnv.RunAndExpectSuccess(t, "repo", "connect", "server",
"--url", sp.BaseURL,
"--server-cert-fingerprint", sp.SHA256Fingerprint,
"--override-username", userName,
"--override-hostname", userHost,
"--password", userPassword)
clientEnv.RunAndExpectSuccess(t, "repo", "disconnect")
userPassword2 := "bad-password-" + strconv.Itoa(int(rand.Int31()))
out = e.RunAndExpectSuccess(t, "server", "users", "hash-password", "--user-password", userPassword2)
require.Len(t, out, 1)
passwordHash2 := out[0]
require.NotEmpty(t, passwordHash2)
// set new user password using the password hash and refresh the server
e.RunAndExpectSuccess(t, "server", "users", "set", userFull, "--user-password-hash", passwordHash2)
e.RunAndExpectSuccess(t, "server", "refresh",
"--address", sp.BaseURL,
"--server-cert-fingerprint", sp.SHA256Fingerprint,
"--server-control-password", sp.ServerControlPassword)
// attempt connecting with the new password
clientEnv.RunAndExpectSuccess(t, "repo", "connect", "server",
"--url", sp.BaseURL,
"--server-cert-fingerprint", sp.SHA256Fingerprint,
"--override-username", userName,
"--override-hostname", userHost,
"--password", userPassword2)
clientEnv.RunAndExpectSuccess(t, "repo", "disconnect")
}
Reference in New Issue View Git Blame Copy Permalink