public_git
/
oauth2-proxy
mirror of https://github.com/oauth2-proxy/oauth2-proxy.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
oauth2-proxy/pkg/sessions/redis/redis_store_test.go

432 lines
13 KiB
Go
Raw Blame History

package redis
import (
"time"
"github.com/Bose/minisentinel"
"github.com/alicebob/miniredis/v2"
"github.com/oauth2-proxy/oauth2-proxy/v7/pkg/apis/options"
sessionsapi "github.com/oauth2-proxy/oauth2-proxy/v7/pkg/apis/sessions"
"github.com/oauth2-proxy/oauth2-proxy/v7/pkg/sessions/persistence"
"github.com/oauth2-proxy/oauth2-proxy/v7/pkg/sessions/tests"
. "github.com/onsi/ginkgo/v2"
. "github.com/onsi/gomega"
)
const (
redisUsername = "testuser"
redisPassword = "0123456789abcdefghijklmnopqrstuv"
)
var _ = Describe("Redis SessionStore Tests", func() {
Describe("Redis SessionStore Creation", func() {
// helper interface to allow us to close client connections
// All non-nil redis clients should implement this
type closer interface {
Close() error
}
var mr *miniredis.Miniredis
var ss sessionsapi.SessionStore
BeforeEach(func() {
var err error
mr, err = miniredis.Run()
Expect(err).ToNot(HaveOccurred())
})
AfterEach(func() {
mr.Close()
})
JustAfterEach(func() {
// Release any connections immediately after the test ends
if redisManager, ok := ss.(*persistence.Manager); ok {
if redisManager.Store.(*SessionStore).Client != nil {
Expect(redisManager.Store.(*SessionStore).Client.(closer).Close()).To(Succeed())
}
}
})
const redisProtocol = "redis://"
tests.RunSessionStoreTests(
func(opts *options.SessionOptions, cookieOpts *options.Cookie) (sessionsapi.SessionStore, error) {
// Set the connection URL
opts.Type = options.RedisSessionStoreType
opts.Redis.ConnectionURL = redisProtocol + mr.Addr()
// Capture the session store so that we can close the client
var err error
ss, err = NewRedisSessionStore(opts, cookieOpts)
return ss, err
},
func(d time.Duration) error {
mr.FastForward(d)
return nil
},
)
Context("with sentinel", func() {
var ms *minisentinel.Sentinel
BeforeEach(func() {
ms = minisentinel.NewSentinel(mr)
Expect(ms.Start()).To(Succeed())
})
tests.RunSessionStoreTests(
func(opts *options.SessionOptions, cookieOpts *options.Cookie) (sessionsapi.SessionStore, error) {
// Set the sentinel connection URL
sentinelAddr := redisProtocol + ms.Addr()
opts.Type = options.RedisSessionStoreType
opts.Redis.SentinelConnectionURLs = []string{sentinelAddr}
opts.Redis.UseSentinel = true
opts.Redis.SentinelMasterName = ms.MasterInfo().Name
// Capture the session store so that we can close the client
var err error
ss, err = NewRedisSessionStore(opts, cookieOpts)
return ss, err
},
func(d time.Duration) error {
mr.FastForward(d)
return nil
},
)
Context("with custom sentinel DB", func() {
tests.RunSessionStoreTests(
func(opts *options.SessionOptions, cookieOpts *options.Cookie) (sessionsapi.SessionStore, error) {
// Set the sentinel connection URL with custom DB
sentinelAddr := redisProtocol + ms.Addr()
opts.Type = options.RedisSessionStoreType
opts.Redis.SentinelConnectionURLs = []string{sentinelAddr}
opts.Redis.UseSentinel = true
opts.Redis.SentinelMasterName = ms.MasterInfo().Name
opts.Redis.SentinelDB = 1
// Capture the session store so that we can close the client
var err error
ss, err = NewRedisSessionStore(opts, cookieOpts)
return ss, err
},
func(d time.Duration) error {
mr.FastForward(d)
return nil
},
)
})
})
Context("with cluster", func() {
tests.RunSessionStoreTests(
func(opts *options.SessionOptions, cookieOpts *options.Cookie) (sessionsapi.SessionStore, error) {
clusterAddr := redisProtocol + mr.Addr()
opts.Type = options.RedisSessionStoreType
opts.Redis.ClusterConnectionURLs = []string{clusterAddr}
opts.Redis.UseCluster = true
// Capture the session store so that we can close the client
var err error
ss, err = NewRedisSessionStore(opts, cookieOpts)
return ss, err
},
func(d time.Duration) error {
mr.FastForward(d)
return nil
},
)
})
Context("with a redis password", func() {
BeforeEach(func() {
mr.RequireAuth(redisPassword)
})
AfterEach(func() {
mr.RequireAuth("")
})
tests.RunSessionStoreTests(
func(opts *options.SessionOptions, cookieOpts *options.Cookie) (sessionsapi.SessionStore, error) {
// Set the connection URL
opts.Type = options.RedisSessionStoreType
opts.Redis.ConnectionURL = redisProtocol + mr.Addr()
opts.Redis.Password = redisPassword
// Capture the session store so that we can close the client
var err error
ss, err = NewRedisSessionStore(opts, cookieOpts)
return ss, err
},
func(d time.Duration) error {
mr.FastForward(d)
return nil
},
)
Context("with sentinel", func() {
var ms *minisentinel.Sentinel
BeforeEach(func() {
ms = minisentinel.NewSentinel(mr)
Expect(ms.Start()).To(Succeed())
})
tests.RunSessionStoreTests(
func(opts *options.SessionOptions, cookieOpts *options.Cookie) (sessionsapi.SessionStore, error) {
// Set the sentinel connection URL
sentinelAddr := redisProtocol + ms.Addr()
opts.Type = options.RedisSessionStoreType
opts.Redis.SentinelConnectionURLs = []string{sentinelAddr}
opts.Redis.UseSentinel = true
opts.Redis.SentinelMasterName = ms.MasterInfo().Name
opts.Redis.Password = redisPassword
// Capture the session store so that we can close the client
var err error
ss, err = NewRedisSessionStore(opts, cookieOpts)
return ss, err
},
func(d time.Duration) error {
mr.FastForward(d)
return nil
},
)
Context("with custom sentinel DB and password", func() {
tests.RunSessionStoreTests(
func(opts *options.SessionOptions, cookieOpts *options.Cookie) (sessionsapi.SessionStore, error) {
// Set the sentinel connection URL with custom DB and password
sentinelAddr := redisProtocol + ms.Addr()
opts.Type = options.RedisSessionStoreType
opts.Redis.SentinelConnectionURLs = []string{sentinelAddr}
opts.Redis.UseSentinel = true
opts.Redis.SentinelMasterName = ms.MasterInfo().Name
opts.Redis.Password = redisPassword
opts.Redis.SentinelDB = 2
// Capture the session store so that we can close the client
var err error
ss, err = NewRedisSessionStore(opts, cookieOpts)
return ss, err
},
func(d time.Duration) error {
mr.FastForward(d)
return nil
},
)
})
})
Context("with cluster", func() {
tests.RunSessionStoreTests(
func(opts *options.SessionOptions, cookieOpts *options.Cookie) (sessionsapi.SessionStore, error) {
clusterAddr := redisProtocol + mr.Addr()
opts.Type = options.RedisSessionStoreType
opts.Redis.ClusterConnectionURLs = []string{clusterAddr}
opts.Redis.UseCluster = true
opts.Redis.Password = redisPassword
// Capture the session store so that we can close the client
var err error
ss, err = NewRedisSessionStore(opts, cookieOpts)
return ss, err
},
func(d time.Duration) error {
mr.FastForward(d)
return nil
},
)
})
})
Context("with a redis username and password", func() {
BeforeEach(func() {
mr.RequireUserAuth(redisUsername, redisPassword)
})
AfterEach(func() {
mr.RequireUserAuth("", "")
})
tests.RunSessionStoreTests(
func(opts *options.SessionOptions, cookieOpts *options.Cookie) (sessionsapi.SessionStore, error) {
// Set the connection URL
opts.Type = options.RedisSessionStoreType
opts.Redis.ConnectionURL = "redis://" + redisUsername + "@" + mr.Addr()
opts.Redis.Password = redisPassword
// Capture the session store so that we can close the client
var err error
ss, err = NewRedisSessionStore(opts, cookieOpts)
return ss, err
},
func(d time.Duration) error {
mr.FastForward(d)
return nil
},
)
Context("with cluster", func() {
tests.RunSessionStoreTests(
func(opts *options.SessionOptions, cookieOpts *options.Cookie) (sessionsapi.SessionStore, error) {
clusterAddr := "redis://" + redisUsername + "@" + mr.Addr()
opts.Type = options.RedisSessionStoreType
opts.Redis.ClusterConnectionURLs = []string{clusterAddr}
opts.Redis.UseCluster = true
opts.Redis.Username = redisUsername
opts.Redis.Password = redisPassword
// Capture the session store so that we can close the client
var err error
ss, err = NewRedisSessionStore(opts, cookieOpts)
return ss, err
},
func(d time.Duration) error {
mr.FastForward(d)
return nil
},
)
})
})
})
Describe("Redis URL Parsing", func() {
It("should parse valid redis URL", func() {
addrs, opts, err := parseRedisURLs([]string{"redis://localhost:6379"})
Expect(err).ToNot(HaveOccurred())
Expect(addrs).To(Equal([]string{"localhost:6379"}))
Expect(opts).ToNot(BeNil())
Expect(opts.Addr).To(Equal("localhost:6379"))
})
It("should return error for invalid redis URL", func() {
addrs, opts, err := parseRedisURLs([]string{"invalid://url"})
Expect(err).To(HaveOccurred())
Expect(err.Error()).To(ContainSubstring("unable to parse redis url"))
Expect(err.Error()).To(Not(ContainSubstring("no redis urls provided")))
Expect(addrs).To(BeNil())
Expect(opts).To(BeNil())
})
It("should return error when no URLs provided", func() {
addrs, opts, err := parseRedisURLs([]string{})
Expect(err).To(HaveOccurred())
Expect(err.Error()).To(Equal("unable to parse redis urls: no redis urls provided"))
Expect(addrs).To(BeNil())
Expect(opts).To(BeNil())
})
})
Describe("Sentinel DB Configuration", func() {
var mr *miniredis.Miniredis
var ms *minisentinel.Sentinel
BeforeEach(func() {
var err error
mr, err = miniredis.Run()
Expect(err).ToNot(HaveOccurred())
ms = minisentinel.NewSentinel(mr)
Expect(ms.Start()).To(Succeed())
})
AfterEach(func() {
mr.Close()
})
It("should use default DB 0 when SentinelDB is not set", func() {
opts := options.RedisStoreOptions{
SentinelConnectionURLs: []string{"redis://" + ms.Addr()},
UseSentinel: true,
SentinelMasterName: ms.MasterInfo().Name,
SentinelDB: 0, // Default value
}
client, err := NewRedisClient(opts)
Expect(err).ToNot(HaveOccurred())
Expect(client).ToNot(BeNil())
// Verify we can create a session store successfully
sessionStore := &SessionStore{Client: client}
Expect(sessionStore).ToNot(BeNil())
// Clean up
if closer, ok := client.(interface{ Close() error }); ok {
Expect(closer.Close()).To(Succeed())
}
})
It("should use custom SentinelDB value when set", func() {
testDB := 5
opts := options.RedisStoreOptions{
SentinelConnectionURLs: []string{"redis://" + ms.Addr()},
UseSentinel: true,
SentinelMasterName: ms.MasterInfo().Name,
SentinelDB: testDB,
}
client, err := NewRedisClient(opts)
Expect(err).ToNot(HaveOccurred())
Expect(client).ToNot(BeNil())
// Verify we can create a session store successfully
sessionStore := &SessionStore{Client: client}
Expect(sessionStore).ToNot(BeNil())
// Clean up
if closer, ok := client.(interface{ Close() error }); ok {
Expect(closer.Close()).To(Succeed())
}
})
It("should work with maximum valid DB number", func() {
maxDB := 15 // Redis supports DB 0-15 by default
opts := options.RedisStoreOptions{
SentinelConnectionURLs: []string{"redis://" + ms.Addr()},
UseSentinel: true,
SentinelMasterName: ms.MasterInfo().Name,
SentinelDB: maxDB,
}
client, err := NewRedisClient(opts)
Expect(err).ToNot(HaveOccurred())
Expect(client).ToNot(BeNil())
// Verify we can create a session store successfully
sessionStore := &SessionStore{Client: client}
Expect(sessionStore).ToNot(BeNil())
// Clean up
if closer, ok := client.(interface{ Close() error }); ok {
Expect(closer.Close()).To(Succeed())
}
})
It("should handle SentinelDB with authentication", func() {
testDB := 3
testPassword := "test-password"
opts := options.RedisStoreOptions{
SentinelConnectionURLs: []string{"redis://" + ms.Addr()},
UseSentinel: true,
SentinelMasterName: ms.MasterInfo().Name,
SentinelDB: testDB,
Password: testPassword,
}
client, err := NewRedisClient(opts)
Expect(err).ToNot(HaveOccurred())
Expect(client).ToNot(BeNil())
// Verify we can create a session store successfully
sessionStore := &SessionStore{Client: client}
Expect(sessionStore).ToNot(BeNil())
// Clean up
if closer, ok := client.(interface{ Close() error }); ok {
Expect(closer.Close()).To(Succeed())
}
})
})
})
Reference in New Issue View Git Blame Copy Permalink