| /* |
| * |
| * Copyright 2015, Google Inc. |
| * All rights reserved. |
| * |
| * Redistribution and use in source and binary forms, with or without |
| * modification, are permitted provided that the following conditions are |
| * met: |
| * |
| * * Redistributions of source code must retain the above copyright |
| * notice, this list of conditions and the following disclaimer. |
| * * Redistributions in binary form must reproduce the above |
| * copyright notice, this list of conditions and the following disclaimer |
| * in the documentation and/or other materials provided with the |
| * distribution. |
| * * Neither the name of Google Inc. nor the names of its |
| * contributors may be used to endorse or promote products derived from |
| * this software without specific prior written permission. |
| * |
| * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS |
| * "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT |
| * LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR |
| * A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT |
| * OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, |
| * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT |
| * LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, |
| * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY |
| * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT |
| * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE |
| * OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. |
| * |
| */ |
| |
| 'use strict'; |
| |
| var assert = require('assert'); |
| var fs = require('fs'); |
| var path = require('path'); |
| |
| var grpc = require('..'); |
| |
| /** |
| * This is used for testing functions with multiple asynchronous calls that |
| * can happen in different orders. This should be passed the number of async |
| * function invocations that can occur last, and each of those should call this |
| * function's return value |
| * @param {function()} done The function that should be called when a test is |
| * complete. |
| * @param {number} count The number of calls to the resulting function if the |
| * test passes. |
| * @return {function()} The function that should be called at the end of each |
| * sequence of asynchronous functions. |
| */ |
| function multiDone(done, count) { |
| return function() { |
| count -= 1; |
| if (count <= 0) { |
| done(); |
| } |
| }; |
| } |
| |
| var fakeSuccessfulGoogleCredentials = { |
| getRequestMetadata: function(service_url, callback) { |
| setTimeout(function() { |
| callback(null, {Authorization: 'success'}); |
| }, 0); |
| } |
| }; |
| |
| var fakeFailingGoogleCredentials = { |
| getRequestMetadata: function(service_url, callback) { |
| setTimeout(function() { |
| callback(new Error("Authorization failure")); |
| }, 0); |
| } |
| }; |
| |
| describe('client credentials', function() { |
| var Client; |
| var server; |
| var port; |
| var client_ssl_creds; |
| var client_options = {}; |
| before(function() { |
| var proto = grpc.load(__dirname + '/test_service.proto'); |
| server = new grpc.Server(); |
| server.addProtoService(proto.TestService.service, { |
| unary: function(call, cb) { |
| call.sendMetadata(call.metadata); |
| cb(null, {}); |
| }, |
| clientStream: function(stream, cb){ |
| stream.on('data', function(data) {}); |
| stream.on('end', function() { |
| stream.sendMetadata(stream.metadata); |
| cb(null, {}); |
| }); |
| }, |
| serverStream: function(stream) { |
| stream.sendMetadata(stream.metadata); |
| stream.end(); |
| }, |
| bidiStream: function(stream) { |
| stream.on('data', function(data) {}); |
| stream.on('end', function() { |
| stream.sendMetadata(stream.metadata); |
| stream.end(); |
| }); |
| } |
| }); |
| var key_path = path.join(__dirname, './data/server1.key'); |
| var pem_path = path.join(__dirname, './data/server1.pem'); |
| var key_data = fs.readFileSync(key_path); |
| var pem_data = fs.readFileSync(pem_path); |
| var creds = grpc.ServerCredentials.createSsl(null, |
| [{private_key: key_data, |
| cert_chain: pem_data}]); |
| //creds = grpc.ServerCredentials.createInsecure(); |
| port = server.bind('localhost:0', creds); |
| server.start(); |
| |
| Client = proto.TestService; |
| var ca_path = path.join(__dirname, '../test/data/ca.pem'); |
| var ca_data = fs.readFileSync(ca_path); |
| client_ssl_creds = grpc.credentials.createSsl(ca_data); |
| var host_override = 'foo.test.google.fr'; |
| client_options['grpc.ssl_target_name_override'] = host_override; |
| client_options['grpc.default_authority'] = host_override; |
| }); |
| after(function() { |
| server.forceShutdown(); |
| }); |
| it('Should accept SSL creds for a client', function(done) { |
| var client = new Client('localhost:' + port, client_ssl_creds, |
| client_options); |
| client.unary({}, function(err, data) { |
| assert.ifError(err); |
| done(); |
| }); |
| }); |
| it('Should update metadata with SSL creds', function(done) { |
| var metadataUpdater = function(service_url, callback) { |
| var metadata = new grpc.Metadata(); |
| metadata.set('plugin_key', 'plugin_value'); |
| callback(null, metadata); |
| }; |
| var creds = grpc.credentials.createFromMetadataGenerator(metadataUpdater); |
| var combined_creds = grpc.credentials.combineChannelCredentials( |
| client_ssl_creds, creds); |
| var client = new Client('localhost:' + port, combined_creds, |
| client_options); |
| var call = client.unary({}, function(err, data) { |
| assert.ifError(err); |
| }); |
| call.on('metadata', function(metadata) { |
| assert.deepEqual(metadata.get('plugin_key'), ['plugin_value']); |
| done(); |
| }); |
| }); |
| it('Should update metadata for two simultaneous calls', function(done) { |
| done = multiDone(done, 2); |
| var metadataUpdater = function(service_url, callback) { |
| var metadata = new grpc.Metadata(); |
| metadata.set('plugin_key', 'plugin_value'); |
| callback(null, metadata); |
| }; |
| var creds = grpc.credentials.createFromMetadataGenerator(metadataUpdater); |
| var combined_creds = grpc.credentials.combineChannelCredentials( |
| client_ssl_creds, creds); |
| var client = new Client('localhost:' + port, combined_creds, |
| client_options); |
| var call = client.unary({}, function(err, data) { |
| assert.ifError(err); |
| }); |
| call.on('metadata', function(metadata) { |
| assert.deepEqual(metadata.get('plugin_key'), ['plugin_value']); |
| done(); |
| }); |
| var call2 = client.unary({}, function(err, data) { |
| assert.ifError(err); |
| }); |
| call2.on('metadata', function(metadata) { |
| assert.deepEqual(metadata.get('plugin_key'), ['plugin_value']); |
| done(); |
| }); |
| }); |
| it.skip('should propagate errors that the updater emits', function(done) { |
| var metadataUpdater = function(service_url, callback) { |
| var error = new Error('Authentication error'); |
| error.code = grpc.status.UNAUTHENTICATED; |
| callback(error); |
| }; |
| var creds = grpc.credentials.createFromMetadataGenerator(metadataUpdater); |
| var combined_creds = grpc.credentials.combineChannelCredentials( |
| client_ssl_creds, creds); |
| var client = new Client('localhost:' + port, combined_creds, |
| client_options); |
| client.unary({}, function(err, data) { |
| assert(err); |
| assert.strictEqual(err.message, 'Authentication error'); |
| assert.strictEqual(err.code, grpc.status.UNAUTHENTICATED); |
| done(); |
| }); |
| }); |
| it('should successfully wrap a Google credential', function(done) { |
| var creds = grpc.credentials.createFromGoogleCredential( |
| fakeSuccessfulGoogleCredentials); |
| var combined_creds = grpc.credentials.combineChannelCredentials( |
| client_ssl_creds, creds); |
| var client = new Client('localhost:' + port, combined_creds, |
| client_options); |
| var call = client.unary({}, function(err, data) { |
| assert.ifError(err); |
| }); |
| call.on('metadata', function(metadata) { |
| assert.deepEqual(metadata.get('authorization'), ['success']); |
| done(); |
| }); |
| }); |
| it.skip('should get an error from a Google credential', function(done) { |
| var creds = grpc.credentials.createFromGoogleCredential( |
| fakeFailingGoogleCredentials); |
| var combined_creds = grpc.credentials.combineChannelCredentials( |
| client_ssl_creds, creds); |
| var client = new Client('localhost:' + port, combined_creds, |
| client_options); |
| client.unary({}, function(err, data) { |
| assert(err); |
| assert.strictEqual(err.message, 'Authorization failure'); |
| done(); |
| }); |
| }); |
| describe('Per-rpc creds', function() { |
| var client; |
| var updater_creds; |
| before(function() { |
| client = new Client('localhost:' + port, client_ssl_creds, |
| client_options); |
| var metadataUpdater = function(service_url, callback) { |
| var metadata = new grpc.Metadata(); |
| metadata.set('plugin_key', 'plugin_value'); |
| callback(null, metadata); |
| }; |
| updater_creds = grpc.credentials.createFromMetadataGenerator( |
| metadataUpdater); |
| }); |
| it('Should update metadata on a unary call', function(done) { |
| var call = client.unary({}, function(err, data) { |
| assert.ifError(err); |
| }, null, {credentials: updater_creds}); |
| call.on('metadata', function(metadata) { |
| assert.deepEqual(metadata.get('plugin_key'), ['plugin_value']); |
| done(); |
| }); |
| }); |
| it('should update metadata on a client streaming call', function(done) { |
| var call = client.clientStream(function(err, data) { |
| assert.ifError(err); |
| }, null, {credentials: updater_creds}); |
| call.on('metadata', function(metadata) { |
| assert.deepEqual(metadata.get('plugin_key'), ['plugin_value']); |
| done(); |
| }); |
| call.end(); |
| }); |
| it('should update metadata on a server streaming call', function(done) { |
| var call = client.serverStream({}, null, {credentials: updater_creds}); |
| call.on('data', function() {}); |
| call.on('metadata', function(metadata) { |
| assert.deepEqual(metadata.get('plugin_key'), ['plugin_value']); |
| done(); |
| }); |
| }); |
| it('should update metadata on a bidi streaming call', function(done) { |
| var call = client.bidiStream(null, {credentials: updater_creds}); |
| call.on('data', function() {}); |
| call.on('metadata', function(metadata) { |
| assert.deepEqual(metadata.get('plugin_key'), ['plugin_value']); |
| done(); |
| }); |
| call.end(); |
| }); |
| it('should be able to use multiple plugin credentials', function(done) { |
| var altMetadataUpdater = function(service_url, callback) { |
| var metadata = new grpc.Metadata(); |
| metadata.set('other_plugin_key', 'other_plugin_value'); |
| callback(null, metadata); |
| }; |
| var alt_updater_creds = grpc.credentials.createFromMetadataGenerator( |
| altMetadataUpdater); |
| var combined_updater = grpc.credentials.combineCallCredentials( |
| updater_creds, alt_updater_creds); |
| var call = client.unary({}, function(err, data) { |
| assert.ifError(err); |
| }, null, {credentials: combined_updater}); |
| call.on('metadata', function(metadata) { |
| assert.deepEqual(metadata.get('plugin_key'), ['plugin_value']); |
| assert.deepEqual(metadata.get('other_plugin_key'), |
| ['other_plugin_value']); |
| done(); |
| }); |
| }); |
| }); |
| }); |