File Explorer

/proc/self/root/var/runtime/node_modules/@aws-sdk/node_modules/aws-crt/lib/native
This explorer reads the filesystem of the server it runs on, so /workspace/user isn't present here. Browsing and the terminal still work against this server's own disk from /.
0 dirs
33 files
proxy.spec.ts10.1 KB · 249 lines
1/*2 * Copyright Amazon.com, Inc. or its affiliates. All Rights Reserved.3 * SPDX-License-Identifier: Apache-2.0.4 */5 6import {7    ClientTlsContext,8    SocketDomain,9    SocketOptions,10    SocketType,11    TlsContextOptions,12} from "./io";13import {14    HttpClientConnection, HttpHeaders,15    HttpProxyAuthenticationType,16    HttpRequest17} from "./http";18import {ProxyConfig, ProxyTestType} from "@test/proxy";19 20import {AwsIotMqttConnectionConfigBuilder} from "./aws_iot";21import {v4 as uuid} from "uuid";22import {MqttClient} from "./mqtt";23 24import { InputStream } from './io';25import { PassThrough } from "stream";26import { AwsCredentialsProvider, X509CredentialsConfig, AwsSigningConfig, AwsSigningAlgorithm,27        AwsSignatureType, AwsSignedBodyHeaderType, aws_sign_request } from "./auth";28 29 30async function test_proxied_connection(test_type : ProxyTestType, auth_type : HttpProxyAuthenticationType) {31    const promise = new Promise((resolve, reject) => {32        let host = ProxyConfig.get_uri_from_test_type(test_type)33        let connection = new HttpClientConnection(34            undefined,35            host,36            ProxyConfig.get_port_from_test_type(test_type),37            new SocketOptions(SocketType.STREAM, SocketDomain.IPV4, 3000),38            ProxyConfig.get_tls_connection_options_for_test(test_type, host),39            ProxyConfig.create_http_proxy_options_from_environment(test_type, auth_type));40 41        connection.on('connect', () => {42            let request = new HttpRequest(43                "GET",44                '/',45                new HttpHeaders([46                    ['host', host],47                    ['user-agent', 'AWS CRT for NodeJS']48                ])49            );50            let stream = connection.request(request);51            stream.on('response', (status_code, headers) => {52                expect(status_code).toBe(200);53                expect(headers).toBeDefined();54            });55            stream.on('data', (body_data) => {56                expect(body_data.byteLength).toBeGreaterThan(0);57            });58            stream.on('end', () => {59                connection.close();60            });61            stream.on('error', (error) => {62                connection.close();63                console.log(error);64                expect(error).toBeUndefined();65            });66            stream.activate();67        });68        connection.on('close', () => {69            resolve(true);70        });71        connection.on('error', (error) => {72            reject(error);73        });74    });75 76    await expect(promise).resolves.toBeTruthy();77}78 79const conditional_test = (condition : boolean) => condition ? it : it.skip;80 81function is_proxy_environment_enabled() {82    return ProxyConfig.is_valid()83}84 85function is_tls_to_proxy_enabled() {86    return ProxyConfig.is_tls_to_proxy_valid()87}88 89function is_x509_enabled() {90    return ProxyConfig.is_valid() && ProxyConfig.is_tls_to_proxy_valid() && ProxyConfig.is_x509_valid();91}92 93conditional_test(is_proxy_environment_enabled())('Proxied Http Connection Forwarding NoAuth', async () => {94    await test_proxied_connection(ProxyTestType.FORWARDING, HttpProxyAuthenticationType.None);95});96 97conditional_test(is_proxy_environment_enabled())('Proxied Http Connection Legacy NoAuth', async () => {98    await test_proxied_connection(ProxyTestType.LEGACY_HTTP, HttpProxyAuthenticationType.None);99});100 101conditional_test(is_proxy_environment_enabled())('Proxied Https Connection Legacy NoAuth', async () => {102    await test_proxied_connection(ProxyTestType.LEGACY_HTTPS, HttpProxyAuthenticationType.None);103});104 105conditional_test(is_proxy_environment_enabled())('Proxied Http Connection Tunneling NoAuth', async () => {106    await test_proxied_connection(ProxyTestType.TUNNELING_HTTP, HttpProxyAuthenticationType.None);107});108 109conditional_test(is_proxy_environment_enabled())('Proxied Https Connection Tunneling NoAuth', async () => {110    await test_proxied_connection(ProxyTestType.TUNNELING_HTTPS, HttpProxyAuthenticationType.None);111});112 113conditional_test(is_proxy_environment_enabled() && is_tls_to_proxy_enabled())('Proxied Https Connection DoubleTls NoAuth', async () => {114    await test_proxied_connection(ProxyTestType.TUNNELING_DOUBLE_TLS, HttpProxyAuthenticationType.None);115});116 117conditional_test(is_proxy_environment_enabled())('Proxied Http Connection Forwarding BasicAuth', async () => {118    await test_proxied_connection(ProxyTestType.FORWARDING, HttpProxyAuthenticationType.Basic);119});120 121conditional_test(is_proxy_environment_enabled())('Proxied Http Connection Legacy BasicAuth', async () => {122    await test_proxied_connection(ProxyTestType.LEGACY_HTTP, HttpProxyAuthenticationType.Basic);123});124 125conditional_test(is_proxy_environment_enabled())('Proxied Https Connection Legacy BasicAuth', async () => {126    await test_proxied_connection(ProxyTestType.LEGACY_HTTPS, HttpProxyAuthenticationType.Basic);127});128 129conditional_test(is_proxy_environment_enabled())('Proxied Http Connection Tunneling BasicAuth', async () => {130    await test_proxied_connection(ProxyTestType.TUNNELING_HTTP, HttpProxyAuthenticationType.Basic);131});132 133conditional_test(is_proxy_environment_enabled())('Proxied Https Connection Tunneling BasicAuth', async () => {134    await test_proxied_connection(ProxyTestType.TUNNELING_HTTPS, HttpProxyAuthenticationType.Basic);135});136 137async function test_proxied_mqtt_connection(test_type : ProxyTestType, auth_type : HttpProxyAuthenticationType) {138 139    const config = AwsIotMqttConnectionConfigBuilder.new_mtls_builder_from_path(ProxyConfig.HTTP_PROXY_TLS_CERT_PATH, ProxyConfig.HTTP_PROXY_TLS_KEY_PATH)140        .with_certificate_authority_from_path(undefined, ProxyConfig.HTTP_PROXY_TLS_ROOT_CA_PATH)141        .with_clean_session(true)142        .with_client_id(`node-mqtt-unit-test-${uuid()}`)143        .with_endpoint(ProxyConfig.HTTP_PROXY_MQTT_ENDPOINT)144        .with_ping_timeout_ms(5000)145        .with_http_proxy_options(ProxyConfig.create_http_proxy_options_from_environment(test_type, auth_type))146        .build()147    const client = new MqttClient(undefined);148    const connection = client.new_connection(config);149    const promise = new Promise(async (resolve, reject) => {150        connection.on('connect', async (session_present) => {151            expect(session_present).toBeFalsy();152 153            const disconnected = connection.disconnect();154            await expect(disconnected).resolves.toBeUndefined();155        });156        connection.on('error', (error) => {157            reject(error);158        })159        connection.on('disconnect', () => {160            resolve(true);161        })162        const connected = connection.connect();163        await expect(connected).resolves.toBeDefined();164    });165    await expect(promise).resolves.toBeTruthy();166}167 168conditional_test(is_proxy_environment_enabled())('Proxied Mqtt Connection Tunneling NoAuth', async () => {169    await test_proxied_mqtt_connection(ProxyTestType.TUNNELING_HTTP, HttpProxyAuthenticationType.None);170});171 172conditional_test(is_proxy_environment_enabled())('Proxied Mqtt Connection Tunneling BasicAuth', async () => {173    await test_proxied_mqtt_connection(ProxyTestType.TUNNELING_HTTP, HttpProxyAuthenticationType.Basic);174});175 176conditional_test(is_proxy_environment_enabled() && is_tls_to_proxy_enabled())('Proxied Mqtt Connection DoubleTls NoAuth', async () => {177    await test_proxied_mqtt_connection(ProxyTestType.TUNNELING_DOUBLE_TLS, HttpProxyAuthenticationType.None);178});179 180// Test values copied from aws-c-auth/tests/aws-sig-v4-test-suite/get-vanilla"181const DATE_STR = '2015-08-30T12:36:00Z';182const SIGV4TEST_SERVICE = 'service';183const SIGV4TEST_REGION = 'us-east-1';184const SIGV4TEST_METHOD = 'GET';185const SIGV4TEST_PATH = '/';186const SIGV4TEST_UNSIGNED_HEADERS: [string, string][] = [187    ['Host', 'example.amazonaws.com']188];189 190async function do_body_request_signing(provider: AwsCredentialsProvider) {191    const signing_config: AwsSigningConfig = {192        algorithm: AwsSigningAlgorithm.SigV4,193        signature_type: AwsSignatureType.HttpRequestViaHeaders,194        provider: provider,195        region: SIGV4TEST_REGION,196        service: SIGV4TEST_SERVICE,197        date: new Date(DATE_STR),198        signed_body_header: AwsSignedBodyHeaderType.None,199    };200    let stream = new PassThrough();201    let body_stream;202    stream.write("test");203    stream.end(() => {204        body_stream = new InputStream(stream);205    });206    let http_request = new HttpRequest(207        SIGV4TEST_METHOD,208        SIGV4TEST_PATH,209        new HttpHeaders(SIGV4TEST_UNSIGNED_HEADERS),210        body_stream);211 212    return await aws_sign_request(http_request, signing_config);213}214 215async function test_x509_credentials(test_type : ProxyTestType, auth_type : HttpProxyAuthenticationType) {216    const proxy_config = ProxyConfig.create_http_proxy_options_from_environment(test_type, auth_type)217    let tls_ctx_opt = new TlsContextOptions();218    tls_ctx_opt.certificate_filepath = ProxyConfig.HTTP_PROXY_TLS_CERT_PATH;219    tls_ctx_opt.private_key_filepath = ProxyConfig.HTTP_PROXY_TLS_KEY_PATH;220    tls_ctx_opt.ca_filepath = ProxyConfig.HTTP_PROXY_TLS_ROOT_CA_PATH;221    let client_tls_ctx = new ClientTlsContext(tls_ctx_opt);222 223    let x509_config : X509CredentialsConfig = {224        endpoint: ProxyConfig.X509_CREDENTIALS_ENDPOINT,225        thingName: ProxyConfig.X509_CREDENTIALS_THING_NAME,226        roleAlias: ProxyConfig.X509_CREDENTIALS_ROLE_ALIAS,227        tlsContext: client_tls_ctx,228        httpProxyOptions: proxy_config229    };230    let credentials_provider = AwsCredentialsProvider.newX509(x509_config);231 232    const signing_result = await do_body_request_signing(credentials_provider);233    await expect(signing_result).toBeDefined();234    expect(signing_result.method).toBe(SIGV4TEST_METHOD);235    expect(signing_result.path).toBe(SIGV4TEST_PATH);236}237 238conditional_test(is_x509_enabled())('X509 Credentials TLS proxy NoAuth', async () => {239    await test_x509_credentials(ProxyTestType.TUNNELING_HTTPS, HttpProxyAuthenticationType.None);240});241 242conditional_test(is_x509_enabled())('X509 Credentials double TLS proxy NoAuth', async () => {243    await test_x509_credentials(ProxyTestType.TUNNELING_DOUBLE_TLS, HttpProxyAuthenticationType.None);244});245 246conditional_test(is_x509_enabled())('X509 Credentials TLS proxy BasicAuth', async () => {247    await test_x509_credentials(ProxyTestType.TUNNELING_HTTPS, HttpProxyAuthenticationType.Basic);248});249