Merge pull request #1096 from ericchiang/ldap-insecure-skip-verify-test
connector/ldap: add test for InsecureSkipVerify option
This commit is contained in:
commit
f3c85e6936
1 changed files with 47 additions and 0 deletions
|
@ -28,6 +28,7 @@ const (
|
||||||
connectStartTLS connectionMethod = iota
|
connectStartTLS connectionMethod = iota
|
||||||
connectLDAPS
|
connectLDAPS
|
||||||
connectLDAP
|
connectLDAP
|
||||||
|
connectInsecureSkipVerify
|
||||||
)
|
)
|
||||||
|
|
||||||
// subtest is a login test against a given schema.
|
// subtest is a login test against a given schema.
|
||||||
|
@ -350,6 +351,49 @@ userpassword: foo
|
||||||
runTests(t, schema, connectStartTLS, c, tests)
|
runTests(t, schema, connectStartTLS, c, tests)
|
||||||
}
|
}
|
||||||
|
|
||||||
|
func TestInsecureSkipVerify(t *testing.T) {
|
||||||
|
schema := `
|
||||||
|
dn: dc=example,dc=org
|
||||||
|
objectClass: dcObject
|
||||||
|
objectClass: organization
|
||||||
|
o: Example Company
|
||||||
|
dc: example
|
||||||
|
|
||||||
|
dn: ou=People,dc=example,dc=org
|
||||||
|
objectClass: organizationalUnit
|
||||||
|
ou: People
|
||||||
|
|
||||||
|
dn: cn=jane,ou=People,dc=example,dc=org
|
||||||
|
objectClass: person
|
||||||
|
objectClass: inetOrgPerson
|
||||||
|
sn: doe
|
||||||
|
cn: jane
|
||||||
|
mail: janedoe@example.com
|
||||||
|
userpassword: foo
|
||||||
|
`
|
||||||
|
c := &Config{}
|
||||||
|
c.UserSearch.BaseDN = "ou=People,dc=example,dc=org"
|
||||||
|
c.UserSearch.NameAttr = "cn"
|
||||||
|
c.UserSearch.EmailAttr = "mail"
|
||||||
|
c.UserSearch.IDAttr = "DN"
|
||||||
|
c.UserSearch.Username = "cn"
|
||||||
|
|
||||||
|
tests := []subtest{
|
||||||
|
{
|
||||||
|
name: "validpassword",
|
||||||
|
username: "jane",
|
||||||
|
password: "foo",
|
||||||
|
want: connector.Identity{
|
||||||
|
UserID: "cn=jane,ou=People,dc=example,dc=org",
|
||||||
|
Username: "jane",
|
||||||
|
Email: "janedoe@example.com",
|
||||||
|
EmailVerified: true,
|
||||||
|
},
|
||||||
|
},
|
||||||
|
}
|
||||||
|
runTests(t, schema, connectInsecureSkipVerify, c, tests)
|
||||||
|
}
|
||||||
|
|
||||||
func TestLDAPS(t *testing.T) {
|
func TestLDAPS(t *testing.T) {
|
||||||
schema := `
|
schema := `
|
||||||
dn: dc=example,dc=org
|
dn: dc=example,dc=org
|
||||||
|
@ -531,6 +575,9 @@ func runTests(t *testing.T, schema string, connMethod connectionMethod, config *
|
||||||
case connectLDAPS:
|
case connectLDAPS:
|
||||||
c.Host = "localhost:10636"
|
c.Host = "localhost:10636"
|
||||||
c.RootCA = "testdata/ca.crt"
|
c.RootCA = "testdata/ca.crt"
|
||||||
|
case connectInsecureSkipVerify:
|
||||||
|
c.Host = "localhost:10636"
|
||||||
|
c.InsecureSkipVerify = true
|
||||||
case connectLDAP:
|
case connectLDAP:
|
||||||
c.Host = "localhost:10389"
|
c.Host = "localhost:10389"
|
||||||
c.InsecureNoSSL = true
|
c.InsecureNoSSL = true
|
||||||
|
|
Reference in a new issue