crabapples
/
websockify
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Merge branch 'master' of https://github.com/he1f/websockify

This commit is contained in:
Alexander Zeijlon 2025-06-23 15:55:38 +02:00
parent c7f6a577d8 008a13029f
commit c44e432e14
2 changed files with 53 additions and 48 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

45
tests/test_token_plugins.py
View File

@ -4,7 +4,7 @@
import sys import sys
import unittest import unittest
from unittest.mock import patch, mock_open, MagicMock from unittest.mock import patch, MagicMock
from jwcrypto import jwt, jwk from jwcrypto import jwt, jwk
from websockify.token_plugins import parse_source_args, ReadOnlyTokenFile, JWTTokenApi, TokenRedis from websockify.token_plugins import parse_source_args, ReadOnlyTokenFile, JWTTokenApi, TokenRedis
@ -32,49 +32,50 @@ class ParseSourceArgumentsTestCase(unittest.TestCase):
self.assertEqual(args, parse_source_args(src)) self.assertEqual(args, parse_source_args(src))
class ReadOnlyTokenFileTestCase(unittest.TestCase): class ReadOnlyTokenFileTestCase(unittest.TestCase):
patch('os.path.isdir', MagicMock(return_value=False))
def test_empty(self): def test_empty(self):
plugin = ReadOnlyTokenFile('configfile') mock_source_file = MagicMock()
mock_source_file.is_dir.return_value = False
mock_source_file.open.return_value.__enter__.return_value.readlines.return_value = [""]
config = "" with patch("websockify.token_plugins.Path") as mock_path:
pyopen = mock_open(read_data=config) mock_path.return_value = mock_source_file
plugin = ReadOnlyTokenFile('configfile')
with patch("websockify.token_plugins.open", pyopen, create=True):
result = plugin.lookup('testhost') result = plugin.lookup('testhost')
pyopen.assert_called_once_with('configfile') mock_path.assert_called_once_with('configfile')
self.assertIsNone(result) self.assertIsNone(result)
patch('os.path.isdir', MagicMock(return_value=False))
def test_simple(self): def test_simple(self):
plugin = ReadOnlyTokenFile('configfile') mock_source_file = MagicMock()
mock_source_file.is_dir.return_value = False
mock_source_file.open.return_value.__enter__.return_value.readlines.return_value = ["testhost: remote_host:remote_port"]
config = "testhost: remote_host:remote_port" with patch("websockify.token_plugins.Path") as mock_path:
pyopen = mock_open(read_data=config) mock_path.return_value = mock_source_file
plugin = ReadOnlyTokenFile('configfile')
with patch("websockify.token_plugins.open", pyopen, create=True):
result = plugin.lookup('testhost') result = plugin.lookup('testhost')
pyopen.assert_called_once_with('configfile') mock_path.assert_called_once_with('configfile')
self.assertIsNotNone(result) self.assertIsNotNone(result)
self.assertEqual(result[0], "remote_host") self.assertEqual(result[0], "remote_host")
self.assertEqual(result[1], "remote_port") self.assertEqual(result[1], "remote_port")
patch('os.path.isdir', MagicMock(return_value=False))
def test_tabs(self): def test_tabs(self):
plugin = ReadOnlyTokenFile('configfile') mock_source_file = MagicMock()
mock_source_file.is_dir.return_value = False
mock_source_file.open.return_value.__enter__.return_value.readlines.return_value = ["testhost:\tremote_host:remote_port"]
config = "testhost:\tremote_host:remote_port" with patch("websockify.token_plugins.Path") as mock_path:
pyopen = mock_open(read_data=config) mock_path.return_value = mock_source_file
plugin = ReadOnlyTokenFile('configfile')
with patch("websockify.token_plugins.open", pyopen, create=True):
result = plugin.lookup('testhost') result = plugin.lookup('testhost')
pyopen.assert_called_once_with('configfile') mock_path.assert_called_once_with('configfile')
self.assertIsNotNone(result) self.assertIsNotNone(result)
self.assertEqual(result[0], "remote_host") self.assertEqual(result[0], "remote_host")
self.assertEqual(result[1], "remote_port") self.assertEqual(result[1], "remote_port")
class JWSTokenTestCase(unittest.TestCase): class JWSTokenTestCase(unittest.TestCase):
def test_asymmetric_jws_token_plugin(self): def test_asymmetric_jws_token_plugin(self):
plugin = JWTTokenApi("./tests/fixtures/public.pem") plugin = JWTTokenApi("./tests/fixtures/public.pem")

56
websockify/token_plugins.py
View File

@ -1,9 +1,9 @@
import logging import logging
import os
import sys import sys
import time import time
import re import re
import json import json
from pathlib import Path
logger = logging.getLogger(__name__) logger = logging.getLogger(__name__)
@ -43,23 +43,24 @@ class ReadOnlyTokenFile(BasePlugin):
self._targets = None self._targets = None
def _load_targets(self): def _load_targets(self):
if os.path.isdir(self.source): source = Path(self.source)
cfg_files = [os.path.join(self.source, f) for if source.is_dir():
f in os.listdir(self.source)] cfg_files = [file for file in source if file.is_file()]
else: else:
cfg_files = [self.source] cfg_files = [source]
self._targets = {} self._targets = {}
index = 1 index = 1
for f in cfg_files: for f in cfg_files:
for line in [l.strip() for l in open(f).readlines()]: with f.open() as file:
if line and not line.startswith('#'): for line in file.readlines():
try: if line and not line.startswith('#'):
tok, target = re.split(r':\s', line) try:
self._targets[tok] = target.strip().rsplit(':', 1) tok, target = re.split(r':\s', line)
except ValueError: self._targets[tok] = target.strip().rsplit(':', 1)
logger.error("Syntax error in %s on line %d" % (self.source, index)) except ValueError:
index += 1 logger.error("Syntax error in %s on line %d" % (self.source, index))
index += 1
def lookup(self, token): def lookup(self, token):
if self._targets is None: if self._targets is None:
@ -89,14 +90,16 @@ class TokenFileName(BasePlugin):
# contents of file is host:port # contents of file is host:port
def __init__(self, src): def __init__(self, src):
super().__init__(src) super().__init__(src)
if not os.path.isdir(src): if not Path(src).is_dir():
raise Exception("TokenFileName plugin requires a directory") raise Exception("TokenFileName plugin requires a directory")
def lookup(self, token): def lookup(self, token):
token = os.path.basename(token) token = Path(token).name
path = os.path.join(self.source, token) path = Path(self.source) / token
if os.path.exists(path): if path.exists():
return open(path).read().strip().split(':') with path.open() as f:
text = f.read().strip().split(':')
return text
else: else:
return None return None
@ -349,23 +352,24 @@ class TokenRedis(BasePlugin):
class UnixDomainSocketDirectory(BasePlugin): class UnixDomainSocketDirectory(BasePlugin):
def __init__(self, *args, **kwargs): def __init__(self, *args, **kwargs):
super().__init__(*args, **kwargs) super().__init__(*args, **kwargs)
self._dir_path = os.path.abspath(self.source) self._dir_path = Path(self.source).absolute()
def lookup(self, token): def lookup(self, token: str):
try: try:
import stat import stat
if not os.path.isdir(self._dir_path): if not self._dir_path.is_dir():
return None return None
uds_path = os.path.abspath(os.path.join(self._dir_path, token)) uds_path = (self._dir_path / token).absolute()
if not uds_path.startswith(self._dir_path):
if not str(uds_path).startswith(str(self._dir_path)):
return None return None
if not os.path.exists(uds_path): if not uds_path.exists():
return None return None
if not stat.S_ISSOCK(os.stat(uds_path).st_mode): if not stat.S_ISSOCK(uds_path.stat().st_mode):
return None return None
return [ 'unix_socket', uds_path ] return [ 'unix_socket', uds_path ]