cloudflared-mirror/config/configuration_test.go

package config

import (
	"encoding/json"
	"testing"
	"time"

	"github.com/stretchr/testify/assert"
	yaml "gopkg.in/yaml.v2"
)

func TestConfigFileSettings(t *testing.T) {
	var (
		firstIngress = UnvalidatedIngressRule{
			Hostname: "tunnel1.example.com",
			Path:     "/id",
			Service:  "https://localhost:8000",
		}
		secondIngress = UnvalidatedIngressRule{
			Hostname: "*",
			Path:     "",
			Service:  "https://localhost:8001",
		}
		warpRouting = WarpRoutingConfig{
			Enabled: true,
		}
	)
	rawYAML := `
tunnel: config-file-test
originRequest:
  ipRules:
  - prefix: "10.0.0.0/8"
    ports:
    - 80
    - 8080
    allow: false
  - prefix: "fc00::/7"
    ports:
    - 443
    - 4443
    allow: true
ingress:
 - hostname: tunnel1.example.com
   path: /id
   service: https://localhost:8000
 - hostname: "*"
   service: https://localhost:8001
warp-routing: 
  enabled: true
retries: 5
grace-period: 30s
percentage: 3.14
hostname: example.com
tag:
 - test
 - central-1
counters:
 - 123
 - 456
`
	var config configFileSettings
	err := yaml.Unmarshal([]byte(rawYAML), &config)
	assert.NoError(t, err)

	assert.Equal(t, "config-file-test", config.TunnelID)
	assert.Equal(t, firstIngress, config.Ingress[0])
	assert.Equal(t, secondIngress, config.Ingress[1])
	assert.Equal(t, warpRouting, config.WarpRouting)
	privateV4 := "10.0.0.0/8"
	privateV6 := "fc00::/7"
	ipRules := []IngressIPRule{
		{
			Prefix: &privateV4,
			Ports:  []int{80, 8080},
			Allow:  false,
		},
		{
			Prefix: &privateV6,
			Ports:  []int{443, 4443},
			Allow:  true,
		},
	}
	assert.Equal(t, ipRules, config.OriginRequest.IPRules)

	retries, err := config.Int("retries")
	assert.NoError(t, err)
	assert.Equal(t, 5, retries)

	gracePeriod, err := config.Duration("grace-period")
	assert.NoError(t, err)
	assert.Equal(t, time.Second*30, gracePeriod)

	percentage, err := config.Float64("percentage")
	assert.NoError(t, err)
	assert.Equal(t, 3.14, percentage)

	hostname, err := config.String("hostname")
	assert.NoError(t, err)
	assert.Equal(t, "example.com", hostname)

	tags, err := config.StringSlice("tag")
	assert.NoError(t, err)
	assert.Equal(t, "test", tags[0])
	assert.Equal(t, "central-1", tags[1])

	counters, err := config.IntSlice("counters")
	assert.NoError(t, err)
	assert.Equal(t, 123, counters[0])
	assert.Equal(t, 456, counters[1])

}

func TestUnmarshalOriginRequestConfig(t *testing.T) {
	raw := []byte(`
{
	"connectTimeout": 10000000000,
	"tlsTimeout": 30000000000,
	"tcpKeepAlive": 30000000000,
	"noHappyEyeballs": true,
	"keepAliveTimeout": 60000000000,
	"keepAliveConnections": 10,
	"httpHostHeader": "app.tunnel.com",
	"originServerName": "app.tunnel.com",
	"caPool": "/etc/capool",
	"noTLSVerify": true,
	"disableChunkedEncoding": true,
	"bastionMode": true,
	"proxyAddress": "127.0.0.3",
	"proxyPort": 9000,
	"proxyType": "socks",
	"ipRules": [
		{
			"prefix": "10.0.0.0/8",
			"ports": [80, 8080],
			"allow": false
		},
		{
			"prefix": "fc00::/7",
			"ports": [443, 4443],
			"allow": true
		}
	]
}
`)
	var config OriginRequestConfig
	assert.NoError(t, json.Unmarshal(raw, &config))
	assert.Equal(t, time.Second*10, *config.ConnectTimeout)
	assert.Equal(t, time.Second*30, *config.TLSTimeout)
	assert.Equal(t, time.Second*30, *config.TCPKeepAlive)
	assert.Equal(t, true, *config.NoHappyEyeballs)
	assert.Equal(t, time.Second*60, *config.KeepAliveTimeout)
	assert.Equal(t, 10, *config.KeepAliveConnections)
	assert.Equal(t, "app.tunnel.com", *config.HTTPHostHeader)
	assert.Equal(t, "app.tunnel.com", *config.OriginServerName)
	assert.Equal(t, "/etc/capool", *config.CAPool)
	assert.Equal(t, true, *config.NoTLSVerify)
	assert.Equal(t, true, *config.DisableChunkedEncoding)
	assert.Equal(t, true, *config.BastionMode)
	assert.Equal(t, "127.0.0.3", *config.ProxyAddress)
	assert.Equal(t, true, *config.NoTLSVerify)
	assert.Equal(t, uint(9000), *config.ProxyPort)
	assert.Equal(t, "socks", *config.ProxyType)

	privateV4 := "10.0.0.0/8"
	privateV6 := "fc00::/7"
	ipRules := []IngressIPRule{
		{
			Prefix: &privateV4,
			Ports:  []int{80, 8080},
			Allow:  false,
		},
		{
			Prefix: &privateV6,
			Ports:  []int{443, 4443},
			Allow:  true,
		},
	}
	assert.Equal(t, ipRules, config.IPRules)
}
TUN-3476: Fix conversion to string and int slice 2020-10-21 10:11:35 +00:00			`package config`

			`import (`
TUN-5702: Allow to deserialize config from JSON 2022-01-28 14:37:17 +00:00			`"encoding/json"`
TUN-3476: Fix conversion to string and int slice 2020-10-21 10:11:35 +00:00			`"testing"`
			`"time"`

			`"github.com/stretchr/testify/assert"`
TUN-4067: Reformat code for consistent import order, grouping, and fix formatting. Added goimports target to the Makefile to make this easier in the future. 2021-03-23 14:30:43 +00:00			`yaml "gopkg.in/yaml.v2"`
TUN-3476: Fix conversion to string and int slice 2020-10-21 10:11:35 +00:00			`)`

			`func TestConfigFileSettings(t *testing.T) {`
			`var (`
			`firstIngress = UnvalidatedIngressRule{`
			`Hostname: "tunnel1.example.com",`
			`Path: "/id",`
			`Service: "https://localhost:8000",`
			`}`
			`secondIngress = UnvalidatedIngressRule{`
			`Hostname: "*",`
			`Path: "",`
			`Service: "https://localhost:8001",`
			`}`
TUN-3725: Warp-routing is independent of ingress - Changed warp-routing configuration to its own yaml. - Ingress Rules host matching is indepedent of warp-routing. 2021-01-17 20:22:53 +00:00			`warpRouting = WarpRoutingConfig{`
			`Enabled: true,`
			`}`
TUN-3476: Fix conversion to string and int slice 2020-10-21 10:11:35 +00:00			`)`
			rawYAML := `
			`tunnel: config-file-test`
TUN-5702: Allow to deserialize config from JSON 2022-01-28 14:37:17 +00:00			`originRequest:`
			`ipRules:`
			`- prefix: "10.0.0.0/8"`
			`ports:`
			`- 80`
			`- 8080`
			`allow: false`
			`- prefix: "fc00::/7"`
			`ports:`
			`- 443`
			`- 4443`
			`allow: true`
TUN-3476: Fix conversion to string and int slice 2020-10-21 10:11:35 +00:00			`ingress:`
			`- hostname: tunnel1.example.com`
			`path: /id`
			`service: https://localhost:8000`
			`- hostname: "*"`
			`service: https://localhost:8001`
TUN-3725: Warp-routing is independent of ingress - Changed warp-routing configuration to its own yaml. - Ingress Rules host matching is indepedent of warp-routing. 2021-01-17 20:22:53 +00:00			`warp-routing:`
			`enabled: true`
TUN-3476: Fix conversion to string and int slice 2020-10-21 10:11:35 +00:00			`retries: 5`
			`grace-period: 30s`
			`percentage: 3.14`
			`hostname: example.com`
			`tag:`
			`- test`
			`- central-1`
			`counters:`
			`- 123`
			`- 456`
			`
			`var config configFileSettings`
			`err := yaml.Unmarshal([]byte(rawYAML), &config)`
			`assert.NoError(t, err)`

			`assert.Equal(t, "config-file-test", config.TunnelID)`
			`assert.Equal(t, firstIngress, config.Ingress[0])`
			`assert.Equal(t, secondIngress, config.Ingress[1])`
TUN-3725: Warp-routing is independent of ingress - Changed warp-routing configuration to its own yaml. - Ingress Rules host matching is indepedent of warp-routing. 2021-01-17 20:22:53 +00:00			`assert.Equal(t, warpRouting, config.WarpRouting)`
TUN-5702: Allow to deserialize config from JSON 2022-01-28 14:37:17 +00:00			`privateV4 := "10.0.0.0/8"`
			`privateV6 := "fc00::/7"`
			`ipRules := []IngressIPRule{`
			`{`
			`Prefix: &privateV4,`
			`Ports: []int{80, 8080},`
			`Allow: false,`
			`},`
			`{`
			`Prefix: &privateV6,`
			`Ports: []int{443, 4443},`
			`Allow: true,`
			`},`
			`}`
			`assert.Equal(t, ipRules, config.OriginRequest.IPRules)`
TUN-3476: Fix conversion to string and int slice 2020-10-21 10:11:35 +00:00
			`retries, err := config.Int("retries")`
			`assert.NoError(t, err)`
			`assert.Equal(t, 5, retries)`

			`gracePeriod, err := config.Duration("grace-period")`
			`assert.NoError(t, err)`
			`assert.Equal(t, time.Second*30, gracePeriod)`

			`percentage, err := config.Float64("percentage")`
			`assert.NoError(t, err)`
			`assert.Equal(t, 3.14, percentage)`

			`hostname, err := config.String("hostname")`
			`assert.NoError(t, err)`
			`assert.Equal(t, "example.com", hostname)`

			`tags, err := config.StringSlice("tag")`
			`assert.NoError(t, err)`
			`assert.Equal(t, "test", tags[0])`
			`assert.Equal(t, "central-1", tags[1])`

			`counters, err := config.IntSlice("counters")`
			`assert.NoError(t, err)`
			`assert.Equal(t, 123, counters[0])`
			`assert.Equal(t, 456, counters[1])`
TUN-3725: Warp-routing is independent of ingress - Changed warp-routing configuration to its own yaml. - Ingress Rules host matching is indepedent of warp-routing. 2021-01-17 20:22:53 +00:00
TUN-3476: Fix conversion to string and int slice 2020-10-21 10:11:35 +00:00			`}`
TUN-5702: Allow to deserialize config from JSON 2022-01-28 14:37:17 +00:00
			`func TestUnmarshalOriginRequestConfig(t *testing.T) {`
			raw := []byte(`
			`{`
			`"connectTimeout": 10000000000,`
			`"tlsTimeout": 30000000000,`
			`"tcpKeepAlive": 30000000000,`
			`"noHappyEyeballs": true,`
			`"keepAliveTimeout": 60000000000,`
			`"keepAliveConnections": 10,`
			`"httpHostHeader": "app.tunnel.com",`
			`"originServerName": "app.tunnel.com",`
			`"caPool": "/etc/capool",`
			`"noTLSVerify": true,`
			`"disableChunkedEncoding": true,`
			`"bastionMode": true,`
			`"proxyAddress": "127.0.0.3",`
			`"proxyPort": 9000,`
			`"proxyType": "socks",`
			`"ipRules": [`
			`{`
			`"prefix": "10.0.0.0/8",`
			`"ports": [80, 8080],`
			`"allow": false`
			`},`
			`{`
			`"prefix": "fc00::/7",`
			`"ports": [443, 4443],`
			`"allow": true`
			`}`
			`]`
			`}`
			`)
			`var config OriginRequestConfig`
			`assert.NoError(t, json.Unmarshal(raw, &config))`
			`assert.Equal(t, time.Second10, config.ConnectTimeout)`
			`assert.Equal(t, time.Second30, config.TLSTimeout)`
			`assert.Equal(t, time.Second30, config.TCPKeepAlive)`
			`assert.Equal(t, true, *config.NoHappyEyeballs)`
			`assert.Equal(t, time.Second60, config.KeepAliveTimeout)`
			`assert.Equal(t, 10, *config.KeepAliveConnections)`
			`assert.Equal(t, "app.tunnel.com", *config.HTTPHostHeader)`
			`assert.Equal(t, "app.tunnel.com", *config.OriginServerName)`
			`assert.Equal(t, "/etc/capool", *config.CAPool)`
			`assert.Equal(t, true, *config.NoTLSVerify)`
			`assert.Equal(t, true, *config.DisableChunkedEncoding)`
			`assert.Equal(t, true, *config.BastionMode)`
			`assert.Equal(t, "127.0.0.3", *config.ProxyAddress)`
			`assert.Equal(t, true, *config.NoTLSVerify)`
			`assert.Equal(t, uint(9000), *config.ProxyPort)`
			`assert.Equal(t, "socks", *config.ProxyType)`

			`privateV4 := "10.0.0.0/8"`
			`privateV6 := "fc00::/7"`
			`ipRules := []IngressIPRule{`
			`{`
			`Prefix: &privateV4,`
			`Ports: []int{80, 8080},`
			`Allow: false,`
			`},`
			`{`
			`Prefix: &privateV6,`
			`Ports: []int{443, 4443},`
			`Allow: true,`
			`},`
			`}`
			`assert.Equal(t, ipRules, config.IPRules)`
			`}`