2015-11-04 08:03:12 +03:00
|
|
|
package distribution
|
|
|
|
|
|
|
|
import (
|
|
|
|
"net/http"
|
|
|
|
"net/http/httptest"
|
|
|
|
"os"
|
|
|
|
"strings"
|
|
|
|
"testing"
|
|
|
|
|
|
|
|
"github.com/Sirupsen/logrus"
|
|
|
|
"github.com/docker/distribution/reference"
|
|
|
|
"github.com/docker/distribution/registry/client/auth"
|
2015-12-12 05:14:52 +03:00
|
|
|
"github.com/docker/docker/api/types"
|
|
|
|
registrytypes "github.com/docker/docker/api/types/registry"
|
2015-11-04 08:03:12 +03:00
|
|
|
"github.com/docker/docker/registry"
|
|
|
|
"github.com/docker/docker/utils"
|
2015-11-14 03:59:01 +03:00
|
|
|
"golang.org/x/net/context"
|
2015-11-04 08:03:12 +03:00
|
|
|
)
|
|
|
|
|
|
|
|
func TestTokenPassThru(t *testing.T) {
|
2015-12-12 07:11:42 +03:00
|
|
|
authConfig := &types.AuthConfig{
|
2015-11-04 08:03:12 +03:00
|
|
|
RegistryToken: "mysecrettoken",
|
|
|
|
}
|
|
|
|
gotToken := false
|
|
|
|
handler := func(w http.ResponseWriter, r *http.Request) {
|
|
|
|
if strings.Contains(r.Header.Get("Authorization"), authConfig.RegistryToken) {
|
|
|
|
logrus.Debug("Detected registry token in auth header")
|
|
|
|
gotToken = true
|
|
|
|
}
|
|
|
|
if r.RequestURI == "/v2/" {
|
|
|
|
w.Header().Set("WWW-Authenticate", `Bearer realm="foorealm"`)
|
|
|
|
w.WriteHeader(401)
|
|
|
|
}
|
|
|
|
}
|
|
|
|
ts := httptest.NewServer(http.HandlerFunc(handler))
|
|
|
|
defer ts.Close()
|
|
|
|
|
|
|
|
tmp, err := utils.TestDirectory("")
|
|
|
|
if err != nil {
|
|
|
|
t.Fatal(err)
|
|
|
|
}
|
|
|
|
defer os.RemoveAll(tmp)
|
|
|
|
|
|
|
|
endpoint := registry.APIEndpoint{
|
|
|
|
Mirror: false,
|
|
|
|
URL: ts.URL,
|
|
|
|
Version: 2,
|
|
|
|
Official: false,
|
|
|
|
TrimHostname: false,
|
|
|
|
TLSConfig: nil,
|
|
|
|
//VersionHeader: "verheader",
|
|
|
|
Versions: []auth.APIVersion{
|
|
|
|
{
|
|
|
|
Type: "registry",
|
|
|
|
Version: "2",
|
|
|
|
},
|
|
|
|
},
|
|
|
|
}
|
|
|
|
n, _ := reference.ParseNamed("testremotename")
|
|
|
|
repoInfo := ®istry.RepositoryInfo{
|
2015-12-12 05:14:52 +03:00
|
|
|
Index: ®istrytypes.IndexInfo{
|
2015-11-04 08:03:12 +03:00
|
|
|
Name: "testrepo",
|
|
|
|
Mirrors: nil,
|
|
|
|
Secure: false,
|
|
|
|
Official: false,
|
|
|
|
},
|
|
|
|
RemoteName: n,
|
|
|
|
LocalName: n,
|
|
|
|
CanonicalName: n,
|
|
|
|
Official: false,
|
|
|
|
}
|
|
|
|
imagePullConfig := &ImagePullConfig{
|
|
|
|
MetaHeaders: http.Header{},
|
|
|
|
AuthConfig: authConfig,
|
|
|
|
}
|
2015-11-14 03:59:01 +03:00
|
|
|
puller, err := newPuller(endpoint, repoInfo, imagePullConfig)
|
2015-11-04 08:03:12 +03:00
|
|
|
if err != nil {
|
|
|
|
t.Fatal(err)
|
|
|
|
}
|
|
|
|
p := puller.(*v2Puller)
|
|
|
|
p.repo, err = NewV2Repository(p.repoInfo, p.endpoint, p.config.MetaHeaders, p.config.AuthConfig, "pull")
|
|
|
|
if err != nil {
|
|
|
|
t.Fatal(err)
|
|
|
|
}
|
|
|
|
|
|
|
|
logrus.Debug("About to pull")
|
|
|
|
// We expect it to fail, since we haven't mock'd the full registry exchange in our handler above
|
|
|
|
tag, _ := reference.WithTag(n, "tag_goes_here")
|
2015-11-14 03:59:01 +03:00
|
|
|
_ = p.pullV2Repository(context.Background(), tag)
|
2015-11-04 08:03:12 +03:00
|
|
|
|
|
|
|
if !gotToken {
|
|
|
|
t.Fatal("Failed to receive registry token")
|
|
|
|
}
|
|
|
|
|
|
|
|
}
|