Cleanup SSH proxy implementation and add comprehensive tests

Co-authored-by: phrocker <[email protected]>

Author: Copilot

ssh-proxy/src/main/java/io/sentrius/sso/sshproxy/controllers/RefreshController.java

@@ -4,12 +4,46 @@
 import io.sentrius.sso.core.controllers.BaseController;
 import io.sentrius.sso.core.services.ErrorOutputService;
 import io.sentrius.sso.core.services.UserService;
+import io.sentrius.sso.sshproxy.service.SshProxyServerService;
+import lombok.extern.slf4j.Slf4j;
+import org.springframework.http.ResponseEntity;
+import org.springframework.web.bind.annotation.PostMapping;
+import org.springframework.web.bind.annotation.RequestMapping;
+import org.springframework.web.bind.annotation.RestController;
 
+/**
+ * REST controller for SSH proxy management operations.
+ */
+@Slf4j
+@RestController
+@RequestMapping("/api/ssh-proxy")
 public class RefreshController extends BaseController {
-    protected RefreshController(
-        UserService userService, SystemOptions systemOptions,
-        ErrorOutputService errorOutputService
+
+    private final SshProxyServerService sshProxyServerService;
+
+    public RefreshController(
+        UserService userService, 
+        SystemOptions systemOptions,
+        ErrorOutputService errorOutputService,
+        SshProxyServerService sshProxyServerService
     ) {
         super(userService, systemOptions, errorOutputService);
+        this.sshProxyServerService = sshProxyServerService;
+    }
+
+    /**
+     * Refreshes the SSH proxy server host groups configuration.
+     */
+    @PostMapping("/refresh")
+    public ResponseEntity<String> refreshHostGroups() {
+        try {
+            log.info("Refreshing SSH proxy host groups configuration");
+            sshProxyServerService.refreshHostGroups();
+            return ResponseEntity.ok("SSH proxy host groups refreshed successfully");
+        } catch (Exception e) {
+            log.error("Failed to refresh SSH proxy host groups", e);
+            return ResponseEntity.internalServerError()
+                .body("Failed to refresh host groups: " + e.getMessage());
+        }
     }
 }

ssh-proxy/src/main/java/io/sentrius/sso/sshproxy/handler/SshProxyShell.java

@@ -128,9 +128,9 @@ public void start(ChannelSession channel, Environment env) throws IOException {
 
             initializeHostSystemSelection();
 
-            var connectedSysteem = connect(user, selectedHostSystem.getHostGroups().get(0), selectedHostSystem.getId());
+            var connectedSystem = connect(user, selectedHostSystem.getHostGroups().get(0), selectedHostSystem.getId());
             sendWelcomeMessage();
-            startShellLoop(connectedSysteem);
+            startShellLoop(connectedSystem);
         } catch (Exception e) {
             log.error("Failed to initialize SSH proxy session", e);
             callback.onExit(1, "Failed to initialize session");
@@ -251,78 +251,24 @@ private void startShellLoop(ConnectedSystem connectedSystem) throws GeneralSecur
                         byte b = buffer[i];
                         char c = (char) b;
 
-
-                        /*
-                        if (c == '\r' || c == '\n') {
-                            // Command completed
-                            String command = commandBuffer.toString().trim();
-
-                            commandBuffer.setLength(0);
-                            out.write("\r\n".getBytes());
-                            sendPrompt();
-
-
-
-                            auditLog.setKeycode(c);
-                            auditLog.setCommand(command);
-                            getSshListenerService().processTerminalMessage(connectedSystem,
-                                auditLog.build());
-                            auditLog =
-                                Session.TerminalMessage.newBuilder();
-                        } else if (c == 3) { // Ctrl+C
-                            auditLog.setKeycode(c);
-                            auditLog =
-                                Session.TerminalMessage.newBuilder();
-                            getSshListenerService().processTerminalMessage(connectedSystem,
-                                auditLog.build());
-                            terminalResponseService.sendMessage("^C\r\n", out);
-                            commandBuffer.setLength(0);
-                        } else if (c == 127 || c == 8) { // Backspace
-                            if (commandBuffer.length() > 0) {
-                                commandBuffer.setLength(commandBuffer.length() - 1);
-//                                out.write("\b \b".getBytes());
-                            }
-                            auditLog.setKeycode(c);
-                            auditLog =
-                                Session.TerminalMessage.newBuilder();
-                            getSshListenerService().processTerminalMessage(connectedSystem,
-                                auditLog.build());
-                        } else if (c >= 32 && c <= 126) { //+ Printable characters
-                            commandBuffer.append(c);
-                            auditLog.setCommand(String.valueOf(c));
-                            auditLog =
-                                Session.TerminalMessage.newBuilder();
-                            getSshListenerService().processTerminalMessage(connectedSystem,
-                                auditLog.build());
-  //                          out.write(b);
-                        }
-
-*/
-                        // Ignore other control characters for now
+                        // Process input character and send audit log
                         if (c >= 32 && c <= 126) {
+                            // Printable characters
                             auditLog.setCommand(String.valueOf(c));
                             auditLog.setType(Session.MessageType.PROMPT_DATA);
                             auditLog.setKeycode(-1);
                             getSshListenerService().processTerminalMessage(connectedSystem,
                                 auditLog.build());
-                            auditLog =
-                                Session.TerminalMessage.newBuilder();
-                            //                          out.write(b);
-                        }else {
+                            auditLog = Session.TerminalMessage.newBuilder();
+                        } else {
+                            // Control characters and special keys
                             auditLog.setKeycode(c);
                             auditLog.setType(Session.MessageType.PROMPT_DATA);
-
-
                             getSshListenerService().processTerminalMessage(connectedSystem,
                                 auditLog.build());
-                            auditLog =
-                                Session.TerminalMessage.newBuilder();
-                            //                          out.write(b);
-
+                            auditLog = Session.TerminalMessage.newBuilder();
                         }
                     }
-
-                  ///  getSshListenerService().processTerminalMessage(connectedSystem, auditLog);
                 }
 
             } catch (IOException e) {

ssh-proxy/src/main/java/io/sentrius/sso/sshproxy/service/HostSystemSelectionService.java

@@ -83,8 +83,8 @@ public Optional<HostSystem> getDefaultHostSystem() {
             if (!hostSystems.isEmpty()) {
                 HostSystem defaultHost = hostSystems.get(0);
                 Hibernate.initialize(defaultHost.getHostGroups());
-                for(HostGroup gropu : defaultHost.getHostGroups()) {
-                    Hibernate.initialize(gropu.getRules());
+                for(HostGroup group : defaultHost.getHostGroups()) {
+                    Hibernate.initialize(group.getRules());
                 }
                 log.info("Using default HostSystem: {} ({}:{})", 
                     defaultHost.getDisplayName(), defaultHost.getHost(), defaultHost.getPort());

ssh-proxy/src/test/java/io/sentrius/sso/sshproxy/config/SshProxyConfigTest.java

@@ -0,0 +1,108 @@
+package io.sentrius.sso.sshproxy.config;
+
+import org.junit.jupiter.api.Test;
+import org.springframework.boot.test.context.SpringBootTest;
+import org.springframework.test.context.TestPropertySource;
+
+import static org.junit.jupiter.api.Assertions.*;
+
+@SpringBootTest(classes = {SshProxyConfig.class})
+@TestPropertySource(properties = {
+    "sentrius.ssh-proxy.enabled=false"
+})
+class SshProxyConfigTest {
+
+    @Test
+    void testDefaultValues() {
+        SshProxyConfig config = new SshProxyConfig();
+        
+        assertEquals(2222, config.getPort());
+        assertEquals("/tmp/hostkey.ser", config.getHostKeyPath());
+        assertTrue(config.isEnabled());
+        assertEquals(100, config.getMaxConcurrentSessions());
+        
+        assertNotNull(config.getConnection());
+        assertEquals(30000, config.getConnection().getConnectionTimeout());
+        assertEquals(60000, config.getConnection().getKeepAliveInterval());
+        assertEquals(3, config.getConnection().getMaxRetries());
+    }
+
+    @Test
+    void testSettersAndGetters() {
+        SshProxyConfig config = new SshProxyConfig();
+        
+        config.setPort(2223);
+        config.setHostKeyPath("/custom/path/hostkey.ser");
+        config.setEnabled(false);
+        config.setMaxConcurrentSessions(200);
+        
+        assertEquals(2223, config.getPort());
+        assertEquals("/custom/path/hostkey.ser", config.getHostKeyPath());
+        assertFalse(config.isEnabled());
+        assertEquals(200, config.getMaxConcurrentSessions());
+    }
+
+    @Test
+    void testConnectionConfiguration() {
+        SshProxyConfig config = new SshProxyConfig();
+        SshProxyConfig.Connection connection = config.getConnection();
+        
+        connection.setConnectionTimeout(45000);
+        connection.setKeepAliveInterval(90000);
+        connection.setMaxRetries(5);
+        
+        assertEquals(45000, connection.getConnectionTimeout());
+        assertEquals(90000, connection.getKeepAliveInterval());
+        assertEquals(5, connection.getMaxRetries());
+    }
+
+    @Test
+    void testConnectionSubclass() {
+        SshProxyConfig.Connection connection = new SshProxyConfig.Connection();
+        
+        // Test default values
+        assertEquals(30000, connection.getConnectionTimeout());
+        assertEquals(60000, connection.getKeepAliveInterval());
+        assertEquals(3, connection.getMaxRetries());
+        
+        // Test setters
+        connection.setConnectionTimeout(15000);
+        connection.setKeepAliveInterval(30000);
+        connection.setMaxRetries(1);
+        
+        assertEquals(15000, connection.getConnectionTimeout());
+        assertEquals(30000, connection.getKeepAliveInterval());
+        assertEquals(1, connection.getMaxRetries());
+    }
+
+    @Test
+    void testConfigurationEquality() {
+        SshProxyConfig config1 = new SshProxyConfig();
+        SshProxyConfig config2 = new SshProxyConfig();
+        
+        // Initially both should have same default values
+        assertEquals(config1.getPort(), config2.getPort());
+        assertEquals(config1.getHostKeyPath(), config2.getHostKeyPath());
+        assertEquals(config1.isEnabled(), config2.isEnabled());
+        assertEquals(config1.getMaxConcurrentSessions(), config2.getMaxConcurrentSessions());
+        
+        // Change one and verify they're different
+        config1.setPort(3333);
+        assertNotEquals(config1.getPort(), config2.getPort());
+    }
+
+    @Test
+    void testConnectionEquality() {
+        SshProxyConfig.Connection conn1 = new SshProxyConfig.Connection();
+        SshProxyConfig.Connection conn2 = new SshProxyConfig.Connection();
+        
+        // Initially both should have same default values
+        assertEquals(conn1.getConnectionTimeout(), conn2.getConnectionTimeout());
+        assertEquals(conn1.getKeepAliveInterval(), conn2.getKeepAliveInterval());
+        assertEquals(conn1.getMaxRetries(), conn2.getMaxRetries());
+        
+        // Change one and verify they're different
+        conn1.setConnectionTimeout(99999);
+        assertNotEquals(conn1.getConnectionTimeout(), conn2.getConnectionTimeout());
+    }
+}