Merge pull request #1767 from atlassian/dca-2446-websudo-for-confluence-locust

SergeyMoroz0703 · web-flow · commit 4652cff5a999 · 2025-05-30T12:00:05.000+03:00
add websudo for confluence locust
diff --git a/app/extension/confluence/extension_locust.py b/app/extension/confluence/extension_locust.py
@@ -5,7 +5,10 @@
 
 
 @confluence_measure("locust_app_specific_action")
-# @run_as_specific_user(username='admin', password='admin')  # run as specific user
+# WebSudo is a feature that enhances security by requiring administrators to re-authenticate before
+# accessing administrative functions within Atlassian applications.
+# do_websudo=True requires user administrative rights, otherwise requests fail.
+#@run_as_specific_user(username='admin', password='admin', do_websudo=False)  # run as specific user
 def app_specific_action(locust):
     r = locust.get('/app/get_endpoint', catch_response=True)  # call app-specific GET endpoint
     content = r.content.decode('utf-8')   # decode response content
diff --git a/app/locustio/common_utils.py b/app/locustio/common_utils.py
@@ -358,7 +358,7 @@ def raise_if_login_failed(locust):
         raise exception.StopUser('Action login_and_view_dashboard failed')
 
 
-def do_confluence_login(locust, usr, pwd):
+def do_confluence_login(locust, usr, pwd, do_websudo=False):
     locust.client.cookies.clear()
     r = locust.get('/dologin.action', catch_response=True)
     content = r.content.decode('utf-8')
@@ -411,6 +411,18 @@ def do_confluence_login(locust, usr, pwd):
     locust.session_data_storage['password'] = pwd
     locust.session_data_storage['token'] = token
 
+    if do_websudo:
+        auth_body = {
+            'authenticate': 'Confirm',
+            'destination': '/admin/systeminfo.action',
+            'password': pwd,
+        }
+        system_info_html = locust.post(url='/doauthenticate.action', data=auth_body,
+                                       headers={'X-Atlassian-Token': 'no-check'}, catch_response=True)
+        print(system_info_html.content.decode('utf-8'))
+
+
+
 
 def do_login_jira(locust, usr, pwd):
     locust.client.cookies.clear()
@@ -457,7 +469,7 @@ def do_login_jira(locust, usr, pwd):
             locust.session_data_storage["token"] = token
 
 
-def run_as_specific_user(username=None, password=None):
+def run_as_specific_user(username=None, password=None, do_websudo=False):
     if not (username and password):
         raise SystemExit(f'The credentials are not valid: {{username: {username}, password: {password}}}.')
 
@@ -493,7 +505,7 @@ def wrapper(*args, **kwargs):
                     do_login_jira(locust, session_user_name, session_user_password)
 
                 if app == CONFLUENCE:
-                    do_confluence_login(locust, username, password)
+                    do_confluence_login(locust, username, password, do_websudo)
                     func(*args, **kwargs)
                     do_confluence_login(locust, session_user_name, session_user_password)
 
