WIP Adding proxy selenium suite

MarcialRosales · MarcialRosales · commit 2d8c27b3fc5e · 2024-12-02T10:58:56.000+01:00
diff --git a/selenium/bin/components/oauth-proxy b/selenium/bin/components/oauth-proxy
@@ -0,0 +1,44 @@
+
+HTTPD_DOCKER_IMAGE=httpd:latest
+
+ensure_oauth-proxy() {
+  if docker ps | grep oauth-proxy &> /dev/null; then
+     print "oauth-proxy already running ..."
+ else
+   start_oauth-proxy
+ fi
+}
+init_oauth-proxy() {
+  HTTPD_CONFIG_DIR=${TEST_CONFIG_DIR}/oauth-proxy
+  PROXY_HOSTNAME=oauth-proxy 
+  PROXY_PORT=9092 
+
+  print "> HTTPD_CONFIG: ${HTTPD_CONFIG_DIR}"
+  print "> OAUTH_PROVIDER_URL: ${OAUTH_PROVIDER_URL}"
+  print "> PROXY_HOSTNAME: ${PROXY_HOSTNAME}"
+  print "> PROXY_PORT: ${PROXY_PORT}"
+}
+start_oauth-proxy() {
+  begin "Starting oauth-proxy ..."
+
+  init_oauth-proxy
+  kill_container_if_exist oauth-proxy
+
+  MOUNT_HTTPD_CONFIG_DIR=$CONF_DIR/httpd
+
+  mkdir -p $MOUNT_HTTPD_CONFIG_DIR
+  ${BIN_DIR}/gen-httpd-conf ${HTTPD_CONFIG_DIR} $ENV_FILE $MOUNT_HTTPD_CONFIG_DIR/httpd.conf
+  print "> EFFECTIVE HTTPD_CONFIG_FILE: $MOUNT_HTTPD_CONFIG_DIR/httpd.conf"
+
+  docker run \
+    --detach \
+    --name oauth-proxy \
+    --net ${DOCKER_NETWORK} \
+    --publish 9092:9092 \
+    --mount "type=bind,source=${MOUNT_HTTPD_CONFIG_DIR},target=/usr/local/apache2/conf" \
+    ${HTTPD_DOCKER_IMAGE}
+
+  PROXY_URL=$(calculate_forward_proxy_url $OAUTH_PROVIDER_URL $PROXY_HOSTNAME $PROXY_PORT)
+  
+  end "Proxy is ready"
+}
diff --git a/selenium/bin/suite_template b/selenium/bin/suite_template
@@ -214,20 +214,37 @@ wait_for_oidc_endpoint_docker() {
 calculate_rabbitmq_url() {
   echo "${RABBITMQ_SCHEME:-http}://$1${PUBLIC_RABBITMQ_PATH:-$RABBITMQ_PATH}"
 }
-
+calculate_forward_proxy_url() {
+  PROXIED_URL=$1
+  PROXY_HOSTNAME=$2
+  PROXY_PORT=$3
+  SCHEME=$(echo "$PROXIED_URL" | cut -d: -f1)
+  PATH=$(echo "$PROXIED_URL" | cut -d/ -f4-)
+  echo "$SCHEME://$PROXY_HOSTNAME:$PROXY_PORT/$PATH"
+}
 wait_for_url() {
-  BASE_URL=$1
+  BASE_URL=$1  
   if [[ $BASE_URL == *"localhost"** ]]; then
-    wait_for_url_local $BASE_URL
+    wait_for_url_local $@ 
   else
-    wait_for_url_docker $BASE_URL
+    wait_for_url_docker $@
   fi
 }
 wait_for_url_local() {
   url=$1
+  proxy=${2:-none}
+  proxy_user=${3:-none}
+  proxy_pass=$4
+  curl_args="-L -f -v"
   max_retry=10
   counter=0
-  until (curl -L -f -v $url >/dev/null 2>&1)
+  if [[ "$proxy" != "none" ]]; then 
+    curl_args="--proxy ${proxy} ${curl_args}"
+  fi 
+  if [[ "$proxy_user" != "none" ]]; then 
+    curl_args="--proxy-user ${proxy_user}:${proxy_pass} ${curl_args}"
+  fi 
+  until (curl $curl_args $url >/dev/null 2>&1)
   do
     print "Waiting for $url to start (local)"
     sleep 5
@@ -240,7 +257,14 @@ wait_for_url_docker() {
   url=$1
   max_retry=10
   counter=0
-  until (docker run --net ${DOCKER_NETWORK} --rm curlimages/curl:7.85.0 -L -f -v $url >/dev/null 2>&1)
+  curl_args="-L -f -v"
+  if [[ "$proxy" != "none" ]]; then 
+    curl_args="--proxy ${proxy} ${curl_args}"
+  fi 
+  if [[ "$proxy_user" != "none" ]]; then 
+    curl_args="--proxy-user ${proxy_user}:${proxy_pass} ${curl_args}"
+  fi 
+  until (docker run --net ${DOCKER_NETWORK} --rm curlimages/curl:7.85.0 $curl_args $url >/dev/null 2>&1)
   do
     print "Waiting for $url to start (docker)"
     sleep 5
diff --git a/selenium/full-suite-management-ui b/selenium/full-suite-management-ui
@@ -11,6 +11,7 @@ authnz-mgt/oauth-idp-initiated-with-uaa-and-prefix.sh
 authnz-mgt/oauth-idp-initiated-with-uaa-via-proxy.sh
 authnz-mgt/oauth-idp-initiated-with-uaa.sh
 authnz-mgt/oauth-with-keycloak.sh
+authnz-mgt/oauth-with-keycloak-via-proxy.sh
 authnz-mgt/oauth-with-keycloak-with-verify-none.sh
 authnz-mgt/oauth-with-uaa-down-but-with-basic-auth.sh
 authnz-mgt/oauth-with-uaa-down.sh
diff --git a/selenium/suites/authnz-mgt/oauth-with-keycloak-via-proxy.sh b/selenium/suites/authnz-mgt/oauth-with-keycloak-via-proxy.sh
@@ -0,0 +1,10 @@
+#!/usr/bin/env bash
+
+SCRIPT="$( cd "$( dirname "${BASH_SOURCE[0]}" )" && pwd )"
+
+TEST_CASES_PATH=/oauth/with-sp-initiated
+TEST_CONFIG_PATH=/oauth
+PROFILES="oauth-proxy keycloak proxy-oauth-provider keycloak-mgt-oauth-provider tls"
+
+source $SCRIPT/../../bin/suite_template $@
+runWith keycloak forward-proxy
diff --git a/selenium/test/oauth/env.docker.keycloak b/selenium/test/oauth/env.docker.keycloak
@@ -1,3 +1,3 @@
 export KEYCLOAK_URL=https://keycloak:8443/realms/test
-export OAUTH_PROVIDER_URL=https://keycloak:8443/realms/test
-export OAUTH_PROVIDER_CA_CERT=/config/oauth/keycloak/ca_keycloak_certificate.pem
+#export OAUTH_PROVIDER_URL=https://keycloak:8443/realms/test
+export KEYCLOAK_CA_CERT=/config/oauth/keycloak/ca_keycloak_certificate.pem
diff --git a/selenium/test/oauth/env.docker.proxy b/selenium/test/oauth/env.docker.proxy
@@ -0,0 +1,3 @@
+#export OAUTH_PROVIDER_URL=https://proxy:9090/realms/test
+export PROXY_CA_CERT=/config/oauth/httpd-proxy/ca_httpd-proxy_certificate.pem
+export PROXY_URL=https://proxy:9090/realms/test
diff --git a/selenium/test/oauth/env.keycloak-oauth-provider b/selenium/test/oauth/env.keycloak-oauth-provider
@@ -1 +1,2 @@
-# export OAUTH_PROVIDER_URL=${KEYCLOAK_URL}
+export OAUTH_PROVIDER_URL=${KEYCLOAK_URL}
+export OAUTH_PROVIDER_CA_CERT=${OAUTH_SERVER_CONFIG_DIR}/ca_keycloak_certificate.pem
diff --git a/selenium/test/oauth/env.local.keycloak b/selenium/test/oauth/env.local.keycloak
@@ -1,3 +1,3 @@
 export KEYCLOAK_URL=https://localhost:8443/realms/test
-export OAUTH_PROVIDER_URL=https://localhost:8443/realms/test
-export OAUTH_PROVIDER_CA_CERT=selenium/test/oauth/keycloak/ca_keycloak_certificate.pem
+#export OAUTH_PROVIDER_URL=https://localhost:8443/realms/test
+export KEYCLOAK_CA_CERT=selenium/test/oauth/keycloak/ca_keycloak_certificate.pem
diff --git a/selenium/test/oauth/env.local.proxy b/selenium/test/oauth/env.local.proxy
@@ -0,0 +1,3 @@
+#export OAUTH_PROVIDER_URL=https://localhost:9090/realms/test
+export PROXY_CA_CERT=selenium/test/oauth/httpd-proxy/ca_httpd-proxy_certificate.pem
+export PROXY_URL=https://localhost:9090/realms/test
diff --git a/selenium/test/oauth/httpd-proxy/.htpasswd b/selenium/test/oauth/httpd-proxy/.htpasswd
@@ -0,0 +1 @@
+guest:{SHA}NWdeaPS1r3uZXZIFrQ/EOELxZFA=
diff --git a/selenium/test/oauth/httpd-proxy/httpd.conf b/selenium/test/oauth/httpd-proxy/httpd.conf
diff --git a/selenium/test/oauth/rabbitmq.keycloak-oauth-provider.conf b/selenium/test/oauth/rabbitmq.keycloak-oauth-provider.conf
diff --git a/selenium/test/oauth/rabbitmq.keycloak-verify-none-oauth-provider.conf b/selenium/test/oauth/rabbitmq.keycloak-verify-none-oauth-provider.conf
diff --git a/selenium/test/oauth/rabbitmq.uaa-mgt-oauth-provider.conf b/selenium/test/oauth/rabbitmq.uaa-mgt-oauth-provider.conf
diff --git a/selenium/test/oauth/rabbitmq.uaa-oauth-provider.conf b/selenium/test/oauth/rabbitmq.uaa-oauth-provider.conf

Original file line number	Diff line number	Diff line change
`@@ -0,0 +1,3 @@`
	`1`	`+#export OAUTH_PROVIDER_URL=https://proxy:9090/realms/test`
	`2`	`+export PROXY_CA_CERT=/config/oauth/httpd-proxy/ca_httpd-proxy_certificate.pem`
	`3`	`+export PROXY_URL=https://proxy:9090/realms/test`
Original file line number	Diff line number	Diff line change
`@@ -1 +1,2 @@`
`1`		`-# export OAUTH_PROVIDER_URL=${KEYCLOAK_URL}`
	`1`	`+export OAUTH_PROVIDER_URL=${KEYCLOAK_URL}`
	`2`	`+export OAUTH_PROVIDER_CA_CERT=${OAUTH_SERVER_CONFIG_DIR}/ca_keycloak_certificate.pem`
Original file line number	Diff line number	Diff line change
`@@ -0,0 +1,3 @@`
	`1`	`+#export OAUTH_PROVIDER_URL=https://localhost:9090/realms/test`
	`2`	`+export PROXY_CA_CERT=selenium/test/oauth/httpd-proxy/ca_httpd-proxy_certificate.pem`
	`3`	`+export PROXY_URL=https://localhost:9090/realms/test`
Original file line number	Diff line number	Diff line change
`@@ -0,0 +1 @@`
	`1`	`+guest:{SHA}NWdeaPS1r3uZXZIFrQ/EOELxZFA=`