Fix issue and add proxies for multi-oauth scenarios

Author: MarcialRosales

deps/oauth2_client/src/oauth2_client.erl

@@ -70,7 +70,6 @@ ensure_http_client_started(Id) ->
 http_post(Id, URL, Header, Type, Body, HTTPOptions, ProxyOptions) ->
     http_request(Id, post, {URL, Header, Type, Body}, HTTPOptions, ProxyOptions).
 http_get(Id, URL, HTTPOptions, ProxyOptions) ->
-    ct:log("~p ~p", [Id, URL]),
     http_request(Id, get, {URL, []}, HTTPOptions, ProxyOptions).
 http_request(Id, Method, Payload, HTTPOptions, ProxyOptions) ->
     case ensure_http_client_started(Id) of

deps/oauth2_client/test/system_SUITE.erl

@@ -184,7 +184,6 @@ get_openid_configuration_http_expectation(TestCaseAtom) ->
         nomatch ->  ?DEFAULT_OPENID_CONFIGURATION_PATH;
         _ ->        ?CUSTOM_OPENID_CONFIGURATION_ENDPOINT
     end,
-    ct:log("Expect path: ~p and endpoint: ~p", [Path, Endpoint]),
     build_http_mock_behaviour(build_http_get_openid_configuration_request(Endpoint, Path),
         build_http_200_json_response(Payload)).
 

selenium/bin/components/devkeycloak-proxy

@@ -0,0 +1,45 @@
+
+HTTPD_DOCKER_IMAGE=httpd:latest
+
+ensure_devkeycloak-proxy() {
+  if docker ps | grep devkeycloak-proxy &> /dev/null; then
+     print "devkeycloak-proxy already running ..."
+ else
+   start_devkeycloak-proxy
+ fi
+}
+init_devkeycloak-proxy() {
+  HTTPD_CONFIG_DIR=${TEST_CONFIG_DIR}/devkeycloak-proxy
+  PROXY_HOSTNAME=devkeycloak-proxy 
+  PROXY_PORT=9092
+
+  print "> HTTPD_CONFIG: ${HTTPD_CONFIG_DIR}"
+  print "> PROXY_HOSTNAME: ${PROXY_HOSTNAME}"
+  print "> PROXY_PORT: ${PROXY_PORT}"
+  
+}
+
+start_devkeycloak-proxy() {
+  begin "Starting devkeycloak-proxy ..."
+
+  init_devkeycloak-proxy
+  kill_container_if_exist devkeycloak-proxy
+
+  MOUNT_HTTPD_CONFIG_DIR=$CONF_DIR/httpd
+
+  mkdir -p $MOUNT_HTTPD_CONFIG_DIR
+  ${BIN_DIR}/gen-httpd-conf ${HTTPD_CONFIG_DIR} $ENV_FILE $MOUNT_HTTPD_CONFIG_DIR/httpd.conf
+  print "> EFFECTIVE HTTPD_CONFIG_FILE: $MOUNT_HTTPD_CONFIG_DIR/httpd.conf"
+  cp ${HTTPD_CONFIG_DIR}/.htpasswd $MOUNT_HTTPD_CONFIG_DIR
+  
+  docker run \
+    --detach \
+    --name devkeycloak-proxy \
+    --net ${DOCKER_NETWORK} \
+    --publish 9092:9092 \
+    --mount "type=bind,source=${MOUNT_HTTPD_CONFIG_DIR},target=/usr/local/apache2/conf" \
+    ${HTTPD_DOCKER_IMAGE}
+
+  #wait_for_url $OAUTH_PROVIDER_URL ${FORWARD_PROXY_URL}
+  end "devkeycloak-proxy is ready"
+}

selenium/bin/components/forward-proxy

@@ -14,12 +14,10 @@ init_forward-proxy() {
   PROXY_PORT=9092 
 
   print "> HTTPD_CONFIG: ${HTTPD_CONFIG_DIR}"
-  print "> PROXIED_OAUTH_PROVIDER: ${TEST_CONFIG_DIR}/${PROXIED_OAUTH_PROVIDER}"
   print "> OAUTH_PROVIDER_URL: ${OAUTH_PROVIDER_URL}"
   print "> PROXY_HOSTNAME: ${PROXY_HOSTNAME}"
   print "> PROXY_PORT: ${PROXY_PORT}"
 
-#  generate-ca-server-client-kpi forward-proxy $HTTPD_CONFIG_DIR
 }
 
 start_forward-proxy() {

selenium/bin/components/prodkeycloak-proxy

@@ -0,0 +1,44 @@
+
+HTTPD_DOCKER_IMAGE=httpd:latest
+
+ensure_prodkeycloak-proxy() {
+  if docker ps | grep prodkeycloak-proxy &> /dev/null; then
+     print "prodkeycloak-proxy already running ..."
+ else
+   start_prodkeycloak-proxy
+ fi
+}
+init_prodkeycloak-proxy() {
+  HTTPD_CONFIG_DIR=${TEST_CONFIG_DIR}/prodkeycloak-proxy
+  PROXY_HOSTNAME=prodkeycloak-proxy 
+  PROXY_PORT=9091
+
+  print "> HTTPD_CONFIG: ${HTTPD_CONFIG_DIR}"
+  print "> PROXY_HOSTNAME: ${PROXY_HOSTNAME}"
+  print "> PROXY_PORT: ${PROXY_PORT}"
+  
+}
+
+start_prodkeycloak-proxy() {
+  begin "Starting prodkeycloak-proxy ..."
+
+  init_prodkeycloak-proxy
+  kill_container_if_exist prodkeycloak-proxy
+
+  MOUNT_HTTPD_CONFIG_DIR=$CONF_DIR/httpd
+
+  mkdir -p $MOUNT_HTTPD_CONFIG_DIR
+  ${BIN_DIR}/gen-httpd-conf ${HTTPD_CONFIG_DIR} $ENV_FILE $MOUNT_HTTPD_CONFIG_DIR/httpd.conf
+  print "> EFFECTIVE HTTPD_CONFIG_FILE: $MOUNT_HTTPD_CONFIG_DIR/httpd.conf"
+  cp ${HTTPD_CONFIG_DIR}/.htpasswd $MOUNT_HTTPD_CONFIG_DIR
+  
+  docker run \
+    --detach \
+    --name prodkeycloak-proxy \
+    --net ${DOCKER_NETWORK} \
+    --publish 9091:9092 \
+    --mount "type=bind,source=${MOUNT_HTTPD_CONFIG_DIR},target=/usr/local/apache2/conf" \
+    ${HTTPD_DOCKER_IMAGE}
+
+  end "prodkeycloak-proxy is ready"
+}

selenium/test/multi-oauth/devkeycloak-proxy/.htpasswd

@@ -0,0 +1 @@
+guest:{SHA}NWdeaPS1r3uZXZIFrQ/EOELxZFA=

selenium/test/multi-oauth/devkeycloak-proxy/httpd.conf

@@ -0,0 +1,147 @@
+#
+# This is the main Apache HTTP server configuration file.  It contains the
+# configuration directives that give the server its instructions.
+# See <URL:http://httpd.apache.org/docs/2.4/> for detailed information.
+# In particular, see
+# <URL:http://httpd.apache.org/docs/2.4/mod/directives.html>
+# for a discussion of each configuration directive.
+#
+# Do NOT simply read the instructions in here without understanding
+# what they do.  They're here only as hints or reminders.  If you are unsure
+# consult the online docs. You have been warned.
+#
+# Configuration and logfile names: If the filenames you specify for many
+# of the server's control files begin with "/" (or "drive:/" for Win32), the
+# server will use that explicit path.  If the filenames do *not* begin
+# with "/", the value of ServerRoot is prepended -- so "logs/access_log"
+# with ServerRoot set to "/usr/local/apache2" will be interpreted by the
+# server as "/usr/local/apache2/logs/access_log", whereas "/logs/access_log"
+# will be interpreted as '/logs/access_log'.
+
+#
+# ServerRoot: The top of the directory tree under which the server's
+# configuration, error, and log files are kept.
+#
+# Do not add a slash at the end of the directory path.  If you point
+# ServerRoot at a non-local disk, be sure to specify a local disk on the
+# Mutex directive, if file-based mutexes are used.  If you wish to share the
+# same ServerRoot for multiple httpd daemons, you will need to change at
+# least PidFile.
+#
+ServerRoot "/usr/local/apache2"
+
+#
+# Mutex: Allows you to set the mutex mechanism and mutex file directory
+# for individual mutexes, or change the global defaults
+#
+# Uncomment and change the directory if mutexes are file-based and the default
+# mutex file directory is not on a local disk or is not appropriate for some
+# other reason.
+#
+# Mutex default:logs
+
+#
+# Listen: Allows you to bind Apache to specific IP addresses and/or
+# ports, instead of the default. See also the <VirtualHost>
+# directive.
+#
+# Change this to Listen on specific IP addresses as shown below to
+# prevent Apache from glomming onto all bound IP addresses.
+#
+#Listen 12.34.56.78:80
+Listen 9092
+
+#
+# Dynamic Shared Object (DSO) Support
+#
+# To be able to use the functionality of a module which was built as a DSO you
+# have to place corresponding `LoadModule' lines at this location so the
+# directives contained in it are actually available _before_ they are used.
+# Statically compiled modules (those listed by `httpd -l') do not need
+# to be loaded here.
+#
+# Example:
+# LoadModule foo_module modules/mod_foo.so
+#
+
+LoadModule mpm_event_module modules/mod_mpm_event.so
+LoadModule access_compat_module modules/mod_access_compat.so
+LoadModule log_config_module modules/mod_log_config.so
+LoadModule auth_basic_module modules/mod_auth_basic.so
+LoadModule authn_core_module modules/mod_authn_core.so
+LoadModule authz_core_module modules/mod_authz_core.so
+LoadModule authn_file_module modules/mod_authn_file.so
+LoadModule authz_user_module modules/mod_authz_user.so
+LoadModule proxy_module modules/mod_proxy.so
+LoadModule proxy_connect_module modules/mod_proxy_connect.so
+LoadModule proxy_http_module modules/mod_proxy_http.so
+LoadModule ssl_module modules/mod_ssl.so
+LoadModule unixd_module modules/mod_unixd.so
+
+<IfModule unixd_module>
+User www-data
+Group www-data
+</IfModule>
+
+
+ServerAdmin [email protected]
+
+ServerName devkeycloak-proxy
+
+ErrorLog /proc/self/fd/2
+
+LogLevel warn
+
+<IfModule log_config_module>
+    #
+    # The following directives define some format nicknames for use with
+    # a CustomLog directive (see below).
+    #
+    LogFormat "%h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\"" combined
+    LogFormat "%h %l %u %t \"%r\" %>s %b" common
+
+    <IfModule logio_module>
+      # You need to enable mod_logio.c to use %I and %O
+      LogFormat "%h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\" %I %O" combinedio
+    </IfModule>
+
+    #
+    # The location and format of the access logfile (Common Logfile Format).
+    # If you do not define any access logfiles within a <VirtualHost>
+    # container, they will be logged here.  Contrariwise, if you *do*
+    # define per-<VirtualHost> access logfiles, transactions will be
+    # logged therein and *not* in this file.
+    #
+    CustomLog logs/access_log common
+
+    #
+    # If you prefer a logfile with access, agent, and referer information
+    # (Combined Logfile Format) you can use the following directive.
+    #
+    #CustomLog "logs/access_log" combined
+</IfModule>
+
+<IfModule proxy_module>
+    ProxyRequests On
+    ProxyVia On
+    <Proxy *>    
+        Allow from all
+    </Proxy>
+</IfModule>
+
+
+<VirtualHost *:9092>
+  AllowCONNECT 8443
+   
+  ProxyRequests On
+  ProxyVia On
+  LogLevel debug
+  ErrorLog /dev/stderr
+  CustomLog /dev/stdout combined
+
+  <Proxy "*">
+    Allow from all
+    
+
+  </Proxy>
+</VirtualHost>

selenium/test/multi-oauth/env.devkeycloak-proxy

@@ -0,0 +1,2 @@
+export DEVKEYCLOAK_PROXY_HOST=devkeycloak-proxy
+export DEVKEYCLOAK_PROXY_PORT=9092

selenium/test/multi-oauth/env.prodkeycloak-proxy

@@ -0,0 +1,4 @@
+export PRODKEYCLOAK_PROXY_HOST=prodkeycloak-proxy
+export PRODKEYCLOAK_PROXY_PORT=9091
+export PRODKEYCLOAK_PROXY_USERNAME=guest
+export PRODKEYCLOAK_PROXY_PASSWORD=guest

selenium/test/multi-oauth/prodkeycloak-proxy/.htpasswd

@@ -0,0 +1 @@
+guest:{SHA}NWdeaPS1r3uZXZIFrQ/EOELxZFA=