2fas-server/internal/common/security/middleware_test.go

package security

import (
	"github.com/gin-gonic/gin"
	"github.com/stretchr/testify/assert"
	"github.com/twofas/2fas-server/config"
	http2 "github.com/twofas/2fas-server/internal/common/http"
	"net/http"
	"net/http/httptest"
	"testing"
)

func Test_DoNotAllowUntrustedIp(t *testing.T) {
	c := config.SecurityConfig{TrustedIP: []string{
		"192.168.0.1/32",
	}}

	whitelistMiddleware := http2.IPWhitelistMiddleware(c)

	recorder := httptest.NewRecorder()
	ctx, _ := gin.CreateTestContext(recorder)

	ctx.Request, _ = http.NewRequest("POST", "/", nil)
	ctx.Request.Header.Set("X-Forwarded-For", "192.168.0.2")

	whitelistMiddleware(ctx)
	assert.Equal(t, recorder.Code, 401)
}
1.0.0 2022-12-31 10:22:38 +01:00			`package security`

			`import (`
			`"github.com/gin-gonic/gin"`
			`"github.com/stretchr/testify/assert"`
update module name 2023-01-30 19:59:42 +01:00			`"github.com/twofas/2fas-server/config"`
			`http2 "github.com/twofas/2fas-server/internal/common/http"`
1.0.0 2022-12-31 10:22:38 +01:00			`"net/http"`
			`"net/http/httptest"`
			`"testing"`
			`)`

			`func Test_DoNotAllowUntrustedIp(t *testing.T) {`
			`c := config.SecurityConfig{TrustedIP: []string{`
			`"192.168.0.1/32",`
			`}}`

			`whitelistMiddleware := http2.IPWhitelistMiddleware(c)`

			`recorder := httptest.NewRecorder()`
			`ctx, _ := gin.CreateTestContext(recorder)`

			`ctx.Request, _ = http.NewRequest("POST", "/", nil)`
			`ctx.Request.Header.Set("X-Forwarded-For", "192.168.0.2")`

			`whitelistMiddleware(ctx)`
			`assert.Equal(t, recorder.Code, 401)`
			`}`