Kezdőlap Felfedezés Súgó
Bejelentkezés
mirrors
/
nginx-proxy
tükrözi: https://github.com/nginx-proxy/nginx-proxy.git
2
0
Másolás 0
Fájlok
Fa: 860d63fbc2
Branch-ok Tag-ek
nginx-proxy
/
test
/
test_headers
/
test_https.py

test_https.py 4.3 KB
Előzmények Nyers

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116 
  1. import pytest
    2. 

  2. 

  3. 

  4. def test_arbitrary_headers_are_passed_on(docker_compose, nginxproxy):
    5. 

  5.     r = nginxproxy.get("https://web.nginx-proxy.tld/headers", headers={'Foo': 'Bar'})
    6. 

  6.     assert r.status_code == 200
    7. 

  7.     assert "Foo: Bar\n" in r.text
    8. 

  8. 

  9. 

  10. ##### Testing the handling of X-Forwarded-For #####
    11. 

  11. 

  12. def test_X_Forwarded_For_is_generated(docker_compose, nginxproxy):
    13. 

  13.     r = nginxproxy.get("https://web.nginx-proxy.tld/headers")
    14. 

  14.     assert r.status_code == 200
    15. 

  15.     assert "X-Forwarded-For:" in r.text
    16. 

  16. 

  17. def test_X_Forwarded_For_is_passed_on(docker_compose, nginxproxy):
    18. 

  18.     r = nginxproxy.get("https://web.nginx-proxy.tld/headers", headers={'X-Forwarded-For': '1.2.3.4'})
    19. 

  19.     assert r.status_code == 200
    20. 

  20.     assert "X-Forwarded-For: 1.2.3.4, " in r.text
    21. 

  21. 

  22. 

  23. ##### Testing the handling of X-Forwarded-Proto #####
    24. 

  24. 

  25. def test_X_Forwarded_Proto_is_generated(docker_compose, nginxproxy):
    26. 

  26.     r = nginxproxy.get("https://web.nginx-proxy.tld/headers")
    27. 

  27.     assert r.status_code == 200
    28. 

  28.     assert "X-Forwarded-Proto: https" in r.text
    29. 

  29. 

  30. def test_X_Forwarded_Proto_is_passed_on(docker_compose, nginxproxy):
    31. 

  31.     r = nginxproxy.get("https://web.nginx-proxy.tld/headers", headers={'X-Forwarded-Proto': 'f00'})
    32. 

  32.     assert r.status_code == 200
    33. 

  33.     assert "X-Forwarded-Proto: f00\n" in r.text
    34. 

  34. 

  35. 

  36. ##### Testing the handling of X-Forwarded-Host #####
    37. 

  37. 

  38. def test_X_Forwarded_Host_is_generated(docker_compose, nginxproxy):
    39. 

  39.     r = nginxproxy.get("https://web.nginx-proxy.tld/headers")
    40. 

  40.     assert r.status_code == 200
    41. 

  41.     assert "X-Forwarded-Host: web.nginx-proxy.tld\n" in r.text
    42. 

  42. 

  43. def test_X_Forwarded_Host_is_passed_on(docker_compose, nginxproxy):
    44. 

  44.     r = nginxproxy.get("https://web.nginx-proxy.tld/headers", headers={'X-Forwarded-Host': 'example.com'})
    45. 

  45.     assert r.status_code == 200
    46. 

  46.     assert "X-Forwarded-Host: example.com\n" in r.text
    47. 

  47. 

  48. 

  49. ##### Testing the handling of X-Forwarded-Port #####
    50. 

  50. 

  51. def test_X_Forwarded_Port_is_generated(docker_compose, nginxproxy):
    52. 

  52.     r = nginxproxy.get("https://web.nginx-proxy.tld/headers")
    53. 

  53.     assert r.status_code == 200
    54. 

  54.     assert "X-Forwarded-Port: 443\n" in r.text
    55. 

  55. 

  56. def test_X_Forwarded_Port_is_passed_on(docker_compose, nginxproxy):
    57. 

  57.     r = nginxproxy.get("https://web.nginx-proxy.tld/headers", headers={'X-Forwarded-Port': '1234'})
    58. 

  58.     assert r.status_code == 200
    59. 

  59.     assert "X-Forwarded-Port: 1234\n" in r.text
    60. 

  60. 

  61. 

  62. ##### Testing the handling of X-Forwarded-Ssl #####
    63. 

  63. 

  64. def test_X_Forwarded_Ssl_is_generated(docker_compose, nginxproxy):
    65. 

  65.     r = nginxproxy.get("https://web.nginx-proxy.tld/headers")
    66. 

  66.     assert r.status_code == 200
    67. 

  67.     assert "X-Forwarded-Ssl: on\n" in r.text
    68. 

  68. 

  69. def test_X_Forwarded_Ssl_is_overwritten(docker_compose, nginxproxy):
    70. 

  70.     r = nginxproxy.get("https://web.nginx-proxy.tld/headers", headers={'X-Forwarded-Ssl': 'f00'})
    71. 

  71.     assert r.status_code == 200
    72. 

  72.     assert "X-Forwarded-Ssl: on\n" in r.text
    73. 

  73. 

  74. 

  75. ##### Other headers
    76. 

  76. 

  77. def test_X_Real_IP_is_generated(docker_compose, nginxproxy):
    78. 

  78.     r = nginxproxy.get("https://web.nginx-proxy.tld/headers")
    79. 

  79.     assert r.status_code == 200
    80. 

  80.     assert "X-Real-IP: " in r.text
    81. 

  81. 

  82. def test_Host_is_passed_on(docker_compose, nginxproxy):
    83. 

  83.     r = nginxproxy.get("https://web.nginx-proxy.tld/headers")
    84. 

  84.     assert r.status_code == 200
    85. 

  85.     assert "Host: web.nginx-proxy.tld" in r.text
    86. 

  86. 

  87. def test_httpoxy_safe(docker_compose, nginxproxy):
    88. 

  88.     """
    89. 

  89.     See https://httpoxy.org/
    90. 

  90.     nginx-proxy should suppress the `Proxy` header
    91. 

  91.     """
    92. 

  92.     r = nginxproxy.get("https://web.nginx-proxy.tld/headers", headers={'Proxy': 'tcp://some.hacker.com'})
    93. 

  93.     assert r.status_code == 200
    94. 

  94.     assert "Proxy:" not in r.text
    95. 

  95. 

  96. 

  97. @pytest.mark.filterwarnings('ignore::urllib3.exceptions.InsecureRequestWarning')
    98. 

  98. def test_no_host_server_tokens_off(docker_compose, nginxproxy):
    99. 

  99.     ip = nginxproxy.get_ip()
    100. 

  100.     r = nginxproxy.get(f"https://{ip}/headers", verify=False)
    101. 

  101.     assert r.status_code == 503
    102. 

  102.     assert r.headers["Server"] == "nginx"
    103. 

  103. 

  104. 

  105. def test_server_tokens_on(docker_compose, nginxproxy):
    106. 

  106.     r = nginxproxy.get("https://web.nginx-proxy.tld/headers")
    107. 

  107.     assert r.status_code == 200
    108. 

  108.     assert "Host: web.nginx-proxy.tld" in r.text
    109. 

  109.     assert r.headers["Server"].startswith("nginx/")
    110. 

  110. 

  111. 

  112. def test_server_tokens_off(docker_compose, nginxproxy):
    113. 

  113.     r = nginxproxy.get("https://web-server-tokens-off.nginx-proxy.tld/headers")
    114. 

  114.     assert r.status_code == 200
    115. 

  115.     assert "Host: web-server-tokens-off.nginx-proxy.tld" in r.text
    116. 

  116.     assert r.headers["Server"] == "nginx"
    117.