Strona główna Odkrywaj Pomoc
Zaloguj się
mirrors
/
nginx-proxy
kopia lustrzana https://github.com/nginx-proxy/nginx-proxy.git
2
0
Forkuj 0
Pliki
Gałąź: main
Gałęzie Tagi
nginx-proxy
/
test
/
test_ssl
/
test_wildcard-cert-nohttps.py

test_wildcard-cert-nohttps.py 2.2 KB
Bezpośredni odnośnik Historia Czysty

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657 
  1. import pytest
    2. 

  2. from ssl import CertificateError
    3. 

  3. from requests import ConnectionError
    4. 

  4. from requests.exceptions import SSLError
    5. 

  5. 

  6. 

  7. @pytest.mark.parametrize("subdomain,should_redirect_to_https", [
    8. 

  8.     (1, True),
    9. 

  9.     (2, True),
    10. 

  10.     (3, False),
    11. 

  11. ])
    12. 

  12. def test_http_redirects_to_https(docker_compose, nginxproxy, subdomain, should_redirect_to_https):
    13. 

  13.     r = nginxproxy.get(f"http://{subdomain}.web.nginx-proxy.tld/port")
    14. 

  14.     if should_redirect_to_https:
    15. 

  15.         assert len(r.history) > 0
    16. 

  16.         assert r.history[0].is_redirect
    17. 

  17.         assert r.history[0].headers.get("Location") == f"https://{subdomain}.web.nginx-proxy.tld/port"
    18. 

  18.     assert f"answer from port 8{subdomain}\n" == r.text
    19. 

  19. 

  20. 

  21. @pytest.mark.parametrize("subdomain", [1, 2])
    22. 

  22. def test_https_get_served(docker_compose, nginxproxy, subdomain):
    23. 

  23.     r = nginxproxy.get(f"https://{subdomain}.web.nginx-proxy.tld/port", allow_redirects=False)
    24. 

  24.     assert r.status_code == 200
    25. 

  25.     assert f"answer from port 8{subdomain}\n" == r.text
    26. 

  26. 

  27. @pytest.mark.filterwarnings('ignore::urllib3.exceptions.InsecureRequestWarning')
    28. 

  28. def test_https_request_to_nohttps_vhost_goes_to_fallback_server(docker_compose, nginxproxy):
    29. 

  29.     with pytest.raises( (CertificateError, SSLError) ) as excinfo:
    30. 

  30.         nginxproxy.get("https://3.web.nginx-proxy.tld/port")
    31. 

  31.     assert """certificate is not valid for '3.web.nginx-proxy.tld'""" in str(excinfo.value) or \
    32. 

  32.            """hostname '3.web.nginx-proxy.tld' doesn't match 'nginx-proxy.tld'""" in str(excinfo.value)
    33. 

  33. 

  34.     r = nginxproxy.get("https://3.web.nginx-proxy.tld/port", verify=False)
    35. 

  35.     assert r.status_code == 503
    36. 

  36. 

  37. 

  38. @pytest.mark.parametrize("subdomain,acme_should_work", [
    39. 

  39.     (1, True),
    40. 

  40.     (2, True),
    41. 

  41.     (3, False),
    42. 

  42. ])
    43. 

  43. def test_acme_challenge_works(
    44. 

  44.     docker_compose, nginxproxy, acme_challenge_path, subdomain, acme_should_work
    45. 

  45. ):
    46. 

  46.     if acme_should_work:
    47. 

  47.         r = nginxproxy.get(
    48. 

  48.             f"https://{subdomain}.web.nginx-proxy.tld/{acme_challenge_path}",
    49. 

  49.             allow_redirects=False
    50. 

  50.         )
    51. 

  51.         assert r.status_code == 404
    52. 

  52.     else:
    53. 

  53.         with pytest.raises(ConnectionError):
    54. 

  54.             nginxproxy.get(
    55. 

  55.                 f"https://{subdomain}.web.nginx-proxy.tld/{acme_challenge_path}",
    56. 

  56.                 allow_redirects=False
    57. 

  57.             )
    58.