sqlite/libsql
0
0
Fork 0
mirror of https://github.com/tursodatabase/libsql.git synced 2024-11-22 02:16:15 +00:00
Code
main
libsql/libsql-server/tests/standalone/auth.rs
ad hoc 5ece28f4fe
gid tag token claim (#1190)
2024-03-11 16:14:52 +00:00

126 lines
3.2 KiB
Rust
Raw Permalink Blame History

use std::time::Duration;
use libsql::Database;
use crate::common::auth::{encode, key_pair};
use crate::common::http::Client;
use crate::common::net::TurmoilConnector;
use super::make_standalone_server;
#[test]
fn jwt_auth_namespace_access() {
let mut sim = turmoil::Builder::new()
.simulation_duration(Duration::from_secs(1000))
.build();
sim.host("primary", make_standalone_server);
sim.client("test", async {
let client = Client::new();
let (enc, jwt_key) = key_pair();
assert!(client
.post(
"http://primary:9090/v1/namespaces/foo/create",
serde_json::json!({ "jwt_key": jwt_key })
)
.await
.unwrap()
.status()
.is_success());
let claims = serde_json::json!({
"id": "foo",
});
let token = encode(&claims, &enc);
let foo_db = Database::open_remote_with_connector(
"http://foo.primary:8080",
&token,
TurmoilConnector,
)?;
let foo_conn = foo_db.connect().unwrap();
foo_conn.execute("SELECT 1", ()).await.unwrap();
Ok(())
});
sim.run().unwrap();
}
#[test]
fn jwt_auth_gid_scope() {
std::env::set_var("LIBSQL_GID", "my_gid");
let mut sim = turmoil::Builder::new()
.simulation_duration(Duration::from_secs(1000))
.build();
sim.host("primary", make_standalone_server);
sim.client("test", async {
let client = Client::new();
let (enc, jwt_key) = key_pair();
assert!(client
.post(
"http://primary:9090/v1/namespaces/foo/create",
serde_json::json!({ "jwt_key": jwt_key })
)
.await
.unwrap()
.status()
.is_success());
{
let claims = serde_json::json!({
"p": {
"ro": {
"tags": ["my_gid"]
}
},
});
let token = encode(&claims, &enc);
let foo_db = Database::open_remote_with_connector(
"http://foo.primary:8080",
&token,
TurmoilConnector,
)?;
let foo_conn = foo_db.connect().unwrap();
foo_conn.execute("SELECT 1", ()).await.unwrap();
foo_conn
.execute("create table test (c)", ())
.await
.unwrap_err();
}
{
let claims = serde_json::json!({
"p": {
"ro": {
"tags": ["other_gid"]
}
},
});
let token = encode(&claims, &enc);
let foo_db = Database::open_remote_with_connector(
"http://foo.primary:8080",
&token,
TurmoilConnector,
)?;
let foo_conn = foo_db.connect().unwrap();
foo_conn.execute("SELECT 1", ()).await.unwrap_err();
foo_conn
.execute("create table test (c)", ())
.await
.unwrap_err();
}
Ok(())
});
sim.run().unwrap();
}
View Git Blame Copy Permalink