stub out proxyauth addon
Stub out basic workings, add and test configure event.
This commit is contained in:
parent
fe01b1435a
commit
e644d2167c
|
@ -0,0 +1,68 @@
|
|||
import binascii
|
||||
|
||||
import passlib.apache
|
||||
|
||||
from mitmproxy import exceptions
|
||||
|
||||
|
||||
def parse_http_basic_auth(s):
|
||||
words = s.split()
|
||||
if len(words) != 2:
|
||||
return None
|
||||
scheme = words[0]
|
||||
try:
|
||||
user = binascii.a2b_base64(words[1]).decode("utf8", "replace")
|
||||
except binascii.Error:
|
||||
return None
|
||||
parts = user.split(':')
|
||||
if len(parts) != 2:
|
||||
return None
|
||||
return scheme, parts[0], parts[1]
|
||||
|
||||
|
||||
def assemble_http_basic_auth(scheme, username, password):
|
||||
v = binascii.b2a_base64(
|
||||
(username + ":" + password).encode("utf8")
|
||||
).decode("ascii")
|
||||
return scheme + " " + v
|
||||
|
||||
|
||||
class ProxyAuth:
|
||||
def __init__(self):
|
||||
self.nonanonymous = False
|
||||
self.htpasswd = None
|
||||
self.singleuser = None
|
||||
|
||||
def configure(self, options, updated):
|
||||
if "auth_nonanonymous" in updated:
|
||||
self.nonanonymous = options.auth_nonanonymous
|
||||
if "auth_singleuser" in updated:
|
||||
if options.auth_singleuser:
|
||||
parts = options.auth_singleuser.split(':')
|
||||
if len(parts) != 2:
|
||||
raise exceptions.OptionsError(
|
||||
"Invalid single-user auth specification."
|
||||
)
|
||||
self.singleuser = parts
|
||||
else:
|
||||
self.singleuser = None
|
||||
if "auth_htpasswd" in updated:
|
||||
if options.auth_htpasswd:
|
||||
try:
|
||||
self.htpasswd = passlib.apache.HtpasswdFile(
|
||||
options.auth_htpasswd
|
||||
)
|
||||
except (ValueError, OSError) as v:
|
||||
raise exceptions.OptionsError(
|
||||
"Could not open htpasswd file: %s" % v
|
||||
)
|
||||
else:
|
||||
self.auth_htpasswd = None
|
||||
|
||||
def http_connect(self, f):
|
||||
# mode = regular
|
||||
pass
|
||||
|
||||
def http_request(self, f):
|
||||
# mode = regular, no via
|
||||
pass
|
|
@ -0,0 +1,53 @@
|
|||
import binascii
|
||||
|
||||
from mitmproxy import exceptions
|
||||
from mitmproxy.test import taddons
|
||||
from mitmproxy.test import tflow
|
||||
from mitmproxy.test import tutils
|
||||
from mitmproxy.addons import proxyauth
|
||||
|
||||
|
||||
def test_parse_http_basic_auth():
|
||||
vals = ("basic", "foo", "bar")
|
||||
assert proxyauth.parse_http_basic_auth(
|
||||
proxyauth.assemble_http_basic_auth(*vals)
|
||||
) == vals
|
||||
assert not proxyauth.parse_http_basic_auth("")
|
||||
assert not proxyauth.parse_http_basic_auth("foo bar")
|
||||
v = "basic " + binascii.b2a_base64(b"foo").decode("ascii")
|
||||
assert not proxyauth.parse_http_basic_auth(v)
|
||||
|
||||
|
||||
def test_configure():
|
||||
up = proxyauth.ProxyAuth()
|
||||
with taddons.context() as ctx:
|
||||
tutils.raises(
|
||||
exceptions.OptionsError,
|
||||
ctx.configure, up, auth_singleuser="foo"
|
||||
)
|
||||
|
||||
ctx.configure(up, auth_singleuser="foo:bar")
|
||||
assert up.singleuser == ["foo", "bar"]
|
||||
|
||||
ctx.configure(up, auth_singleuser=None)
|
||||
assert up.singleuser is None
|
||||
|
||||
ctx.configure(up, auth_nonanonymous=True)
|
||||
assert up.nonanonymous
|
||||
ctx.configure(up, auth_nonanonymous=False)
|
||||
assert not up.nonanonymous
|
||||
|
||||
tutils.raises(
|
||||
exceptions.OptionsError,
|
||||
ctx.configure,
|
||||
up,
|
||||
auth_htpasswd = tutils.test_data.path(
|
||||
"mitmproxy/net/data/server.crt"
|
||||
)
|
||||
)
|
||||
tutils.raises(
|
||||
exceptions.OptionsError,
|
||||
ctx.configure,
|
||||
up,
|
||||
auth_htpasswd = "nonexistent"
|
||||
)
|
Loading…
Reference in New Issue