Mercurial > hg > nginx-tests
changeset 1599:4e0644119341
Tests: proxy_smtp_auth directive tests.
author | Sergey Kandaurov <pluknet@nginx.com> |
---|---|
date | Tue, 06 Oct 2020 20:52:06 +0100 |
parents | f069dd7ba5a7 |
children | b61e820caa83 |
files | lib/Test/Nginx/SMTP.pm mail_proxy_smtp_auth.t |
diffstat | 2 files changed, 149 insertions(+), 0 deletions(-) [+] |
line wrap: on
line diff
--- a/lib/Test/Nginx/SMTP.pm Thu Oct 01 17:17:04 2020 +0100 +++ b/lib/Test/Nginx/SMTP.pm Tue Oct 06 20:52:06 2020 +0100 @@ -122,6 +122,8 @@ print $client '250 hello ok' . CRLF; } elsif (/^rset/i) { print $client '250 rset ok' . CRLF; + } elsif (/^auth plain/i) { + print $client '235 auth ok' . CRLF; } elsif (/^mail from:[^@]+$/i) { print $client '500 mail from error' . CRLF; } elsif (/^mail from:/i) {
--- /dev/null Thu Jan 01 00:00:00 1970 +0000 +++ b/mail_proxy_smtp_auth.t Tue Oct 06 20:52:06 2020 +0100 @@ -0,0 +1,147 @@ +#!/usr/bin/perl + +# (C) Sergey Kandaurov +# (C) Nginx, Inc. + +# Tests for nginx mail proxy module, the proxy_smtp_auth directive. + +############################################################################### + +use warnings; +use strict; + +use Test::More; + +use MIME::Base64; + +BEGIN { use FindBin; chdir($FindBin::Bin); } + +use lib 'lib'; +use Test::Nginx; +use Test::Nginx::SMTP; + +############################################################################### + +select STDERR; $| = 1; +select STDOUT; $| = 1; + +local $SIG{PIPE} = 'IGNORE'; + +my $t = Test::Nginx->new()->has(qw/mail smtp http rewrite/) + ->write_file_expand('nginx.conf', <<'EOF'); + +%%TEST_GLOBALS%% + +daemon off; + +events { +} + +mail { + proxy_pass_error_message on; + proxy_smtp_auth on; + auth_http http://127.0.0.1:8080/mail/auth; + smtp_auth login plain external; + + server { + listen 127.0.0.1:8025; + protocol smtp; + } + + server { + listen 127.0.0.1:8027; + protocol smtp; + xclient off; + } +} + +http { + %%TEST_GLOBALS_HTTP%% + + server { + listen 127.0.0.1:8080; + server_name localhost; + + location = /mail/auth { + add_header Auth-Status OK; + add_header Auth-Server 127.0.0.1; + add_header Auth-Port %%PORT_8026%%; + add_header Auth-Wait 1; + return 204; + } + } +} + +EOF + +$t->run_daemon(\&Test::Nginx::SMTP::smtp_test_daemon); +$t->try_run('no proxy_smtp_auth')->plan(7); + +$t->waitforsocket('127.0.0.1:' . port(8026)); + +############################################################################### + +# The following combinations may be sent to backend with proxy_smtp_auth on: +# +# ehlo, xclient, auth +# ehlo, xclient, helo, auth +# ehlo, xclient, ehlo, auth +# helo, auth +# ehlo, auth +# +# Test them in order. + +# ehlo, xclient, auth + +my $s = Test::Nginx::SMTP->new(); +$s->read(); +$s->send('AUTH PLAIN ' . encode_base64("\0test\@example.com\0secret", '')); +$s->authok('ehlo, xclient, auth'); + +# ehlo, xclient, helo, auth + +$s = Test::Nginx::SMTP->new(); +$s->read(); +$s->send('HELO example.com'); +$s->read(); +$s->send('AUTH PLAIN ' . encode_base64("\0test\@example.com\0secret", '')); +$s->authok('ehlo, xclient, helo, auth'); + +# ehlo, xclient, ehlo, auth + +$s = Test::Nginx::SMTP->new(); +$s->read(); +$s->send('EHLO example.com'); +$s->read(); +$s->send('AUTH PLAIN ' . encode_base64("\0test\@example.com\0secret", '')); +$s->authok('ehlo, xclient, ehlo, auth'); + +# helo, auth + +$s = Test::Nginx::SMTP->new(PeerAddr => '127.0.0.1:' . port(8027)); +$s->read(); +$s->send('AUTH PLAIN ' . encode_base64("\0test\@example.com\0secret", '')); +$s->authok('helo, auth'); + +# ehlo, auth + +$s = Test::Nginx::SMTP->new(PeerAddr => '127.0.0.1:' . port(8027)); +$s->read(); +$s->send('EHLO example.com'); +$s->read(); +$s->send('AUTH PLAIN ' . encode_base64("\0test\@example.com\0secret", '')); +$s->authok('ehlo, auth'); + +# Try auth external + +$s = Test::Nginx::SMTP->new(); +$s->read(); +$s->send('EHLO example.com'); +$s->read(); + +$s->send('AUTH EXTERNAL'); +$s->check(qr/^334 VXNlcm5hbWU6/, 'auth external challenge'); +$s->send(encode_base64('test@example.com', '')); +$s->check(qr/^4.. /, 'auth external no password'); + +###############################################################################