apisix/t/node/credential-plugin-multi-credentials.t

# Licensed to the Apache Software Foundation (ASF) under one
# or more contributor license agreements.  See the NOTICE file
# distributed with this work for additional information
# regarding copyright ownership.  The ASF licenses this file
# to you under the Apache License, Version 2.0 (the
# "License"); you may not use this file except in compliance
# with the License.  You may obtain a copy of the License at
#
#   http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing,
# software distributed under the License is distributed on an
# "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
# KIND, either express or implied.  See the License for the
# specific language governing permissions and limitations
# under the License.

use t::APISIX 'no_plan';

repeat_each(1);
no_long_string();
no_root_location();
run_tests;

__DATA__

=== TEST 1: enable key-auth plugin on /hello
--- config
    location /t {
        content_by_lua_block {
            local t = require("lib.test_admin").test

            -- basic-auth on route 1
            local code, body = t('/apisix/admin/routes/1',
                ngx.HTTP_PUT,
                [[{
                    "plugins": {
                        "key-auth": {}
                    },
                    "upstream": {
                        "nodes": {
                            "127.0.0.1:1980": 1
                        },
                        "type": "roundrobin"
                    },
                    "uri": "/hello"
                }]]
            )

            if code >= 300 then
                ngx.status = code
            end
            ngx.say(body)
        }
    }
--- request
GET /t
--- response_body
passed



=== TEST 2: create a consumer
--- config
    location /t {
        content_by_lua_block {
            local t = require("lib.test_admin").test
            local code, body = t('/apisix/admin/consumers',
                ngx.HTTP_PUT,
                [[{
                    "username": "jack"
                }]]
                )

            if code >= 300 then
                ngx.status = code
            end
            ngx.say(body)
        }
    }
--- request
GET /t
--- response_body
passed



=== TEST 3: create the first credential with the key-auth plugin enabled for the consumer
--- config
    location /t {
        content_by_lua_block {
            local t = require("lib.test_admin").test
            local code, body = t('/apisix/admin/consumers/jack/credentials/the-first-one',
                ngx.HTTP_PUT,
                [[{
                     "plugins": {
                         "key-auth": {"key": "p7a3k6r4t9"}
                     }
                }]],
                [[{
                    "value":{
                        "id":"the-first-one",
                        "plugins":{
                            "key-auth": {"key": "fsFPtg7BtXMXkvSnS9e1zw=="}
                        }
                    },
                    "key":"/apisix/consumers/jack/credentials/the-first-one"
                }]]
            )

            ngx.status = code
            ngx.say(body)
        }
    }
--- request
GET /t
--- response_body
passed



=== TEST 4: create the second credential with the key-auth plugin enabled for the consumer
--- config
    location /t {
        content_by_lua_block {
            local t = require("lib.test_admin").test
            local code, body = t('/apisix/admin/consumers/jack/credentials/the-second-one',
                ngx.HTTP_PUT,
                [[{
                     "plugins": {
                         "key-auth": {"key": "v8p3q6r7t9"}
                     }
                }]],
                [[{
                    "value":{
                        "id":"the-second-one",
                        "plugins":{
                            "key-auth": {"key": "QwGua2GjZjOiq+Mj3Mef2g=="}
                        }
                    },
                    "key":"/apisix/consumers/jack/credentials/the-second-one"
                }]]
            )

            ngx.status = code
            ngx.say(body)
        }
    }
--- request
GET /t
--- response_body
passed



=== TEST 5: request /hello with the key of the first credential: should be OK
--- request
GET /hello
--- more_headers
apikey: p7a3k6r4t9
--- response_body
hello world



=== TEST 6: request /hello with the key of second credential: should be OK
--- request
GET /hello
--- more_headers
apikey: v8p3q6r7t9
--- response_body
hello world



=== TEST 7: delete the first credential
--- config
    location /t {
        content_by_lua_block {
            local t = require("lib.test_admin").test
            local code, body = t('/apisix/admin/consumers/jack/credentials/the-first-one', ngx.HTTP_DELETE)

            ngx.status = code
            ngx.say(body)
        }
    }
--- request
GET /t
--- response_body
passed



=== TEST 8: request /hello with the key of the first credential: should be not OK
--- request
GET /hello
--- more_headers
apikey: p7a3k6r4t9
--- error_code: 401



=== TEST 9: request /hello with the key of the second credential: should be OK
--- request
GET /hello
--- more_headers
apikey: v8p3q6r7t9
--- response_body
hello world



=== TEST 10: delete the second credential
--- config
    location /t {
        content_by_lua_block {
            local t = require("lib.test_admin").test
            local code, body = t('/apisix/admin/consumers/jack/credentials/the-second-one', ngx.HTTP_DELETE)

            ngx.status = code
            ngx.say(body)
        }
    }
--- request
GET /t
--- response_body
passed



=== TEST 11: request /hello with the key of the second credential: should be not OK
--- request
GET /hello
--- more_headers
apikey: v8p3q6r7t9
--- error_code: 401