1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
|
#!/usr/bin/env python
# Test Soledad sync
#
# This script performs a slightly modified U1DB sync to the Soledad server and
# returns whether that sync was succesful or not.
import tempfile
import requests
import os
import srp._pysrp as srp
import shutil
import u1db
import webapp_login
from u1db.remote.http_target import HTTPSyncTarget
# monkey patch U1DB's HTTPSyncTarget to perform token based auth
def set_token_credentials(self, uuid, token):
self._creds = {'token': (uuid, token)}
def _sign_request(self, method, url_query, params):
uuid, token = self._creds['token']
auth = '%s:%s' % (uuid, token)
return [('Authorization', 'Token %s' % auth.encode('base64')[:-1])]
HTTPSyncTarget.set_token_credentials = set_token_credentials
HTTPSyncTarget._sign_request = _sign_request
def fail(reason):
print '2 soledad_sync - CRITICAL - ' + reason
exit(2)
# monkey patch webapp_login's fail function to report as soledad
webapp_login.fail = fail
# The following function could fetch all info needed to sync using soledad.
# Despite that, we won't use all that info because we are instead faking a
# Soledad sync by using U1DB slightly modified syncing capabilities. Part of
# the code is commented and left here for future reference, in case we decide
# to actually use the Soledad client in the future.
def get_soledad_info(config, tempdir):
# get login and get user info
user = config['user']
api = config['api']
usr = srp.User( user['username'], user['password'], srp.SHA256, srp.NG_1024 )
try:
auth = webapp_login.authenticate(api, usr)
except requests.exceptions.ConnectionError:
fail('no connection to server')
# get soledad server url
service_url = 'https://%s:%d/%d/config/soledad-service.json' % \
(api['domain'], api['port'], api['version'])
soledad_hosts = requests.get(service_url).json['hosts']
host = soledad_hosts.keys()[0]
server_url = 'https://%s:%d/user-%s' % \
(soledad_hosts[host]['hostname'], soledad_hosts[host]['port'],
auth['id'])
# get provider ca certificate
#ca_cert = requests.get('https://127.0.0.1/ca.crt', verify=False).text
#cert_file = os.path.join(tempdir, 'ca.crt')
cert_file = None # not used for now
#with open(cert_file, 'w') as f:
# f.write(ca_cert)
return auth['id'], user['password'], server_url, cert_file, auth['token']
def run_tests():
tempdir = tempfile.mkdtemp()
uuid, password, server_url, cert_file, token = \
get_soledad_info(webapp_login.read_config(), tempdir)
exc = None
try:
# in the future, we can replace the following by an actual Soledad
# client sync, if needed
db = u1db.open(os.path.join(tempdir, '%s.db' % uuid), True)
creds = {'token': {'uuid': uuid, 'token': token}}
db.sync(server_url, creds=creds, autocreate=False)
except Exception as e:
exc = e
shutil.rmtree(tempdir)
exit(report(exc))
def report(exc):
if exc is None:
print '0 soledad_sync - OK - can sync soledad fine'
return 0
if isinstance(exc, u1db.errors.U1DBError):
print '2 soledad_sync - CRITICAL - ' + exc.message
else:
print '2 soledad_sync - CRITICAL - ' + str(exc)
return 2
if __name__ == '__main__':
run_tests()
|