mirror of
https://github.com/juanfont/headscale.git
synced 2025-10-28 10:51:44 +01:00
116 lines
2.7 KiB
Go
116 lines
2.7 KiB
Go
package cli
|
|
|
|
import (
|
|
"fmt"
|
|
"net"
|
|
"os"
|
|
"strconv"
|
|
"time"
|
|
|
|
"github.com/oauth2-proxy/mockoidc"
|
|
"github.com/rs/zerolog/log"
|
|
"github.com/spf13/cobra"
|
|
)
|
|
|
|
const (
|
|
errMockOidcClientIDNotDefined = Error("MOCKOIDC_CLIENT_ID not defined")
|
|
errMockOidcClientSecretNotDefined = Error("MOCKOIDC_CLIENT_SECRET not defined")
|
|
errMockOidcPortNotDefined = Error("MOCKOIDC_PORT not defined")
|
|
refreshTTL = 60 * time.Minute
|
|
)
|
|
|
|
var accessTTL = 2 * time.Minute
|
|
|
|
func init() {
|
|
rootCmd.AddCommand(mockOidcCmd)
|
|
}
|
|
|
|
var mockOidcCmd = &cobra.Command{
|
|
Use: "mockoidc",
|
|
Short: "Runs a mock OIDC server for testing",
|
|
Long: "This internal command runs a OpenID Connect for testing purposes",
|
|
Run: func(cmd *cobra.Command, args []string) {
|
|
err := mockOIDC()
|
|
if err != nil {
|
|
log.Error().Err(err).Msgf("Error running mock OIDC server")
|
|
os.Exit(1)
|
|
}
|
|
},
|
|
}
|
|
|
|
func mockOIDC() error {
|
|
clientID := os.Getenv("MOCKOIDC_CLIENT_ID")
|
|
if clientID == "" {
|
|
return errMockOidcClientIDNotDefined
|
|
}
|
|
clientSecret := os.Getenv("MOCKOIDC_CLIENT_SECRET")
|
|
if clientSecret == "" {
|
|
return errMockOidcClientSecretNotDefined
|
|
}
|
|
addrStr := os.Getenv("MOCKOIDC_ADDR")
|
|
if addrStr == "" {
|
|
return errMockOidcPortNotDefined
|
|
}
|
|
portStr := os.Getenv("MOCKOIDC_PORT")
|
|
if portStr == "" {
|
|
return errMockOidcPortNotDefined
|
|
}
|
|
accessTTLOverride := os.Getenv("MOCKOIDC_ACCESS_TTL")
|
|
if accessTTLOverride != "" {
|
|
newTTL, err := time.ParseDuration(accessTTLOverride)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
accessTTL = newTTL
|
|
}
|
|
|
|
log.Info().Msgf("Access token TTL: %s", accessTTL)
|
|
|
|
port, err := strconv.Atoi(portStr)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
mock, err := getMockOIDC(clientID, clientSecret)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
listener, err := net.Listen("tcp", fmt.Sprintf("%s:%d", addrStr, port))
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
err = mock.Start(listener, nil)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
log.Info().Msgf("Mock OIDC server listening on %s", listener.Addr().String())
|
|
log.Info().Msgf("Issuer: %s", mock.Issuer())
|
|
c := make(chan struct{})
|
|
<-c
|
|
|
|
return nil
|
|
}
|
|
|
|
func getMockOIDC(clientID string, clientSecret string) (*mockoidc.MockOIDC, error) {
|
|
keypair, err := mockoidc.NewKeypair(nil)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
mock := mockoidc.MockOIDC{
|
|
ClientID: clientID,
|
|
ClientSecret: clientSecret,
|
|
AccessTTL: accessTTL,
|
|
RefreshTTL: refreshTTL,
|
|
CodeChallengeMethodsSupported: []string{"plain", "S256"},
|
|
Keypair: keypair,
|
|
SessionStore: mockoidc.NewSessionStore(),
|
|
UserQueue: &mockoidc.UserQueue{},
|
|
ErrorQueue: &mockoidc.ErrorQueue{},
|
|
}
|
|
|
|
return &mock, nil
|
|
}
|