mirror of
synced 2025-03-03 19:48:28 +00:00
240 lines
7 KiB
240 lines
7 KiB
require_once 'Sabre/HTTP/ResponseMock.php';
class Sabre_HTTP_AWSAuthTest extends PHPUnit_Framework_TestCase {
* @var Sabre_HTTP_ResponseMock
private $response;
* @var Sabre_HTTP_AWSAuth
private $auth;
const REALM = 'SabreDAV unittest';
public function setUp() {
$this->response = new Sabre_HTTP_ResponseMock();
$this->auth = new Sabre_HTTP_AWSAuth();
public function testNoHeader() {
$request = new Sabre_HTTP_Request(array(
$result = $this->auth->init();
$this->assertFalse($result,'No AWS Authorization header was supplied, so we should have gotten false');
public function testIncorrectContentMD5() {
$accessKey = 'accessKey';
$secretKey = 'secretKey';
$request = new Sabre_HTTP_Request(array(
'HTTP_AUTHORIZATION' => "AWS $accessKey:sig",
'HTTP_CONTENT_MD5' => 'garbage',
'REQUEST_URI' => '/',
$result = $this->auth->validate($secretKey);
public function testNoDate() {
$accessKey = 'accessKey';
$secretKey = 'secretKey';
$content = 'thisisthebody';
$contentMD5 = base64_encode(md5($content,true));
$request = new Sabre_HTTP_Request(array(
'HTTP_AUTHORIZATION' => "AWS $accessKey:sig",
'HTTP_CONTENT_MD5' => $contentMD5,
$result = $this->auth->validate($secretKey);
public function testFutureDate() {
$accessKey = 'accessKey';
$secretKey = 'secretKey';
$content = 'thisisthebody';
$contentMD5 = base64_encode(md5($content,true));
$date = new DateTime('@' . (time() + (60*20)));
$date->setTimeZone(new DateTimeZone('GMT'));
$date = $date->format('D, d M Y H:i:s \\G\\M\\T');
$request = new Sabre_HTTP_Request(array(
'HTTP_AUTHORIZATION' => "AWS $accessKey:sig",
'HTTP_CONTENT_MD5' => $contentMD5,
'HTTP_DATE' => $date,
$result = $this->auth->validate($secretKey);
public function testPastDate() {
$accessKey = 'accessKey';
$secretKey = 'secretKey';
$content = 'thisisthebody';
$contentMD5 = base64_encode(md5($content,true));
$date = new DateTime('@' . (time() - (60*20)));
$date->setTimeZone(new DateTimeZone('GMT'));
$date = $date->format('D, d M Y H:i:s \\G\\M\\T');
$request = new Sabre_HTTP_Request(array(
'HTTP_AUTHORIZATION' => "AWS $accessKey:sig",
'HTTP_CONTENT_MD5' => $contentMD5,
'HTTP_X_AMZ_DATE' => $date,
$result = $this->auth->validate($secretKey);
public function testIncorrectSignature() {
$accessKey = 'accessKey';
$secretKey = 'secretKey';
$content = 'thisisthebody';
$contentMD5 = base64_encode(md5($content,true));
$date = new DateTime('now');
$date->setTimeZone(new DateTimeZone('GMT'));
$date = $date->format('D, d M Y H:i:s \\G\\M\\T');
$request = new Sabre_HTTP_Request(array(
'HTTP_AUTHORIZATION' => "AWS $accessKey:sig",
'HTTP_CONTENT_MD5' => $contentMD5,
'HTTP_X_AMZ_DATE' => $date,
'REQUEST_URI' => '/',
$result = $this->auth->validate($secretKey);
public function testValidRequest() {
$accessKey = 'accessKey';
$secretKey = 'secretKey';
$content = 'thisisthebody';
$contentMD5 = base64_encode(md5($content,true));
$date = new DateTime('now');
$date->setTimeZone(new DateTimeZone('GMT'));
$date = $date->format('D, d M Y H:i:s \\G\\M\\T');
$sig = base64_encode($this->hmacsha1($secretKey,
$request = new Sabre_HTTP_Request(array(
'HTTP_AUTHORIZATION' => "AWS $accessKey:$sig",
'HTTP_CONTENT_MD5' => $contentMD5,
'HTTP_X_AMZ_DATE' => $date,
'REQUEST_URI' => '/evert',
$result = $this->auth->validate($secretKey);
$this->assertTrue($result,'Signature did not validate, got errorcode ' . $this->auth->errorCode);
public function test401() {
$test = preg_match('/^AWS$/',$this->response->headers['WWW-Authenticate'],$matches);
$this->assertTrue($test==true,'The WWW-Authenticate response didn\'t match our pattern');
* Generates an HMAC-SHA1 signature
* @param string $key
* @param string $message
* @return string
private function hmacsha1($key, $message) {
if (strlen($key)>$blocksize)
$key=pack('H*', sha1($key));
$hmac = pack('H*',sha1(($key^$opad).pack('H*',sha1(($key^$ipad).$message))));
return $hmac;