mirror of
https://github.com/gocsaf/csaf.git
synced 2025-12-22 11:55:40 +01:00
87 lines
2.4 KiB
Go
87 lines
2.4 KiB
Go
// This file is Free Software under the Apache-2.0 License
|
|
// without warranty, see README.md and LICENSES/Apache-2.0.txt for details.
|
|
//
|
|
// SPDX-License-Identifier: Apache-2.0
|
|
//
|
|
// SPDX-FileCopyrightText: 2023 German Federal Office for Information Security (BSI) <https://www.bsi.bund.de>
|
|
// Software-Engineering: 2023 Intevation GmbH <https://intevation.de>
|
|
|
|
// Package testutil contains shared helper functions for testing the application.
|
|
package testutil
|
|
|
|
import (
|
|
"html/template"
|
|
"net/http"
|
|
"os"
|
|
"strings"
|
|
)
|
|
|
|
// ProviderParams configures the test provider.
|
|
type ProviderParams struct {
|
|
URL string
|
|
EnableSha256 bool
|
|
EnableSha512 bool
|
|
ForbidSha256 bool
|
|
ForbidSha512 bool
|
|
JSONContentType string
|
|
}
|
|
|
|
// ProviderHandler returns a test provider handler with the specified configuration.
|
|
func ProviderHandler(params *ProviderParams, directoryProvider bool) http.HandlerFunc {
|
|
return func(w http.ResponseWriter, r *http.Request) {
|
|
path := "../../testdata/"
|
|
if directoryProvider {
|
|
path += "simple-directory-provider"
|
|
} else {
|
|
path += "simple-rolie-provider"
|
|
}
|
|
|
|
jsonContenType := "application/json"
|
|
if params.JSONContentType != "" {
|
|
jsonContenType = params.JSONContentType
|
|
}
|
|
|
|
path += r.URL.Path
|
|
|
|
if strings.HasSuffix(r.URL.Path, "/") {
|
|
path += "index.html"
|
|
}
|
|
|
|
content, err := os.ReadFile(path)
|
|
if err != nil {
|
|
w.WriteHeader(http.StatusNotFound)
|
|
return
|
|
}
|
|
switch {
|
|
case strings.HasSuffix(path, ".html"):
|
|
w.Header().Add("Content-Type", "text/html")
|
|
case strings.HasSuffix(path, ".json"):
|
|
w.Header().Add("Content-Type", jsonContenType)
|
|
case (strings.HasSuffix(path, ".sha256")) && params.ForbidSha256:
|
|
w.WriteHeader(http.StatusForbidden)
|
|
return
|
|
case strings.HasSuffix(path, ".sha512") && params.ForbidSha512:
|
|
w.WriteHeader(http.StatusForbidden)
|
|
return
|
|
case strings.HasSuffix(path, ".sha256") && directoryProvider && !params.EnableSha256:
|
|
w.WriteHeader(http.StatusNotFound)
|
|
return
|
|
case strings.HasSuffix(path, ".sha512") && directoryProvider && !params.EnableSha512:
|
|
w.WriteHeader(http.StatusNotFound)
|
|
return
|
|
default:
|
|
w.Header().Add("Content-Type", "text/plain")
|
|
}
|
|
|
|
tmplt, err := template.New("base").Parse(string(content))
|
|
if err != nil {
|
|
w.WriteHeader(http.StatusInternalServerError)
|
|
return
|
|
}
|
|
err = tmplt.Execute(w, params)
|
|
if err != nil {
|
|
w.WriteHeader(http.StatusInternalServerError)
|
|
return
|
|
}
|
|
}
|
|
}
|