add a security module （#628） (#629)

* Add security mechanisms, IP whitelists, blacklists, and extended security interfaces. * Optimized configuration name * Fix IP Security Bug * Repair Security Protection Module Bug * Add security module unit test * Optimize log prompts
2025-06-19 03:38:16 +08:00 · 2018-09-26 01:29:38 +08:00
parent aa14b2f877
commit 4a8f4c2e03
18 changed files with 526 additions and 10 deletions
--- a/test/Ocelot.UnitTests/Configuration/SecurityOptionsCreatorTests.cs
+++ b/test/Ocelot.UnitTests/Configuration/SecurityOptionsCreatorTests.cs
@ -0,0 +1,72 @@
+using Ocelot.Configuration;
+using Ocelot.Configuration.Creator;
+using Ocelot.Configuration.File;
+using Shouldly;
+using System;
+using System.Collections.Generic;
+using System.Text;
+using TestStack.BDDfy;
+using Xunit;
+
+namespace Ocelot.UnitTests.Configuration
+{
+    public class SecurityOptionsCreatorTests
+    {
+        private FileReRoute _fileReRoute;
+        private FileGlobalConfiguration _fileGlobalConfig;
+        private SecurityOptions _result;
+        private ISecurityOptionsCreator _creator;
+
+        public SecurityOptionsCreatorTests()
+        {
+            _creator = new SecurityOptionsCreator();
+        }
+
+        [Fact]
+        public void should_create_security_config()
+        {
+            var ipAllowedList = new List<string>() { "127.0.0.1", "192.168.1.1" };
+            var ipBlockedList = new List<string>() { "127.0.0.1", "192.168.1.1" };
+            var fileReRoute = new FileReRoute
+            {
+                SecurityOptions = new FileSecurityOptions()
+                {
+                    IPAllowedList = ipAllowedList,
+                    IPBlockedList = ipBlockedList
+                }
+            };
+
+            var expected = new SecurityOptions(ipAllowedList, ipBlockedList);
+
+            this.Given(x => x.GivenThe(fileReRoute))
+              .When(x => x.WhenICreate())
+              .Then(x => x.ThenTheResultIs(expected))
+              .BDDfy();
+        }
+
+        private void GivenThe(FileReRoute reRoute)
+        {
+            _fileReRoute = reRoute;
+        }
+
+
+        private void WhenICreate()
+        {
+            _result = _creator.Create(_fileReRoute.SecurityOptions);
+        }
+
+        private void ThenTheResultIs(SecurityOptions expected)
+        {
+            for (int i = 0; i < expected.IPAllowedList.Count; i++)
+            {
+                _result.IPAllowedList[i].ShouldBe(expected.IPAllowedList[i]);
+            }
+
+            for (int i = 0; i < expected.IPBlockedList.Count; i++)
+            {
+                _result.IPBlockedList[i].ShouldBe(expected.IPBlockedList[i]);
+            }
+        }
+
+    }
+}