diff options
| author | Christopher Speller <crspeller@gmail.com> | 2018-01-31 09:49:15 -0800 |
|---|---|---|
| committer | GitHub <noreply@github.com> | 2018-01-31 09:49:15 -0800 |
| commit | 1262d254736229618582f0963c9c30c4e66efb98 (patch) | |
| tree | c2375b6c6b143dc59c24d590eb59c5d49d17247e /app/ratelimit_test.go | |
| parent | e0ee73ef9963ab398bcc6011795ad23e8e003147 (diff) | |
| download | chat-1262d254736229618582f0963c9c30c4e66efb98.tar.gz chat-1262d254736229618582f0963c9c30c4e66efb98.tar.bz2 chat-1262d254736229618582f0963c9c30c4e66efb98.zip | |
User based rate limiting (#8152)
Diffstat (limited to 'app/ratelimit_test.go')
| -rw-r--r-- | app/ratelimit_test.go | 67 |
1 files changed, 67 insertions, 0 deletions
diff --git a/app/ratelimit_test.go b/app/ratelimit_test.go new file mode 100644 index 000000000..ddaa25710 --- /dev/null +++ b/app/ratelimit_test.go @@ -0,0 +1,67 @@ +// Copyright (c) 2018-present Mattermost, Inc. All Rights Reserved. +// See License.txt for license information. + +package app + +import ( + "net/http" + "net/http/httptest" + "strconv" + "testing" + + "github.com/mattermost/mattermost-server/model" + "github.com/stretchr/testify/require" +) + +func genRateLimitSettings(useAuth, useIP bool, header string) *model.RateLimitSettings { + return &model.RateLimitSettings{ + Enable: model.NewBool(true), + PerSec: model.NewInt(10), + MaxBurst: model.NewInt(100), + MemoryStoreSize: model.NewInt(10000), + VaryByRemoteAddr: model.NewBool(useIP), + VaryByUser: model.NewBool(useAuth), + VaryByHeader: header, + } +} + +func TestGenerateKey(t *testing.T) { + cases := []struct { + useAuth bool + useIP bool + header string + authTokenResult string + ipResult string + headerResult string + expectedKey string + }{ + {false, false, "", "", "", "", ""}, + {true, false, "", "resultkey", "notme", "notme", "resultkey"}, + {false, true, "", "notme", "resultkey", "notme", "resultkey"}, + {false, false, "myheader", "notme", "notme", "resultkey", "resultkey"}, + {true, true, "", "resultkey", "ipaddr", "notme", "resultkey"}, + {true, true, "", "", "ipaddr", "notme", "ipaddr"}, + {true, true, "myheader", "resultkey", "ipaddr", "hadd", "resultkeyhadd"}, + {true, true, "myheader", "", "ipaddr", "hadd", "ipaddrhadd"}, + } + + for testnum, tc := range cases { + req := httptest.NewRequest("GET", "/", nil) + if tc.authTokenResult != "" { + req.AddCookie(&http.Cookie{ + Name: model.SESSION_COOKIE_TOKEN, + Value: tc.authTokenResult, + }) + } + req.RemoteAddr = tc.ipResult + ":80" + if tc.headerResult != "" { + req.Header.Set(tc.header, tc.headerResult) + } + + rateLimiter := NewRateLimiter(genRateLimitSettings(tc.useAuth, tc.useIP, tc.header)) + + key := rateLimiter.GenerateKey(req) + + require.Equal(t, tc.expectedKey, key, "Wrong key on test "+strconv.Itoa(testnum)) + } +} |