production/code_guide/test__security_8cpp_source.html

 /*****************************************************************************\

 *                                                                             *

 *  Name   : octopus security test                                             *

 *  Author : Chris Koeritz                                                     *

 *                                                                             *

 *  Purpose:                                                                   *

 *                                                                             *

 *    Checks out the login support for octopus.  This just exercises the base  *

 *  support which doesn't perform any extra verification on the user.          *

 *                                                                             *

 *******************************************************************************

 * Copyright (c) 2002-$now By Author.  This program is free software; you can  *

 * redistribute it and/or modify it under the terms of the GNU General Public  *

 * License as published by the Free Software Foundation; either version 2 of   *

 * the License or (at your option) any later version.  This is online at:      *

 *     http://www.fsf.org/copyleft/gpl.html                                    *

 * Please send any updates to: fred@gruntose.com                               *

 \*****************************************************************************/


 #include <application/application_shell.h>

 #include <application/hoople_main.h>

 #include <basis/astring.h>

 #include <basis/mutex.h>

 #include <configuration/application_configuration.h>

 #include <loggers/console_logger.h>

 #include <loggers/critical_events.h>

 #include <loggers/program_wide_logger.h>

 #include <octopus/entity_defs.h>

 #include <octopus/infoton.h>

 #include <octopus/octopus.h>

 #include <octopus/tentacle.h>

 #include <structures/static_memory_gremlin.h>

 #include <sockets/internet_address.h>

 //#include <structures/static_memory_gremlin.h>

 #include <structures/string_array.h>

 #include <tentacles/login_tentacle.h>

 #include <tentacles/simple_entity_registry.h>

 #include <unit_test/unit_base.h>


 using namespace application;

 using namespace basis;

 using namespace configuration;

 using namespace loggers;

 using namespace mathematics;

 using namespace octopi;

 using namespace sockets;

 using namespace structures;

 using namespace textual;

 using namespace unit_test;


 #define LOG(s) CLASS_EMERGENCY_LOG(program_wide_logger::get(), astring(s))


 astring base_list[] = { "cli", "simp" };


 SAFE_STATIC_CONST(string_array, simp_classifier, (2, base_list))


 class simple_infoton : public infoton

 {

 public:

   astring futzle;


   simple_infoton() : infoton(simp_classifier()) {}


   virtual void text_form(basis::base_string &state_fill) const {

     state_fill.concatenate_string(astring("futzle=") + futzle);

   }


   virtual void pack(byte_array &packed_form) const {

     futzle.pack(packed_form);

   }

   virtual bool unpack(byte_array &packed_form) {

     if (!futzle.unpack(packed_form)) return false;

     return true;

   }

   virtual int packed_size() const { return futzle.length() + 1; }

   virtual clonable *clone() const { return new simple_infoton(*this); }


 private:

 };


 // provides a simple service to allow us to test whether the security is

 // working or not.


 class simple_tentacle : public tentacle

 {

 public:

   simple_tentacle() : tentacle(simp_classifier(), true) {}


   virtual outcome reconstitute(const string_array &classifier,

           byte_array &packed_form, infoton * &reformed) {

     reformed = NULL_POINTER;

     if (classifier != simp_classifier()) return NO_HANDLER;

     reformed = new simple_infoton;

     if (!reformed->unpack(packed_form)) {

       WHACK(reformed);

       return GARBAGE;

     }

     return OKAY;

   }


   virtual outcome consume(infoton &to_chow,

           const octopus_request_id &formal(item_id), byte_array &transformed) {

     transformed.reset();

     if (to_chow.classifier() != simp_classifier()) return NO_HANDLER;

     // consume without doing anything.

     return OKAY;

   }


   virtual void expunge(const octopus_entity &formal(to_zap)) {}

 };


 //hmmm: this test should do a sample login octopus and do a login, reside for

 //      a while, log out, do another one, let it time out, try to access

 //      something with dead id hoping to be rejected, etc.


 class test_octopus_security : virtual public unit_base, virtual public application_shell

 {

 public:

   test_octopus_security() : application_shell() {}

 //class_name()

   DEFINE_CLASS_NAME("test_octopus_security");

   virtual int execute();

 };


 int test_octopus_security::execute()

 {

   FUNCDEF("execute")

   octopus logos("local", 18 * MEGABYTE);

   simple_tentacle *tenty = new simple_tentacle;

   logos.add_tentacle(tenty);

   tenty = NULL_POINTER;  // octopus has charge of this now.


   // turn on security in logos.

   simple_entity_registry *guardian = new simple_entity_registry;

   logos.add_tentacle(new login_tentacle(*guardian), true);


   // create an entity to work with.

   octopus_entity jimbo("localhost", application_configuration::process_id(), 128, 982938);

   octopus_request_id req1(jimbo, 1);


   // add the user jimbo.

   guardian->add_entity(jimbo, byte_array());


   // create a piece of data to try running on tentacle.

   simple_infoton testose;

   simple_infoton *testose_copy = new simple_infoton(testose);


   // test that the simple tentacle allows the op.

   outcome ret = logos.evaluate(testose_copy, req1);

   if (ret != tentacle::OKAY)

     deadly_error(class_name(), "first test",

         astring("the operation failed with an error ")

             + tentacle::outcome_name(ret));


   // create another entity to work with.

   octopus_entity burfo("localhost", application_configuration::process_id(), 372, 2989);

   octopus_request_id req2(burfo, 1);


   // try with an unlicensed user burfo...

   testose_copy = new simple_infoton(testose);

   ret = logos.evaluate(testose_copy, req2);

   if (ret == tentacle::OKAY)

     deadly_error(class_name(), "second test",

         astring("the operation didn't fail when it should have."));

   else if (ret != tentacle::DISALLOWED)

     deadly_error(class_name(), "second test",

         astring("the operation didn't provide the proper outcome, it gave: ")

             + tentacle::outcome_name(ret));


   // remove the user jimbo.

   guardian->zap_entity(jimbo);


   // test that jimbo fails too now.

   testose_copy = new simple_infoton(testose);

   ret = logos.evaluate(testose_copy, req1);

   if (ret == tentacle::OKAY)

     deadly_error(class_name(), "third test",

         astring("the operation didn't fail when it should have."));

   else if (ret != tentacle::DISALLOWED)

     deadly_error(class_name(), "third test",

         astring("the operation didn't provide the proper outcome, it gave: ")

             + tentacle::outcome_name(ret));


   // add the user burfo in now instead.

   guardian->add_entity(burfo, byte_array());


   // test that burfo works.

   testose_copy = new simple_infoton(testose);

   ret = logos.evaluate(testose_copy, req2);

   if (ret != tentacle::OKAY)

     deadly_error(class_name(), "fourth test",

         astring("the operation failed with an error ")

         + tentacle::outcome_name(ret));


   LOG(astring(class_name()) + ":: security works for those functions tested.");


   WHACK(guardian);


   return 0;

 }


 HOOPLE_MAIN(test_octopus_security, )


application_configuration.h

application_shell.h

astring.h

application::application_shell
The application_shell is a base object for console programs.
Definition: application_shell.h:33

basis::array::reset
void reset(int number=0, const contents *initial_contents=NULL_POINTER)
Resizes this array and sets the contents from an array of contents.
Definition: array.h:349

basis::astring
Provides a dynamically resizable ASCII character string.
Definition: astring.h:35

basis::astring::pack
void pack(byte_array &target) const
stores this string in the "target". it can later be unpacked again.
Definition: astring.cpp:964

basis::astring::length
int length() const
Returns the current length of the string.
Definition: astring.cpp:132

basis::astring::unpack
bool unpack(byte_array &source)
retrieves a string (packed with pack()) from "source" into this string.
Definition: astring.cpp:967

basis::base_string
Defines the base class for all string processing objects in hoople.
Definition: base_string.h:28

basis::base_string::concatenate_string
virtual base_string & concatenate_string(const base_string &s)=0
Modifies "this" by concatenating "s" onto it.

basis::byte_array
A very common template for a dynamic array of bytes.
Definition: byte_array.h:36

basis::clonable
A clonable object knows how to make copy of itself.
Definition: contracts.h:109

basis::outcome
Outcomes describe the state of completion for an operation.
Definition: outcome.h:31

configuration::application_configuration
Defines installation-specific locations in the file system.
Definition: application_configuration.h:25

octopi::infoton
An infoton is an individual request parcel with accompanying information.
Definition: infoton.h:32

octopi::infoton::unpack
virtual bool unpack(basis::byte_array &packed_form)=0
restores an infoton from a packed form.

octopi::infoton::classifier
const structures::string_array & classifier() const
this array of strings is the "name" for this infoton.
Definition: infoton.cpp:85

octopi::login_tentacle
Provides rudimentary login services.
Definition: login_tentacle.h:36

octopi::octopus_entity
Provides a way of identifying users of an octopus object.
Definition: entity_defs.h:35

octopi::octopus_request_id
Identifies requests made on an octopus by users.
Definition: entity_defs.h:114

octopi::octopus
Octopus is a design pattern for generalized request processing systems.
Definition: octopus.h:47

octopi::simple_entity_registry
Provides a basic implementation of an entity_registry for octopus.
Definition: simple_entity_registry.h:40

octopi::tentacle
Manages a service within an octopus by processing certain infotons.
Definition: tentacle.h:36

structures::string_array
An array of strings with some additional helpful methods.
Definition: string_array.h:32

unit_test::unit_base
Definition: unit_base.h:59

console_logger.h

critical_events.h

deadly_error
#define deadly_error(c, f, i)
Definition: critical_events.h:87

formal
#define formal(parameter)
This macro just eats what it's passed; it marks unused formal parameters.
Definition: definitions.h:48

NULL_POINTER
#define NULL_POINTER
The value representing a pointer to nothing.
Definition: definitions.h:32

DEFINE_CLASS_NAME
#define DEFINE_CLASS_NAME(objname)
Defines the name of a class by providing a couple standard methods.
Definition: enhance_cpp.h:42

FUNCDEF
#define FUNCDEF(func_in)
FUNCDEF sets the name of a function (and plugs it into the callstack).
Definition: enhance_cpp.h:54

entity_defs.h

hoople_main.h
Provides macros that implement the 'main' program of an application.

HOOPLE_MAIN
#define HOOPLE_MAIN(obj_name, obj_args)
options that should work for most unix and linux apps.
Definition: hoople_main.h:61

infoton.h

internet_address.h

login_tentacle.h

mutex.h

application
Implements an application lock to ensure only one is running at once.
Definition: application_shell.cpp:40

basis
The guards collection helps in testing preconditions and reporting errors.
Definition: array.h:30

basis::WHACK
void WHACK(contents *&ptr)
deletion with clearing of the pointer.
Definition: functions.h:121

basis::MEGABYTE
const int MEGABYTE
Number of bytes in a megabyte.
Definition: definitions.h:135

configuration
Definition: registry_config.cpp:45

loggers
A logger that sends to the console screen using the standard output device.
Definition: combo_logger.cpp:36

mathematics
An extension to floating point primitives providing approximate equality.
Definition: averager.h:21

octopi
Definition: entity_data_bin.cpp:37

sockets
Provides access to the operating system's socket methods.
Definition: base_address.h:26

structures
A dynamic container class that holds any kind of object via pointers.
Definition: amorph.h:55

structures::unpack
bool unpack(basis::byte_array &packed_form, set< contents > &to_unpack)
provides a way to unpack any set that stores packable objects.
Definition: set.h:139

structures::pack
void pack(basis::byte_array &packed_form, const set< contents > &to_pack)
provides a way to pack any set that stores packable objects.
Definition: set.h:131

structures::packed_size
int packed_size(const byte_array &packed_form)
Reports the size required to pack a byte array into a byte array.
Definition: object_packers.cpp:46

textual
Definition: byte_formatter.cpp:38

unit_test
Useful support functions for unit testing, especially within hoople.
Definition: unit_base.cpp:35

octopus.h

program_wide_logger.h

simple_entity_registry.h

static_memory_gremlin.h

SAFE_STATIC_CONST
#define SAFE_STATIC_CONST(type, func_name, parms)
this version returns a constant object instead.
Definition: static_memory_gremlin.h:133

string_array.h

tentacle.h

base_list
astring base_list[]
Definition: test_security.cpp:55

LOG
#define LOG(s)
Definition: test_security.cpp:51

test
#define test(expr)
Definition: test_string.cpp:123

unit_base.h