[U] public async Task BadAuthenticationIsUnrecoverable()
{
var audit = new Auditor(() => Framework.Cluster
.Nodes(10)
.Ping(r => r.SucceedAlways())
.ClientCalls(r => r.FailAlways(401))
.StaticConnectionPool()
.AllDefaults()
);
audit = await audit.TraceElasticsearchException(
new ClientCall {
{ AuditEvent.PingSuccess, 9200 },
{ AuditEvent.BadResponse, 9200 },
},
(e) =>
{
e.FailureReason.Should().Be(PipelineFailure.BadAuthentication);
}
);
}
/** As an example, let's set up a 10 node cluster that will always succeed when pinged but
will fail with a 401 response when making client calls
*/
[U] public async Task BadAuthenticationIsUnrecoverable()
{
var audit = new Auditor(() => Framework.Cluster
.Nodes(10)
.Ping(r => r.SucceedAlways())
.ClientCalls(r => r.FailAlways(401))
.StaticConnectionPool()
.AllDefaults()
);
/** Here we make a client call and determine that the first audit event was a successful ping,
* followed by a bad response as a result of a bad authentication response
*/
audit = await audit.TraceElasticsearchException(
new ClientCall {
{ AuditEvent.PingSuccess, 9200 },
{ AuditEvent.BadResponse, 9200 },
},
(e) =>
{
e.FailureReason.Should().Be(PipelineFailure.BadAuthentication);
}
);
}
[U] public async Task BadAuthenticationHtmlResponseIsIgnored()
{
var audit = new Auditor(() => Framework.Cluster
.Nodes(10)
.Ping(r => r.SucceedAlways())
.ClientCalls(r => r.FailAlways(401).ReturnResponse(ResponseHtml))
.StaticConnectionPool()
.AllDefaults()
);
audit = await audit.TraceElasticsearchException(
new ClientCall {
{ AuditEvent.PingSuccess, 9200 },
{ AuditEvent.BadResponse, 9200 },
},
(e) =>
{
e.FailureReason.Should().Be(PipelineFailure.BadAuthentication);
e.Response.HttpStatusCode.Should().Be(401);
e.Response.ResponseBodyInBytes.Should().BeNull();
}
);
}
[U] public async Task BadAuthOnGetClientCallDoesNotThrowSerializationException()
{
var audit = new Auditor(() => Framework.Cluster
.Nodes(10)
.Ping(r => r.SucceedAlways())
.ClientCalls(r => r.FailAlways(401).ReturnResponse(ResponseHtml))
.StaticConnectionPool()
.Settings(s=>s.DisableDirectStreaming().DefaultIndex("default-index"))
.ClientProxiesTo(
(c, r) => c.Get<Project>("1", s=>s.RequestConfiguration(r)),
async (c, r) => await c.GetAsync<Project>("1", s=>s.RequestConfiguration(r)) as IResponse
)
);
audit = await audit.TraceElasticsearchException(
new ClientCall {
{ AuditEvent.PingSuccess, 9200 },
{ AuditEvent.BadResponse, 9200 },
},
(e) =>
{
e.FailureReason.Should().Be(PipelineFailure.BadAuthentication);
e.Response.HttpStatusCode.Should().Be(401);
e.Response.ResponseBodyInBytes.Should().NotBeNull();
var responseString = Encoding.UTF8.GetString(e.Response.ResponseBodyInBytes);
responseString.Should().Contain("nginx/");
e.DebugInformation.Should().Contain("nginx/");
}
);
}
[U] public async Task BadAuthenticationHtmlResponseStillExposedWhenUsingDisableDirectStreaming()
{
var audit = new Auditor(() => Framework.Cluster
.Nodes(10)
.Ping(r => r.SucceedAlways())
.ClientCalls(r => r.FailAlways(401).ReturnResponse(ResponseHtml))
.StaticConnectionPool()
.Settings(s=>s.DisableDirectStreaming())
);
audit = await audit.TraceElasticsearchException(
new ClientCall {
{ AuditEvent.PingSuccess, 9200 },
{ AuditEvent.BadResponse, 9200 },
},
(e) =>
{
e.FailureReason.Should().Be(PipelineFailure.BadAuthentication);
e.Response.HttpStatusCode.Should().Be(401);
e.Response.ResponseBodyInBytes.Should().NotBeNull();
var responseString = Encoding.UTF8.GetString(e.Response.ResponseBodyInBytes);
responseString.Should().Contain("nginx/");
e.DebugInformation.Should().Contain("nginx/");
}
);
}
