package utils_test import ( "bytes" "crypto/ed25519" "crypto/rand" "net/http" "net/http/httptest" "testing" "github.com/go-ap/httpsig" "github.com/stretchr/testify/assert" "github.com/woodpecker-ci/woodpecker/server/plugins/utils" ) func TestSign(t *testing.T) { pubKeyID := "woodpecker-ci-plugins" pubEd25519Key, privEd25519Key, err := ed25519.GenerateKey(rand.Reader) if !assert.NoError(t, err) { t.FailNow() } body := []byte("{\"foo\":\"bar\"}") req, err := http.NewRequest("GET", "http://example.com", bytes.NewBuffer(body)) if err != nil { t.Fatal(err) } req.Header.Set("Content-Type", "application/json") err = utils.SignHTTPRequest(privEd25519Key, req) if err != nil { t.Fatal(err) } VerifyHandler := func(w http.ResponseWriter, r *http.Request) { keystore := httpsig.NewMemoryKeyStore() keystore.SetKey(pubKeyID, pubEd25519Key) verifier := httpsig.NewVerifier(keystore) verifier.SetRequiredHeaders([]string{"(request-target)", "date"}) keyID, err := verifier.Verify(r) if err != nil { t.Fatal(err) } if keyID != pubKeyID { t.Fatalf("expected key ID %q, got %q", pubKeyID, keyID) } w.WriteHeader(http.StatusOK) } rr := httptest.NewRecorder() handler := http.HandlerFunc(VerifyHandler) handler.ServeHTTP(rr, req) if status := rr.Code; status != http.StatusOK { t.Errorf("handler returned wrong status code: got %v want %v", status, http.StatusOK) } }