RubyGems - govwifi_eapoltest - Versions diffs - 0.1.0 - Mend

govwifi_eapoltest 0.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (9) hide show

checksums.yaml +7 -0
data/lib/eapoltest_client.rb +7 -0
data/lib/govwifi_eapoltest/version.rb +5 -0
data/lib/govwifi_eapoltest.rb +61 -0
data/lib/matchers/eapoltest_matchers.rb +37 -0
data/lib/services.rb +9 -0
data/templates/eap-tls.conf.erb +8 -0
data/templates/peap-mschapv2.conf.erb +11 -0
metadata +96 -0

checksums.yaml ADDED Viewed

@@ -0,0 +1,7 @@
+---
+SHA256:
+  metadata.gz: ad381ae439ded57796071496a6ab798564086fee616d0be6a3b2401d73666afe
+  data.tar.gz: 79c09a1498203146e6e4d292258d22abd7bf837e3d10f7be325a036f31cf1718
+SHA512:
+  metadata.gz: d07945a7d60b93c569da0313bbd0e43d1a02879fa9d8d2af318bbaf4034aebf9002645917a4dfa9e2f43fcece4613193e0815ec512770369f19ca21cfb6c1d04
+  data.tar.gz: 613cfbfe187baac5a18ec17ad41a226a31f38ec54b819bdd9d71ffa5be2b262aefe1395f42a3688769a444bfd6003475202511b66dc22489cfb9d34f930113f9

data/lib/eapoltest_client.rb ADDED Viewed

@@ -0,0 +1,7 @@
+# frozen_string_literal: true
+class EapoltestClient
+  def self.run(config_file_path: nil, radius_ip: nil, secret: nil)
+    `eapol_test -t9 -c #{config_file_path} -a #{radius_ip} -s #{secret}`
+  end
+end

data/lib/govwifi_eapoltest/version.rb ADDED Viewed

@@ -0,0 +1,5 @@
+# frozen_string_literal: true
+class GovwifiEapoltest
+  VERSION = "0.1.0"
+end

data/lib/govwifi_eapoltest.rb ADDED Viewed

@@ -0,0 +1,61 @@
+# frozen_string_literal: true
+require "erb"
+require "tempfile"
+require_relative "./govwifi_eapoltest/version"
+require_relative "./matchers/eapoltest_matchers"
+require_relative "./services"
+class GovwifiEapoltest
+  PEAP_MSCHAP_TEMPLATE_PATH = "#{File.dirname(__FILE__)}/../templates/peap-mschapv2.conf.erb".freeze
+  EAP_TLS_TEMPLATE_PATH = "#{File.dirname(__FILE__)}/../templates/eap-tls.conf.erb".freeze
+  SSID = "GovWifi"
+  def initialize(radius_ips:, secret:)
+    @radius_ips = radius_ips
+    @secret = secret
+  end
+  def run_peap_mschapv2(server_cert_path:, username:, password:, tls_version: :tls1_2)
+    raise "Unknown TLS version #{tls_version}" unless %i[tls1_0 tls1_1 tls1_2 tls1_3].include?(tls_version)
+    phase1_tls1_0 = "tls_disable_tlsv1_0=#{tls_version == :tls1_0 ? 0 : 1}"
+    phase1_tls1_1 = "tls_disable_tlsv1_1=#{tls_version == :tls1_1 ? 0 : 1}"
+    phase1_tls1_2 = "tls_disable_tlsv1_2=#{tls_version == :tls1_2 ? 0 : 1}"
+    phase1_tls1_3 = "tls_disable_tlsv1_3=#{tls_version == :tls1_3 ? 0 : 1}"
+    phase1 = [phase1_tls1_0, phase1_tls1_1, phase1_tls1_2, phase1_tls1_3].join(" ")
+    variables = {
+      ssid: SSID,
+      identity: username,
+      password:,
+      server_cert_path:,
+      phase1:,
+    }
+    run_eapol(PEAP_MSCHAP_TEMPLATE_PATH, variables:)
+  end
+  def run_eap_tls(server_cert_path:, client_cert_path:, client_key_path:)
+    variables = {
+      server_cert_path:,
+      client_cert_path:,
+      client_key_path:,
+    }
+    run_eapol(EAP_TLS_TEMPLATE_PATH, variables:)
+  end
+private
+  def run_eapol(config_template_path, variables: {})
+    file = Tempfile.new
+    file.write ERB.new(File.read(config_template_path)).result_with_hash(variables)
+    file.close
+    @radius_ips.map do |radius_ip|
+      Services.eapol_test.run(config_file_path: file.path, radius_ip:, secret: @secret)
+    end
+  ensure
+    file.unlink
+  end
+end

data/lib/matchers/eapoltest_matchers.rb ADDED Viewed

@@ -0,0 +1,37 @@
+# frozen_string_literal: true
+RSpec::Matchers.define :use_tls_version_1_0 do
+  match do |output|
+    !output.include?("SSL: Using TLS version TLSv1.") && output.include?("SSL: Using TLS version TLSv1")
+  end
+end
+RSpec::Matchers.define :use_tls_version_1_1 do
+  match do |output|
+    output.include?("SSL: Using TLS version TLSv1.1")
+  end
+end
+RSpec::Matchers.define :use_tls_version_1_2 do
+  match do |output|
+    output.include?("SSL: Using TLS version TLSv1.2")
+  end
+end
+RSpec::Matchers.define :use_tls_version_1_3 do
+  match do |output|
+    output.include?("SSL: Using TLS version TLSv1.3")
+  end
+end
+RSpec::Matchers.define :have_been_successful do
+  match do |output|
+    output.split("\n").last == "SUCCESS"
+  end
+end
+RSpec::Matchers.define :have_failed do
+  match do |output|
+    output.split("\n").last == "FAILURE"
+  end
+end

data/lib/services.rb ADDED Viewed

@@ -0,0 +1,9 @@
+# frozen_string_literal: true
+require_relative "./eapoltest_client"
+module Services
+  def self.eapol_test
+    EapoltestClient
+  end
+end

data/templates/eap-tls.conf.erb ADDED Viewed

@@ -0,0 +1,8 @@
+network={
+  key_mgmt=WPA-EAP
+  eap=TLS
+  anonymous_identity="test@client.org"
+  ca_cert="<%= server_cert_path %>"
+  client_cert="<%= client_cert_path %>"
+  private_key="<%= client_key_path %>"
+}

data/templates/peap-mschapv2.conf.erb ADDED Viewed

@@ -0,0 +1,11 @@
+network={
+  ssid="<%= ssid %>"
+  key_mgmt=WPA-EAP
+  eap=PEAP
+  identity="<%= identity %>"
+  anonymous_identity="anonymous"
+  password="<%= password %>"
+  phase1="<%= phase1 %>"
+  phase2="autheap=MSCHAPV2"
+  ca_cert="<%= server_cert_path %>"
+}

metadata ADDED Viewed

@@ -0,0 +1,96 @@
+--- !ruby/object:Gem::Specification
+name: govwifi_eapoltest
+version: !ruby/object:Gem::Version
+  version: 0.1.0
+platform: ruby
+authors:
+- koetsier
+autorequire:
+bindir: bin
+cert_chain: []
+date: 2023-10-15 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: rspec
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: rake
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: rubocop-govuk
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+description: These are a set of helpers to test Freeradius.
+email:
+- jos.koetsier@digital.cabinet-office.gov.uk
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- lib/eapoltest_client.rb
+- lib/govwifi_eapoltest.rb
+- lib/govwifi_eapoltest/version.rb
+- lib/matchers/eapoltest_matchers.rb
+- lib/services.rb
+- templates/eap-tls.conf.erb
+- templates/peap-mschapv2.conf.erb
+homepage: https://github.com/alphagov/govwifi_eapoltest
+licenses:
+- MIT
+metadata:
+  homepage_uri: https://github.com/alphagov/govwifi_eapoltest
+  source_code_uri: https://github.com/alphagov/govwifi_eapoltest
+  changelog_uri: https://www.wifi.service.gov.uk/
+post_install_message:
+rdoc_options: []
+require_paths:
+- lib
+- templates
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: 3.2.2
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubygems_version: 3.4.20
+signing_key:
+specification_version: 4
+summary: Test helpers for Freeradius
+test_files: []