httpclient 2.3.0.1 → 2.8.3

data/lib/jsonclient.rb

@@ -0,0 +1,63 @@
+require 'httpclient'
+require 'json'
+ 
+# JSONClient auto-converts Hash <-> JSON in request and response.
+# * For POST or PUT request, convert Hash body to JSON String with 'application/json; charset=utf-8' header.
+# * For response, convert JSON String to Hash when content-type is '(application|text)/(x-)?json'
+class JSONClient < HTTPClient
+  CONTENT_TYPE_JSON_REGEX = /(application|text)\/(x-)?json/i
+  CONTENT_TYPE_JSON = 'application/json; charset=utf-8'
+
+  attr_reader :content_type_json_request
+  attr_reader :content_type_json_response_regex
+ 
+  def initialize(*args)
+    super
+    @content_type_json_request = CONTENT_TYPE_JSON
+    @content_type_json_response_regex = CONTENT_TYPE_JSON_REGEX
+  end
+ 
+  def post(uri, *args, &block)
+    request(:post, uri, argument_to_hash_for_json(args), &block)
+  end
+ 
+  def put(uri, *args, &block)
+    request(:put, uri, argument_to_hash_for_json(args), &block)
+  end
+
+  def request(method, uri, *args, &block)
+    res = super
+    if @content_type_json_response_regex =~ res.content_type
+      res = wrap_json_response(res)
+    end
+    res
+  end
+ 
+private
+
+  def argument_to_hash_for_json(args)
+    hash = argument_to_hash(args, :body, :header, :follow_redirect)
+    if hash[:body].is_a?(Hash)
+      hash[:header] = json_header(hash[:header])
+      hash[:body] = JSON.generate(hash[:body])
+    end
+    hash
+  end
+
+  def json_header(header)
+    header ||= {}
+    if header.is_a?(Hash)
+      header['Content-Type'] = @content_type_json_request
+    else
+      header << ['Content-Type', @content_type_json_request]
+    end
+    header
+  end
+
+  def wrap_json_response(original)
+    res = ::HTTP::Message.new_response(JSON.parse(original.content))
+    res.http_header = original.http_header
+    res.previous = original
+    res
+  end
+end

data/lib/oauthclient.rb

@@ -1,5 +1,5 @@
 # HTTPClient - HTTP client library.
-# Copyright (C) 2000-2009  NAKAMURA, Hiroshi  <nahi@ruby-lang.org>.
+# Copyright (C) 2000-2015  NAKAMURA, Hiroshi  <nahi@ruby-lang.org>.
 #
 # This program is copyrighted free software by NAKAMURA, Hiroshi.  You can
 # redistribute it and/or modify it under the same terms of Ruby's license;
@@ -33,6 +33,7 @@ class OAuthClient < HTTPClient
     @oauth_config = HTTPClient::OAuth::Config.new
     self.www_auth.oauth.set_config(nil, @oauth_config)
     self.www_auth.oauth.challenge(nil)
+    self.strict_response_size_check = true
   end
 
   # Get request token.

data/sample/jsonclient.rb

@@ -0,0 +1,67 @@
+require 'httpclient'
+require 'json'
+ 
+module HTTP
+  class Message
+    # Returns JSON object of message body
+    alias original_content content
+    def content
+      if JSONClient::CONTENT_TYPE_JSON_REGEX =~ content_type
+        JSON.parse(original_content)
+      else
+        original_content
+      end
+    end
+  end
+end
+ 
+ 
+# JSONClient provides JSON related methods in addition to HTTPClient.
+class JSONClient < HTTPClient
+  CONTENT_TYPE_JSON_REGEX = /(application|text)\/(x-)?json/i
+ 
+  attr_accessor :content_type_json
+ 
+  class JSONRequestHeaderFilter
+    attr_accessor :replace
+ 
+    def initialize(client)
+      @client = client
+      @replace = false
+    end
+ 
+    def filter_request(req)
+      req.header['content-type'] = @client.content_type_json if @replace
+    end
+ 
+    def filter_response(req, res)
+      @replace = false
+    end
+  end
+ 
+  def initialize(*args)
+    super
+    @header_filter = JSONRequestHeaderFilter.new(self)
+    @request_filter << @header_filter
+    @content_type_json = 'application/json; charset=utf-8'
+  end
+ 
+  def post(uri, *args, &block)
+    @header_filter.replace = true
+    request(:post, uri, jsonify(argument_to_hash(args, :body, :header, :follow_redirect)), &block)
+  end
+ 
+  def put(uri, *args, &block)
+    @header_filter.replace = true
+    request(:put, uri, jsonify(argument_to_hash(args, :body, :header)), &block)
+  end
+ 
+private
+ 
+  def jsonify(hash)
+    if hash[:body] && hash[:body].is_a?(Hash)
+      hash[:body] = JSON.generate(hash[:body])
+    end
+    hash
+  end
+end

data/sample/oauth_twitter.rb

@@ -5,9 +5,9 @@ consumer_key = 'EDIT HERE'
 consumer_secret = 'EDIT HERE'
 
 callback = ARGV.shift # can be nil for OAuth 1.0. (not 1.0a)
-request_token_url = 'http://twitter.com/oauth/request_token'
-oob_authorize_url = 'http://twitter.com/oauth/authorize'
-access_token_url = 'http://twitter.com/oauth/access_token'
+request_token_url = 'https://api.twitter.com/oauth/request_token'
+oob_authorize_url = 'https://api.twitter.com/oauth/authorize'
+access_token_url  = 'https://api.twitter.com/oauth/access_token'
 
 STDOUT.sync = true
 
@@ -58,4 +58,4 @@ puts "Hit [enter] to go"
 gets
 
 # Access to a protected resource. (DM)
-puts client.get("http://twitter.com/direct_messages.json")
+puts client.get("https://api.twitter.com/1.1/direct_messages.json")

data/test/client-pass.key

@@ -0,0 +1,18 @@
+-----BEGIN RSA PRIVATE KEY-----
+Proc-Type: 4,ENCRYPTED
+DEK-Info: DES-EDE3-CBC,DE0F454B166A4941
+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+-----END RSA PRIVATE KEY-----

data/test/helper.rb

@@ -1,5 +1,4 @@
 # -*- encoding: utf-8 -*-
-require 'test/unit'
 begin
   require 'simplecov'
   require 'simplecov-rcov'
@@ -7,6 +6,7 @@ begin
   SimpleCov.start
 rescue LoadError
 end
+require 'test/unit'
 
 require 'httpclient'
 require 'webrick'
@@ -59,11 +59,13 @@ module Helper
     @client = HTTPClient.new
   end
 
-  #def setup_server
-    # override it
-    # @server = WEBrick::HTTPServer.new(...)
-    # @server_thread = start_server_thread(@server)
-  #end
+  def escape_noproxy
+    backup = HTTPClient::NO_PROXY_HOSTS.dup
+    HTTPClient::NO_PROXY_HOSTS.clear
+    yield
+  ensure
+    HTTPClient::NO_PROXY_HOSTS.replace(backup)
+  end
 
   def setup_proxyserver
     @proxyserver = WEBrick::HTTPProxyServer.new(
@@ -98,8 +100,8 @@ module Helper
     while server.status != :Running
       Thread.pass
       unless t.alive?
-	t.join
-	raise
+        t.join
+        raise
       end
     end
     t

data/test/jruby_ssl_socket/test_pemutils.rb

@@ -0,0 +1,32 @@
+require File.expand_path('helper', File.join(File.dirname(__FILE__),  ".."))
+
+
+class PEMUtilsTest < Test::Unit::TestCase
+  include Helper
+
+  def setup
+    @raw_cert = "-----BEGIN CERTIFICATE-----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\npqwtqIUeg7j+JLiTaA==\n-----END CERTIFICATE-----"
+  end
+
+  def test_read_certificate
+    assert_nothing_raised do
+      binary = HTTPClient::JRubySSLSocket::PEMUtils.read_certificate(@raw_cert)
+    end
+  end
+
+  def test_read_certificate_works_with_random_ascii_text_outside_begin_end
+    raw_cert_with_ascii = "some text before begin\n" + @raw_cert + "\nsome text after end"
+    assert_nothing_raised do
+      binary = HTTPClient::JRubySSLSocket::PEMUtils.read_certificate(raw_cert_with_ascii)
+    end
+  end
+
+  def test_read_certificate_uses_all_content_if_missing_begin_end
+    cert = @raw_cert.sub(/-----BEGIN CERTIFICATE-----/, '').sub(/-----END CERTIFICATE-----/, '')
+    assert_nothing_raised do
+      binary = HTTPClient::JRubySSLSocket::PEMUtils.read_certificate(cert)
+    end
+  end
+
+
+end

data/test/test_auth.rb

@@ -1,5 +1,8 @@
 require File.expand_path('helper', File.dirname(__FILE__))
 require 'digest/md5'
+require 'rack'
+require 'rack/lint'
+require 'rack-ntlm'
 
 class TestAuth < Test::Unit::TestCase
   include Helper
@@ -34,6 +37,22 @@ class TestAuth < Test::Unit::TestCase
       '/digest_sess_auth',
       WEBrick::HTTPServlet::ProcHandler.new(method(:do_digest_sess_auth).to_proc)
     )
+    # NTLM endpoint
+    ntlm_handler = Rack::Handler::WEBrick.new(@server,
+      Rack::Builder.app do
+        use Rack::ShowExceptions
+        use Rack::ContentLength
+        use Rack::Ntlm, {:uri_pattern => /.*/, :auth => {:username => "admin", :password => "admin"}}
+        run lambda { |env| [200, { 'Content-Type' => 'text/html' }, ['ntlm_auth OK']] }
+      end
+    )
+    @server.mount(
+      '/ntlm_auth',
+      WEBrick::HTTPServlet::ProcHandler.new(Proc.new do |req, res|
+        ntlm_handler.service(req, res)
+      end)
+    )
+    # Htpasswd
     htpasswd = File.join(File.dirname(__FILE__), 'htpasswd')
     htpasswd_userdb = WEBrick::HTTPAuth::Htpasswd.new(htpasswd)
     htdigest = File.join(File.dirname(__FILE__), 'htdigest')
@@ -95,6 +114,28 @@ class TestAuth < Test::Unit::TestCase
     res.body = 'digest_sess_auth OK' + req.query_string.to_s
   end
 
+  # TODO: monkey patching for rack-ntlm-test-services's incompat.
+  module ::Net
+    module NTLM
+      # ruby-ntlm 0.3.0 -> 0.4.0
+      def self.decode_utf16le(*arg)
+        EncodeUtil.decode_utf16le(*arg)
+      end
+      # Make it work if @value == nil
+      class SecurityBuffer < FieldSet
+        remove_method(:data_size) if method_defined?(:data_size)
+        def data_size
+          @active && @value ? @value.size : 0
+        end
+      end
+    end
+  end
+  def test_ntlm_auth
+    c = HTTPClient.new
+    c.set_auth("http://localhost:#{serverport}/ntlm_auth", 'admin', 'admin')
+    assert_equal('ntlm_auth OK', c.get_content("http://localhost:#{serverport}/ntlm_auth"))
+  end
+
   def test_basic_auth
     c = HTTPClient.new
     c.set_auth("http://localhost:#{serverport}/", 'admin', 'admin')
@@ -110,15 +151,96 @@ class TestAuth < Test::Unit::TestCase
   def test_BASIC_auth
     c = HTTPClient.new
     webrick_backup = @basic_auth.instance_eval { @auth_scheme }
-    #httpaccess2_backup = c.www_auth.basic_auth.instance_eval { @scheme }
     begin
+      # WEBrick in ruby 1.8.7 uses 'BASIC' instead of 'Basic'
       @basic_auth.instance_eval { @auth_scheme = "BASIC" }
       c.www_auth.basic_auth.instance_eval { @scheme = "BASIC" }
+      #
       c.set_auth("http://localhost:#{serverport}/", 'admin', 'admin')
+      res = c.get("http://localhost:#{serverport}/basic_auth")
+      assert_equal('basic_auth OK', res.content)
+      assert_equal(200, res.status)
+      assert_equal(401, res.previous.status)
+      assert_equal(nil, res.previous.previous)
+    ensure
+      @basic_auth.instance_eval { @auth_scheme = webrick_backup }
+    end
+  end
+
+  def test_BASIC_auth_force
+    c = HTTPClient.new
+    webrick_backup = @basic_auth.instance_eval { @auth_scheme }
+    begin
+      # WEBrick in ruby 1.8.7 uses 'BASIC' instead of 'Basic'
+      @basic_auth.instance_eval { @auth_scheme = "BASIC" }
+      c.www_auth.basic_auth.instance_eval { @scheme = "BASIC" }
+      #
+      c.force_basic_auth = true
+      c.debug_dev = str = ''
+      c.set_auth("http://localhost:#{serverport}/", 'admin', 'admin')
+      assert_equal('basic_auth OK', c.get_content("http://localhost:#{serverport}/basic_auth"))
+      assert_equal('Authorization: Basic YWRtaW46YWRtaW4='.upcase, str.split(/\r?\n/)[5].upcase)
+    ensure
+      @basic_auth.instance_eval { @auth_scheme = webrick_backup }
+    end
+  end
+
+  def test_BASIC_auth_async
+    # async methods don't issure retry call so for successful authentication you need to set force_basic_auth flag
+    c = HTTPClient.new(:force_basic_auth => true)
+    webrick_backup = @basic_auth.instance_eval { @auth_scheme }
+    begin
+      # WEBrick in ruby 1.8.7 uses 'BASIC' instead of 'Basic'
+      @basic_auth.instance_eval { @auth_scheme = "BASIC" }
+      c.www_auth.basic_auth.instance_eval { @scheme = "BASIC" }
+      #
+      c.set_auth("http://localhost:#{serverport}/", 'admin', 'admin')
+      conn = c.get_async("http://localhost:#{serverport}/basic_auth")
+      assert_equal('basic_auth OK', conn.pop.body.read)
+    ensure
+      @basic_auth.instance_eval { @auth_scheme = webrick_backup }
+    end
+  end
+
+  def test_BASIC_auth_nil_uri
+    c = HTTPClient.new
+    webrick_backup = @basic_auth.instance_eval { @auth_scheme }
+    begin
+      @basic_auth.instance_eval { @auth_scheme = "BASIC" }
+      c.www_auth.basic_auth.instance_eval { @scheme = "BASIC" }
+      c.set_auth(nil, 'admin', 'admin')
       assert_equal('basic_auth OK', c.get_content("http://localhost:#{serverport}/basic_auth"))
     ensure
       @basic_auth.instance_eval { @auth_scheme = webrick_backup }
-      #c.www_auth.basic_auth.instance_eval { @scheme = httpaccess2_backup }
+    end
+  end
+
+  # To work this test consistently on CRuby you can to add 'Thread.pass' in
+  # @challenge iteration at BasicAuth#get like;
+  #
+  # return nil unless @challenge.find { |uri, ok|
+  #   Thread.pass
+  #   Util.uri_part_of(target_uri, uri) and ok
+  # }
+  def test_BASIC_auth_multi_thread
+    c = HTTPClient.new
+    webrick_backup = @basic_auth.instance_eval { @auth_scheme }
+    begin
+      @basic_auth.instance_eval { @auth_scheme = "BASIC" }
+      c.www_auth.basic_auth.instance_eval { @scheme = "BASIC" }
+      c.set_auth("http://localhost:#{serverport}/", 'admin', 'admin')
+
+      100.times.map { |idx|
+        Thread.new(idx) { |idx2|
+          Thread.abort_on_exception = true
+          Thread.pass
+          c.get("http://localhost:#{serverport}/basic_auth?#{idx2}")
+        }
+      }.map { |t|
+        t.join
+      }
+    ensure
+      @basic_auth.instance_eval { @auth_scheme = webrick_backup }
     end
   end
 
@@ -129,7 +251,7 @@ class TestAuth < Test::Unit::TestCase
     c.test_loopback_http_response << "HTTP/1.0 200 OK\nContent-Length: 2\n\nOK"
     c.debug_dev = str = ''
     c.get_content("http://localhost:#{serverport}/basic_auth/sub/dir/")
-    assert_match /Authorization: Basic YWRtaW46YWRtaW4=/, str
+    assert_match(/Authorization: Basic YWRtaW46YWRtaW4=/, str)
   end
 
   def test_digest_auth
@@ -145,7 +267,7 @@ class TestAuth < Test::Unit::TestCase
     c.test_loopback_http_response << "HTTP/1.0 200 OK\nContent-Length: 2\n\nOK"
     c.debug_dev = str = ''
     c.get_content("http://localhost:#{serverport}/digest_auth/sub/dir/")
-    assert_match /Authorization: Digest/, str
+    assert_match(/Authorization: Digest/, str)
   end
 
   def test_digest_auth_with_block
@@ -210,6 +332,16 @@ class TestAuth < Test::Unit::TestCase
     assert_match(/Proxy-Authorization: Basic YWRtaW46YWRtaW4=/, str)
   end
 
+  def test_proxy_auth_force
+    c = HTTPClient.new
+    c.set_proxy_auth('admin', 'admin')
+    c.force_basic_auth = true
+    c.test_loopback_http_response << "HTTP/1.0 200 OK\nContent-Length: 2\n\nOK"
+    c.debug_dev = str = ''
+    c.get_content('http://example.com/')
+    assert_match(/Proxy-Authorization: Basic YWRtaW46YWRtaW4=/, str)
+  end
+
   def test_proxy_auth_reuses_credentials
     c = HTTPClient.new
     c.set_proxy_auth('admin', 'admin')
@@ -318,4 +450,43 @@ class TestAuth < Test::Unit::TestCase
     assert(str.index(%q(POST /photos)))
     assert(str.index(%q(Authorization: OAuth realm="http://photos.example.net/", oauth_consumer_key="dpf43f3p2l4k3l03", oauth_nonce="kllo9940pd9333jh", oauth_signature="wPkvxykrw%2BBTdCcGqKr%2B3I%2BPsiM%3D", oauth_signature_method="HMAC-SHA1", oauth_timestamp="1191242096", oauth_token="nnch734d00sl2jdk", oauth_version="1.0")))
   end
+
+  def test_basic_auth_post_with_multipart
+    retry_times = 0
+    begin
+      c = HTTPClient.new
+      c.set_auth("http://localhost:#{serverport}/", 'admin', 'admin')
+      File.open(__FILE__) do |f|
+        # read 'f' twice for authorization negotiation
+        assert_equal('basic_auth OK', c.post("http://localhost:#{serverport}/basic_auth", :file => f).content)
+      end
+    rescue Errno::ECONNRESET, HTTPClient::KeepAliveDisconnected
+      # TODO: WEBrick server returns ECONNRESET/EPIPE before sending Unauthorized response to client?
+      raise if retry_times > 5
+      retry_times += 1
+      sleep 1
+      retry 
+    end
+  end
+
+  def test_negotiate_and_basic
+    c = HTTPClient.new
+    c.test_loopback_http_response << %Q(HTTP/1.1 401 Unauthorized\r\nWWW-Authenticate: NTLM\r\nWWW-Authenticate: Basic realm="foo"\r\nConnection: Keep-Alive\r\nContent-Length: 0\r\n\r\n)
+    c.test_loopback_http_response << %Q(HTTP/1.1 401 Unauthorized\r\nWWW-Authenticate: NTLM TlRMTVNTUAACAAAAAAAAACgAAAABAAAAAAAAAAAAAAA=\r\nConnection: Keep-Alive\r\nContent-Length: 0\r\n\r\n)
+    c.test_loopback_http_response << %Q(HTTP/1.0 200 OK\r\nConnection: Keep-Alive\r\nContent-Length: 1\r\n\r\na)
+    c.test_loopback_http_response << %Q(HTTP/1.0 200 OK\r\nConnection: Keep-Alive\r\nContent-Length: 1\r\n\r\nb)
+    c.debug_dev = str = ''
+    c.set_auth('http://www.example.org/', 'admin', 'admin')
+    # Do NTLM negotiation
+    c.get('http://www.example.org/foo')
+    # BasicAuth authenticator should not respond to it because NTLM
+    # negotiation has been finished.
+    assert_match(%r(Authorization: NTLM), str)
+    assert_not_match(%r(Authorization: Basic), str)
+    # ditto for other resource that is protected with NTLM
+    c.debug_dev = str = ''
+    c.get('http://www.example.org/foo/subdir')
+    assert_not_match(%r(Authorization: NTLM), str)
+    assert_not_match(%r(Authorization: Basic), str)
+  end
 end