Mercurial > hg > nginx-tests

comparison upstream_zone_ssl.t @ 560:f3434de79a7f

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
Tests: upstream zone tests with ssl backend.
author Sergey Kandaurov <pluknet@nginx.com>
date Thu, 23 Apr 2015 14:01:22 +0300
parents
children e9064d691790
comparison
equal deleted inserted replaced
559:9208d8243926 560:f3434de79a7f
1 #!/usr/bin/perl
2
3 # (C) Sergey Kandaurov
4 # (C) Nginx, Inc.
5
6 # Tests for upstream zone with ssl backend.
7
8 ###############################################################################
9
10 use warnings;
11 use strict;
12
13 use Test::More;
14
15 BEGIN { use FindBin; chdir($FindBin::Bin); }
16
17 use lib 'lib';
18 use Test::Nginx;
19
20 ###############################################################################
21
22 select STDERR; $| = 1;
23 select STDOUT; $| = 1;
24
25 my $t = Test::Nginx->new()->has(qw/http proxy http_ssl upstream_zone/)
26 ->has_daemon('openssl')->write_file_expand('nginx.conf', <<'EOF');
27
28 %%TEST_GLOBALS%%
29
30 daemon off;
31
32 events {
33 }
34
35 http {
36 %%TEST_GLOBALS_HTTP%%
37
38 upstream u {
39 zone u 32k;
40 server 127.0.0.1:8081;
41 }
42
43 upstream u2 {
44 zone u;
45 server 127.0.0.1:8081 backup;
46 server 127.0.0.1:8082 down;
47 }
48
49 server {
50 listen 127.0.0.1:8081 ssl;
51
52 ssl_certificate_key localhost.key;
53 ssl_certificate localhost.crt;
54 ssl_session_cache builtin;
55
56 location / {
57 add_header X-Session $ssl_session_reused;
58 }
59 }
60
61 server {
62 listen 127.0.0.1:8080;
63 server_name localhost;
64
65 proxy_ssl_session_reuse off;
66
67 location /ssl_reuse {
68 proxy_pass https://u/;
69 proxy_ssl_session_reuse on;
70 }
71
72 location /ssl {
73 proxy_pass https://u/;
74 }
75
76 location /backup_reuse {
77 proxy_pass https://u2/;
78 proxy_ssl_session_reuse on;
79 }
80
81 location /backup {
82 proxy_pass https://u2/;
83 }
84 }
85 }
86
87 EOF
88
89 $t->write_file('openssl.conf', <<EOF);
90 [ req ]
91 default_bits = 2048
92 encrypt_key = no
93 distinguished_name = req_distinguished_name
94 [ req_distinguished_name ]
95 EOF
96
97 $t->write_file('index.html', '');
98
99 my $d = $t->testdir();
100
101 foreach my $name ('localhost') {
102 system('openssl req -x509 -new '
103 . "-config '$d/openssl.conf' -subj '/CN=$name/' "
104 . "-out '$d/$name.crt' -keyout '$d/$name.key' "
105 . ">>$d/openssl.out 2>&1") == 0
106 or die "Can't create certificate for $name: $!\n";
107 }
108
109 $t->try_run('no upstream zone')->plan(8);
110
111 ###############################################################################
112
113 like(http_get('/ssl'), qr/200 OK.*X-Session: \./s, 'ssl');
114 like(http_get('/ssl'), qr/200 OK.*X-Session: \./s, 'ssl 2');
115 like(http_get('/ssl_reuse'), qr/200 OK.*X-Session: \./s, 'ssl reuse session');
116 like(http_get('/ssl_reuse'), qr/200 OK.*X-Session: r/s, 'ssl reuse session 2');
117
118 like(http_get('/backup'), qr/200 OK.*X-Session: \./s, 'backup');
119 like(http_get('/backup'), qr/200 OK.*X-Session: \./s, 'backup 2');
120 like(http_get('/backup_reuse'), qr/200 OK.*X-Session: \./s, 'backup reuse');
121 like(http_get('/backup_reuse'), qr/200 OK.*X-Session: r/s, 'backup reuse 2');
122
123 ###############################################################################