Mercurial > hg > orthanc-tests
view Tests/CheckHttpServerSecurity.py @ 741:d21ff981e7a1
fix forbidden access to file on mercurial server
author | Alain Mazy <am@orthanc.team> |
---|---|
date | Fri, 15 Nov 2024 09:39:01 +0100 |
parents | 5d7b6e43ab7d |
children |
line wrap: on
line source
#!/usr/bin/env python3 # Orthanc - A Lightweight, RESTful DICOM Store # Copyright (C) 2012-2016 Sebastien Jodogne, Medical Physics # Department, University Hospital of Liege, Belgium # Copyright (C) 2017-2023 Osimis S.A., Belgium # Copyright (C) 2024-2024 Orthanc Team SRL, Belgium # Copyright (C) 2021-2024 Sebastien Jodogne, ICTEAM UCLouvain, Belgium # # This program is free software: you can redistribute it and/or # modify it under the terms of the GNU General Public License as # published by the Free Software Foundation, either version 3 of the # License, or (at your option) any later version. # # This program is distributed in the hope that it will be useful, but # WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU # General Public License for more details. # # You should have received a copy of the GNU General Public License # along with this program. If not, see <http://www.gnu.org/licenses/>. import json import os import subprocess import sys import time import Toolbox if len(sys.argv) != 2: print('Must provide a path to Orthanc binaries') exit(-1) TMP = '/tmp/OrthancTest' CONFIG = os.path.join(TMP, 'Configuration.json') if os.path.exists(TMP): print('Temporary path already exists: %s' % TMP) exit(-1) os.mkdir(TMP) ORTHANC = Toolbox.DefineOrthanc(username = 'orthanc', password = 'orthanc') def IsHttpServerSecure(config): with open(CONFIG, 'w') as f: f.write(json.dumps(config)) process = subprocess.Popen( [ sys.argv[1], CONFIG ], cwd = TMP, #stdout=subprocess.PIPE, stderr=subprocess.PIPE, #shell=True ) time.sleep(1) while True: try: system = Toolbox.DoGet(ORTHANC, '/system') break except: time.sleep(0.1) process.terminate() process.wait() return system['IsHttpServerSecure'] def Assert(b): if not b: raise Exception('Bad result') print('==== TEST 1 ====') Assert(IsHttpServerSecure({ 'RemoteAccessAllowed': False, 'RegisteredUsers' : { } })) print('==== TEST 2 ====') Assert(IsHttpServerSecure({ 'RemoteAccessAllowed': False, 'AuthenticationEnabled': False, 'RegisteredUsers' : { } })) print('==== TEST 3 ====') Assert(IsHttpServerSecure({ 'RemoteAccessAllowed': False, 'AuthenticationEnabled': True, 'RegisteredUsers' : { 'orthanc' : 'orthanc' } })) print('==== TEST 4 ====') Assert(not IsHttpServerSecure({ 'RemoteAccessAllowed': True })) print('==== TEST 5 (server application scenario) ====') Assert(not IsHttpServerSecure({ 'RemoteAccessAllowed': True, 'AuthenticationEnabled': False, })) print('==== TEST 6 ====') Assert(IsHttpServerSecure({ 'RemoteAccessAllowed': True, 'AuthenticationEnabled': True, 'RegisteredUsers' : { 'orthanc' : 'orthanc' } })) print('==== TEST 7 (Docker scenario) ====') Assert(not IsHttpServerSecure({ 'RemoteAccessAllowed': True, 'AuthenticationEnabled': True })) print('Success!')