Apache
/
lucene
mirror of https://github.com/apache/lucene.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

SOLR-12121: Fix test fails in JWTAuthPluginIntegrationTest.testMetrics 

(cherry picked from commit d09c724a0e)
This commit is contained in:
Jan Høydahl 2019-01-24 11:41:50 +01:00
parent ceb73803a6
commit 0b3ebdd290
2 changed files with 19 additions and 22 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
solr/core/src/test/org/apache/solr/security/JWTAuthPluginIntegrationTest.java
View File

@ -129,10 +129,8 @@ public class JWTAuthPluginIntegrationTest extends SolrCloudAuthTestCase {
public void testMetrics() throws Exception { public void testMetrics() throws Exception {
boolean isUseV2Api = random().nextBoolean(); boolean isUseV2Api = random().nextBoolean();
String authcPrefix = "/admin/authentication"; String authcPrefix = "/admin/authentication";
String authzPrefix = "/admin/authorization";
if(isUseV2Api){ if(isUseV2Api){
authcPrefix = "/____v2/cluster/security/authentication"; authcPrefix = "/____v2/cluster/security/authentication";
authzPrefix = "/____v2/cluster/security/authorization";
} }
String baseUrl = cluster.getRandomJetty(random()).getBaseUrl().toString(); String baseUrl = cluster.getRandomJetty(random()).getBaseUrl().toString();
CloseableHttpClient cl = HttpClientUtil.createClient(null); CloseableHttpClient cl = HttpClientUtil.createClient(null);
@ -193,11 +191,11 @@ public class JWTAuthPluginIntegrationTest extends SolrCloudAuthTestCase {
assertPkiAuthMetricsMinimums(15, 15, 0, 0, 0, 0); assertPkiAuthMetricsMinimums(15, 15, 0, 0, 0, 0);
} }
private void getAndFail(String url, String token) throws IOException { private void getAndFail(String url, String token) {
try { try {
get(url, token); get(url, token);
fail("Request to " + url + " with token " + token + " should have failed"); fail("Request to " + url + " with token " + token + " should have failed");
} catch(Exception e) {} } catch(Exception e) { /* Fall through */ }
} }
private Pair<String, Integer> get(String url, String token) throws IOException { private Pair<String, Integer> get(String url, String token) throws IOException {

35
solr/test-framework/src/java/org/apache/solr/cloud/SolrCloudAuthTestCase.java
View File

@ -27,6 +27,7 @@ import java.util.List;
import java.util.Map; import java.util.Map;
import java.util.Objects; import java.util.Objects;
import java.util.function.Predicate; import java.util.function.Predicate;
import java.util.stream.Stream;
import com.codahale.metrics.Counter; import com.codahale.metrics.Counter;
import com.codahale.metrics.Meter; import com.codahale.metrics.Meter;
@ -67,7 +68,7 @@ public class SolrCloudAuthTestCase extends SolrCloudTestCase {
/** /**
* Used to check metric counts for PKI auth * Used to check metric counts for PKI auth
*/ */
protected void assertPkiAuthMetricsMinimums(int requests, int authenticated, int passThrough, int failWrongCredentials, int failMissingCredentials, int errors) { protected void assertPkiAuthMetricsMinimums(int requests, int authenticated, int passThrough, int failWrongCredentials, int failMissingCredentials, int errors) throws InterruptedException {
assertAuthMetricsMinimums(METRICS_PREFIX_PKI, requests, authenticated, passThrough, failWrongCredentials, failMissingCredentials, errors); assertAuthMetricsMinimums(METRICS_PREFIX_PKI, requests, authenticated, passThrough, failWrongCredentials, failMissingCredentials, errors);
} }
@ -76,7 +77,7 @@ public class SolrCloudAuthTestCase extends SolrCloudTestCase {
* *
* TODO: many of these params have to be under specified - this should wait a bit to see the desired params and timeout * TODO: many of these params have to be under specified - this should wait a bit to see the desired params and timeout
*/ */
protected void assertAuthMetricsMinimums(int requests, int authenticated, int passThrough, int failWrongCredentials, int failMissingCredentials, int errors) { protected void assertAuthMetricsMinimums(int requests, int authenticated, int passThrough, int failWrongCredentials, int failMissingCredentials, int errors) throws InterruptedException {
assertAuthMetricsMinimums(METRICS_PREFIX, requests, authenticated, passThrough, failWrongCredentials, failMissingCredentials, errors); assertAuthMetricsMinimums(METRICS_PREFIX, requests, authenticated, passThrough, failWrongCredentials, failMissingCredentials, errors);
} }
@ -103,17 +104,7 @@ public class SolrCloudAuthTestCase extends SolrCloudTestCase {
* Common test method to be able to check security from any authentication plugin * Common test method to be able to check security from any authentication plugin
* @param prefix the metrics key prefix, currently "SECURITY./authentication." for basic auth and "SECURITY./authentication/pki." for PKI * @param prefix the metrics key prefix, currently "SECURITY./authentication." for basic auth and "SECURITY./authentication/pki." for PKI
*/ */
private void assertAuthMetricsMinimums(String prefix, int requests, int authenticated, int passThrough, int failWrongCredentials, int failMissingCredentials, int errors) { private void assertAuthMetricsMinimums(String prefix, int requests, int authenticated, int passThrough, int failWrongCredentials, int failMissingCredentials, int errors) throws InterruptedException {
Map<String, Long> counts = countAuthMetrics(prefix);
// check each counter
boolean success = isMetricEuqalOrLarger(requests, "requests", counts)
& isMetricEuqalOrLarger(authenticated, "authenticated", counts)
& isMetricEuqalOrLarger(passThrough, "passThrough", counts)
& isMetricEuqalOrLarger(failWrongCredentials, "failWrongCredentials", counts)
& isMetricEuqalOrLarger(failMissingCredentials, "failMissingCredentials", counts)
& isMetricEuqalOrLarger(errors, "errors", counts);
Map<String, Long> expectedCounts = new HashMap<>(); Map<String, Long> expectedCounts = new HashMap<>();
expectedCounts.put("requests", (long) requests); expectedCounts.put("requests", (long) requests);
expectedCounts.put("authenticated", (long) authenticated); expectedCounts.put("authenticated", (long) authenticated);
@ -121,6 +112,16 @@ public class SolrCloudAuthTestCase extends SolrCloudTestCase {
expectedCounts.put("failWrongCredentials", (long) failWrongCredentials); expectedCounts.put("failWrongCredentials", (long) failWrongCredentials);
expectedCounts.put("failMissingCredentials", (long) failMissingCredentials); expectedCounts.put("failMissingCredentials", (long) failMissingCredentials);
expectedCounts.put("errors", (long) errors); expectedCounts.put("errors", (long) errors);
Map<String, Long> counts = countAuthMetrics(prefix);
boolean success = isMetricsEqualOrLarger(expectedCounts, counts);
if (!success) {
log.info("First metrics count assert failed, pausing 2s before re-attempt");
Thread.sleep(2000);
counts = countAuthMetrics(prefix);
success = isMetricsEqualOrLarger(expectedCounts, counts);
}
assertTrue("Expected metric minimums for prefix " + prefix + ": " + expectedCounts + ", but got: " + counts, success); assertTrue("Expected metric minimums for prefix " + prefix + ": " + expectedCounts + ", but got: " + counts, success);
if (counts.get("requests") > 0) { if (counts.get("requests") > 0) {
@ -129,11 +130,9 @@ public class SolrCloudAuthTestCase extends SolrCloudTestCase {
} }
} }
// Check that the actual metric is equal to or greater than the expected value, never less private boolean isMetricsEqualOrLarger(Map<String, Long> expectedCounts, Map<String, Long> actualCounts) {
private boolean isMetricEuqalOrLarger(int expected, String key, Map<String, Long> counts) { return Stream.of("requests", "authenticated", "passThrough", "failWrongCredentials", "failMissingCredentials", "errors")
long cnt = counts.get(key); .allMatch(k -> actualCounts.get(k).intValue() >= expectedCounts.get(k).intValue());
log.debug("Asserting that auth metrics count ({}) > expected ({})", cnt, expected);
return(cnt >= expected);
} }
// Have to sum the metrics from all three shards/nodes // Have to sum the metrics from all three shards/nodes