Merge remote-tracking branch 'origin/develop' into ftr/middleware

2020-08-04 07:27:45 +00:00 · 2020-08-04 07:27:45 +00:00 · aa3987f816
parent 79ffef90e3 310161f9d4
commit aa3987f816
9 changed files with 36 additions and 21 deletions
--- a/.gitignore
+++ b/.gitignore
@ -7,3 +7,5 @@ beego.iml

 _beeTmp
 _beeTmp2
+pkg/_beeTmp
+pkg/_beeTmp2
--- a/CONTRIBUTING.md
+++ b/CONTRIBUTING.md
@ -12,12 +12,14 @@ please let us know if anything feels wrong or incomplete.
 ### Pull requests

 First of all. beego follow the gitflow. So please send you pull request 
-to **develop** branch. We will close the pull request to master branch.
+to **develop-2** branch. We will close the pull request to master branch.

 We are always happy to receive pull requests, and do our best to
 review them as fast as possible. Not sure if that typo is worth a pull
 request? Do it! We will appreciate it.

+Don't forget to rebase your commits!
+
 If your pull request is not accepted on the first try, don't be
 discouraged! Sometimes we can make a mistake, please do more explaining 
 for us. We will appreciate it.
--- a/app.go
+++ b/app.go
@ -197,7 +197,7 @@ func (app *App) Run(mws ...MiddleWare) {
 				pool.AppendCertsFromPEM(data)
 				app.Server.TLSConfig = &tls.Config{
 					ClientCAs:  pool,
-					ClientAuth: tls.RequireAndVerifyClientCert,
+					ClientAuth: BConfig.Listen.ClientAuth,
 				}
 			}
 			if err := app.Server.ListenAndServeTLS(BConfig.Listen.HTTPSCertFile, BConfig.Listen.HTTPSKeyFile); err != nil {
--- a/config.go
+++ b/config.go
@ -21,6 +21,7 @@ import (
 	"reflect"
 	"runtime"
 	"strings"
+	"crypto/tls"

 	"github.com/astaxie/beego/config"
 	"github.com/astaxie/beego/context"
@ -65,6 +66,7 @@ type Listen struct {
 	HTTPSCertFile     string
 	HTTPSKeyFile      string
 	TrustCaFile       string
+	ClientAuth        tls.ClientAuthType
 	EnableAdmin       bool
 	AdminAddr         string
 	AdminPort         int
@ -150,6 +152,9 @@ func init() {
 		filename = os.Getenv("BEEGO_RUNMODE") + ".app.conf"
 	}
 	appConfigPath = filepath.Join(WorkPath, "conf", filename)
+	if configPath := os.Getenv("BEEGO_CONFIG_PATH"); configPath != "" {
+		appConfigPath =  configPath
+	}
 	if !utils.FileExists(appConfigPath) {
 		appConfigPath = filepath.Join(AppPath, "conf", filename)
 		if !utils.FileExists(appConfigPath) {
@ -231,6 +236,7 @@ func newBConfig() *Config {
 			AdminPort:     8088,
 			EnableFcgi:    false,
 			EnableStdIo:   false,
+			ClientAuth:    tls.RequireAndVerifyClientCert,
 		},
 		WebConfig: WebConfig{
 			AutoRender:             true,
--- a/context/context.go
+++ b/context/context.go
@ -150,7 +150,7 @@ func (ctx *Context) XSRFToken(key string, expire int64) string {
 		token, ok := ctx.GetSecureCookie(key, "_xsrf")
 		if !ok {
 			token = string(utils.RandomCreateBytes(32))
-			ctx.SetSecureCookie(key, "_xsrf", token, expire)
+			ctx.SetSecureCookie(key, "_xsrf", token, expire, "", "", true, true)
 		}
 		ctx._xsrfToken = token
 	}
--- a/context/context_test.go
+++ b/context/context_test.go
@ -17,7 +17,10 @@ package context
 import (
 	"net/http"
 	"net/http/httptest"
+	"strings"
 	"testing"
+
+	"github.com/stretchr/testify/assert"
 )

 func TestXsrfReset_01(t *testing.T) {
@ -44,4 +47,8 @@ func TestXsrfReset_01(t *testing.T) {
 	if token == c._xsrfToken {
 		t.FailNow()
 	}
+
+	ck := c.ResponseWriter.Header().Get("Set-Cookie")
+	assert.True(t, strings.Contains(ck, "Secure"))
+	assert.True(t, strings.Contains(ck, "HttpOnly"))
 }
--- a/logs/conn_test.go
+++ b/logs/conn_test.go
@ -70,10 +70,11 @@ func TestReconnect(t *testing.T) {
 	log.Informational("informational 2")

 	// Check if there was a second connection attempt
-	select {
-	case second := <-newConns:
-		second.Close()
-	default:
-		t.Error("Did not reconnect")
-	}
+	// close this because we moved the codes to pkg/logs
+	// select {
+	// case second := <-newConns:
+	// 	second.Close()
+	// default:
+	// 	t.Error("Did not reconnect")
+	// }
 }
--- a/logs/smtp_test.go
+++ b/logs/smtp_test.go
@ -14,14 +14,11 @@

 package logs

-import (
-	"testing"
-	"time"
-)
-
-func TestSmtp(t *testing.T) {
-	log := NewLogger(10000)
-	log.SetLogger("smtp", `{"username":"beegotest@gmail.com","password":"xxxxxxxx","host":"smtp.gmail.com:587","sendTos":["xiemengjun@gmail.com"]}`)
-	log.Critical("sendmail critical")
-	time.Sleep(time.Second * 30)
-}
+// it often failed. And we moved this to pkg/logs,
+// so we ignore it
+// func TestSmtp(t *testing.T) {
+// 	log := NewLogger(10000)
+// 	log.SetLogger("smtp", `{"username":"beegotest@gmail.com","password":"xxxxxxxx","host":"smtp.gmail.com:587","sendTos":["xiemengjun@gmail.com"]}`)
+// 	log.Critical("sendmail critical")
+// 	time.Sleep(time.Second * 30)
+// }
--- a/pkg/context/context.go
+++ b/pkg/context/context.go
@ -150,7 +150,7 @@ func (ctx *Context) XSRFToken(key string, expire int64) string {
 		token, ok := ctx.GetSecureCookie(key, "_xsrf")
 		if !ok {
 			token = string(utils.RandomCreateBytes(32))
-			ctx.SetSecureCookie(key, "_xsrf", token, expire)
+			ctx.SetSecureCookie(key, "_xsrf", token, expire, "", "", true, true)
 		}
 		ctx._xsrfToken = token
 	}