evolix/chexpire
21
1
Fork 0
mirror of https://github.com/Evolix/chexpire.git synced 2024-05-03 09:20:49 +02:00
Code Releases Activity

check_http: added --sni to defaults options

Browse source 
Closes #82
Probably fixes #74 too ?
This commit is contained in:
Colin Darie 2018-08-29 16:51:21 +02:00
parent 70530727ca
commit 093c5f8e44
No known key found for this signature in database
GPG key ID: 4FB865FDBCA4BCC4
5 changed files with 18 additions and 9 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

5
app/services/ssl.rb
View file

@ -58,8 +58,9 @@ module SSL
def check_http_args def check_http_args
[ [
"-C 0", # enable SSL mode without any delay warning "-C 0", # enable SSL mode without any delay warning
"-H", # check_http does not works with fully quoted arg (check_http "-H myhost.org") "--sni", # some certificates must have this option
"-H", # check_http does not works with fully quoted arg (check_http "-H myhost.org")
domain, domain,
*custom_check_http_args, *custom_check_http_args,
].compact ].compact

4
config/chexpire.defaults.yml
View file

@ -28,7 +28,9 @@ default: &default
checks_ssl: checks_ssl:
interval: 0.0 # pause in second between each check http call interval: 0.0 # pause in second between each check http call
check_http_path: # defaults to check_http in $PATH check_http_path: # defaults to check_http in $PATH
check_http_args: # array of arguments appended to defaults arguments (-C 0 -H $HOSTNAME). check_http_args: # array of arguments *appended* after defaults arguments (which are -C 0 --sni -H $HOSTNAME)
# example: check_http_args: ["-4", "-I 127.0.0.1"]
development: development:
<<: *default <<: *default

2
test/jobs/ssl_sync_job_test.rb
View file

@ -81,6 +81,6 @@ class SSLSyncJobTest < ActiveJob::TestCase
end end
def expected_command_arg(domain) def expected_command_arg(domain)
["-C 0", "-H", domain] ["-C 0", "--sni", "-H", domain]
end end
end end

2
test/services/check_ssl_processor_test.rb
View file

@ -13,7 +13,7 @@ class CheckSSLProcessorTest < ActiveSupport::TestCase
check = create(:check, :ssl, :nil_dates, domain: domain) check = create(:check, :ssl, :nil_dates, domain: domain)
response = file_fixture("ssl/ssl0.domain.org.txt").read response = file_fixture("ssl/ssl0.domain.org.txt").read
mock_system_command("check_http", ["-C 0", "-H", domain], stdout: response) do mock_system_command("check_http", ["-C 0", "--sni", "-H", domain], stdout: response) do
@processor.send(:process, check) @processor.send(:process, check)
end end

14
test/services/ssl_test.rb
View file

@ -10,7 +10,7 @@ module SSL
test "should run the command, return the result" do test "should run the command, return the result" do
result = OpenStruct.new(exit_status: 0) result = OpenStruct.new(exit_status: 0)
mock_system_klass("check_http", ["-C 0", "-H", "example.org"], result) do |system_klass| mock_system_klass("check_http", standard_args, result) do |system_klass|
service = Service.new("example.org", system_klass: system_klass) service = Service.new("example.org", system_klass: system_klass)
assert_equal result, service.run_command assert_equal result, service.run_command
end end
@ -19,7 +19,7 @@ module SSL
test "should raise an exception if exit status > 0" do test "should raise an exception if exit status > 0" do
result = OpenStruct.new(exit_status: 1) result = OpenStruct.new(exit_status: 1)
mock_system_klass("check_http", ["-C 0", "-H", "example.org"], result) do |system_klass| mock_system_klass("check_http", standard_args, result) do |system_klass|
service = Service.new("example.org", system_klass: system_klass) service = Service.new("example.org", system_klass: system_klass)
assert_raises SSLCommandError do assert_raises SSLCommandError do
@ -42,7 +42,7 @@ module SSL
result = OpenStruct.new(exit_status: 0) result = OpenStruct.new(exit_status: 0)
config = OpenStruct.new(check_http_args: ["-f", "-I 127.0.0.1"]) config = OpenStruct.new(check_http_args: ["-f", "-I 127.0.0.1"])
expected_args = ["-C 0", "-H", "example.org", "-f", "-I 127.0.0.1"] expected_args = standard_args.concat ["-f", "-I 127.0.0.1"]
mock_system_klass("check_http", expected_args, result) do |system_klass| mock_system_klass("check_http", expected_args, result) do |system_klass|
service = Service.new("example.org", configuration: config, system_klass: system_klass) service = Service.new("example.org", configuration: config, system_klass: system_klass)
assert_equal result, service.run_command assert_equal result, service.run_command
@ -63,12 +63,18 @@ module SSL
result = OpenStruct.new(exit_status: 0) result = OpenStruct.new(exit_status: 0)
config = OpenStruct.new(check_http_path: "/usr/local/custom/path") config = OpenStruct.new(check_http_path: "/usr/local/custom/path")
mock_system_klass("/usr/local/custom/path", ["-C 0", "-H", "example.org"], result) do |sys| mock_system_klass("/usr/local/custom/path", standard_args, result) do |sys|
service = Service.new("example.org", configuration: config, system_klass: sys) service = Service.new("example.org", configuration: config, system_klass: sys)
assert_equal result, service.run_command assert_equal result, service.run_command
end end
end end
private
def standard_args
["-C 0", "--sni", "-H", "example.org"]
end
def mock_system_klass(program, command_args, result) def mock_system_klass(program, command_args, result)
system_klass = Minitest::Mock.new system_klass = Minitest::Mock.new
system_command = Minitest::Mock.new.expect(:execute, result) system_command = Minitest::Mock.new.expect(:execute, result)