Home Explore Help
Register Sign In
r3set
/
MetaSploitFraemwork
mirror of https://github.com/rapid7/metasploit-framework
Watch 1
Star 0
Fork 0
Files Issues 0 Wiki
Tree: cc9c104bc8
Branches Tags
MetaSploitFr...
/
spec
/
lib
/
metasploit
/
framework
/
credential_spec.rb

credential_spec.rb 4.1 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162 
  1. require 'spec_helper'
    2. 

  2. require 'metasploit/framework/credential'
    3. 

  3. 

  4. RSpec.describe Metasploit::Framework::Credential do
    5. 

  5. 

  6.   subject(:cred_detail) {
    7. 

  7.     described_class.new
    8. 

  8.   }
    9. 

  9. 

  10.   let(:public) { "public" }
    11. 

  11.   let(:private) { "private" }
    12. 

  12.   let(:realm) { "realm" }
    13. 

  13.   let(:realm_type) { Metasploit::Model::Realm::Key::ACTIVE_DIRECTORY_DOMAIN }
    14. 

  14.   let(:private_type) { :password }
    15. 

  15. 

  16.   it { is_expected.to respond_to :paired }
    17. 

  17.   it { is_expected.to respond_to :private }
    18. 

  18.   it { is_expected.to respond_to :private_type }
    19. 

  19.   it { is_expected.to respond_to :public }
    20. 

  20.   it { is_expected.to respond_to :realm }
    21. 

  21.   it { is_expected.to respond_to :realm_key }
    22. 

  22. 

  23.   describe "#paired" do
    24. 

  24.     it "defaults to true" do
    25. 

  25.       expect(cred_detail.paired).to be_truthy
    26. 

  26.     end
    27. 

  27.   end
    28. 

  28. 

  29.   context 'validations' do
    30. 

  30. 

  31.     it 'is not valid without paired being set' do
    32. 

  32.       expect(cred_detail).to_not be_valid
    33. 

  33.     end
    34. 

  34. 

  35.     context 'when not paired' do
    36. 

  36.       before(:example) do
    37. 

  37.         cred_detail.paired = false
    38. 

  38.       end
    39. 

  39. 

  40.       it 'is invalid without at least a public or a private' do
    41. 

  41.         expect(cred_detail).to_not be_valid
    42. 

  42.       end
    43. 

  43. 

  44.       it 'is valid with just a public' do
    45. 

  45.         cred_detail.public = 'root'
    46. 

  46.         expect(cred_detail).to be_valid
    47. 

  47.       end
    48. 

  48. 

  49.       it 'is valid with just a private' do
    50. 

  50.         cred_detail.private = 'toor'
    51. 

  51.         expect(cred_detail).to be_valid
    52. 

  52.       end
    53. 

  53.     end
    54. 

  54. 

  55.     context 'when paired' do
    56. 

  56.       before(:example) do
    57. 

  57.         cred_detail.paired = true
    58. 

  58.       end
    59. 

  59. 

  60.       it 'is invalid with only a public' do
    61. 

  61.         cred_detail.public = 'root'
    62. 

  62.         expect(cred_detail).to_not be_valid
    63. 

  63.       end
    64. 

  64. 

  65.       it 'is invalid with only a private' do
    66. 

  66.         cred_detail.private = 'toor'
    67. 

  67.         expect(cred_detail).to_not be_valid
    68. 

  68.       end
    69. 

  69. 

  70.       it 'is invalid with empty string for public' do
    71. 

  71.         cred_detail.public = ''
    72. 

  72.         cred_detail.private = 'toor'
    73. 

  73.         expect(cred_detail).to_not be_valid
    74. 

  74.       end
    75. 

  75. 

  76.       it 'is valid with empty string for private' do
    77. 

  77.         cred_detail.public = 'root'
    78. 

  78.         cred_detail.private = ''
    79. 

  79.         expect(cred_detail).to be_valid
    80. 

  80.       end
    81. 

  81.     end
    82. 

  82. 

  83.   end
    84. 

  84. 

  85.   describe "#to_credential" do
    86. 

  86.     subject(:cred_detail) do
    87. 

  87.       described_class.new(public: public, private: private, realm: realm)
    88. 

  88.     end
    89. 

  89.     it { is_expected.to respond_to :to_credential }
    90. 

  90.     it "should return self" do
    91. 

  91.       expect(cred_detail.to_credential).to eq(cred_detail)
    92. 

  92.     end
    93. 

  93.   end
    94. 

  94. 

  95.   describe "#==" do
    96. 

  96.     let(:public) { "public" }
    97. 

  97.     let(:private) { "private" }
    98. 

  98.     let(:realm) { "realm" }
    99. 

  99.     subject(:cred_detail) do
    100. 

  100.       described_class.new(public: public, private: private, realm: realm)
    101. 

  101.     end
    102. 

  102. 

  103.     context "when all attributes match" do
    104. 

  104.       let(:other) do
    105. 

  105.         described_class.new(public: public, private: private, realm: realm)
    106. 

  106.       end
    107. 

  107.       specify do
    108. 

  108.         expect(other).to eq(cred_detail)
    109. 

  109.       end
    110. 

  110.     end
    111. 

  111. 

  112.     context "when realm does not match" do
    113. 

  113.       let(:other) do
    114. 

  114.         described_class.new(public: public, private: private, realm: "")
    115. 

  115.       end
    116. 

  116.       specify do
    117. 

  117.         expect(other).not_to eq(cred_detail)
    118. 

  118.       end
    119. 

  119.     end
    120. 

  120. 

  121.     context "when private does not match" do
    122. 

  122.       let(:other) do
    123. 

  123.         described_class.new(public: public, private: "", realm: realm)
    124. 

  124.       end
    125. 

  125.       specify do
    126. 

  126.         expect(other).not_to eq(cred_detail)
    127. 

  127.       end
    128. 

  128.     end
    129. 

  129. 

  130.     context "when public does not match" do
    131. 

  131.       let(:other) do
    132. 

  132.         described_class.new(public: "", private: private, realm: realm)
    133. 

  133.       end
    134. 

  134.       specify do
    135. 

  135.         expect(other).not_to eq(cred_detail)
    136. 

  136.       end
    137. 

  137.     end
    138. 

  138.     context "when comparing to a different object" do
    139. 

  139.       let(:other) {'a string'}
    140. 

  140.       specify do
    141. 

  141.         expect(other).not_to eq(cred_detail)
    142. 

  142.       end
    143. 

  143.     end
    144. 

  144.   end
    145. 

  145. 

  146.   describe '#to_h' do
    147. 

  147.     subject(:cred_detail) do
    148. 

  148.       described_class.new(public: public, private: private, realm: realm, realm_key: realm_type, private_type: private_type)
    149. 

  149.     end
    150. 

  150.     it 'returns a hash in the format expect for create_credential' do
    151. 

  151.       cred_hash = {
    152. 

  152.           private_data: private,
    153. 

  153.           private_type: private_type,
    154. 

  154.           username: public,
    155. 

  155.           realm_key: realm_type,
    156. 

  156.           realm_value: realm
    157. 

  157.       }
    158. 

  158.       expect(cred_detail.to_h).to eq cred_hash
    159. 

  159.     end
    160. 

  160.   end
    161. 

  161. end
    162. 

  162.