Add tests for basic, (disabled) kerberos, and sso auth

Author: robsdedude

tests/stub/authorization/scripts/v4x3/scheme_basic.script

@@ -0,0 +1,13 @@
+!: BOLT 4.3
+
+A: HELLO {"user_agent": "*", "scheme": "basic", "principal": "neo4j", "credentials": "pass", "[routing]": "", "[ticket]": "", "[realm]": ""}
+*: RESET
+
+C: RUN "RETURN 1 AS n" "*" "*"
+S: SUCCESS {"fields": ["n"]}
+C: PULL "*"
+S: RECORD [1]
+   SUCCESS {"type": "r"}
+
+*: RESET
+?: GOODBYE

tests/stub/authorization/scripts/v4x3/scheme_basic_minimal.script

@@ -0,0 +1,13 @@
+!: BOLT 4.3
+
+A: HELLO {"user_agent": "*", "scheme": "basic", "principal": "neo4j", "credentials": "pass"}
+*: RESET
+
+C: RUN "RETURN 1 AS n" "*" "*"
+S: SUCCESS {"fields": ["n"]}
+C: PULL "*"
+S: RECORD [1]
+   SUCCESS {"type": "r"}
+
+*: RESET
+?: GOODBYE

tests/stub/authorization/scripts/v4x3/scheme_bearer.script

@@ -0,0 +1,13 @@
+!: BOLT 4.3
+
+A: HELLO {"user_agent": "*", "scheme": "bearer", "credentials": "QmFuYW5hIQ==", "[principal]": "", "[routing]": "", "[ticket]": "", "[realm]": ""}
+*: RESET
+
+C: RUN "RETURN 1 AS n" "*" "*"
+S: SUCCESS {"fields": ["n"]}
+C: PULL "*"
+S: RECORD [1]
+   SUCCESS {"type": "r"}
+
+*: RESET
+?: GOODBYE

tests/stub/authorization/scripts/v4x3/scheme_bearer_minimal.script

@@ -0,0 +1,13 @@
+!: BOLT 4.3
+
+A: HELLO {"user_agent": "*", "scheme": "bearer", "credentials": "QmFuYW5hIQ=="}
+*: RESET
+
+C: RUN "RETURN 1 AS n" "*" "*"
+S: SUCCESS {"fields": ["n"]}
+C: PULL "*"
+S: RECORD [1]
+   SUCCESS {"type": "r"}
+
+*: RESET
+?: GOODBYE

tests/stub/authorization/scripts/v4x3/scheme_kerberos.script

@@ -0,0 +1,13 @@
+!: BOLT 4.3
+
+A: HELLO {"user_agent": "*", "scheme": "kerberos", "principal": "neo4j", "credentials": "QmFuYW5hIQ==", "[routing]": "", "[ticket]": "", "[realm]": "}
+*: RESET
+
+C: RUN "RETURN 1 AS n" "*" "*"
+S: SUCCESS {"fields": ["n"]}
+C: PULL "*"
+S: RECORD [1]
+   SUCCESS {"type": "r"}
+
+*: RESET
+?: GOODBYE

tests/stub/authorization/scripts/v4x3/scheme_kerberos_minimal.script

@@ -0,0 +1,14 @@
+!: BOLT 4.3
+
+# TODO: find out if kerberos auth requires an empty principal on the server side (staring from v3.5)
+A: HELLO {"user_agent": "*", "scheme": "kerberos", "[principal]": "", "credentials": "QmFuYW5hIQ=="}
+*: RESET
+
+C: RUN "RETURN 1 AS n" "*" "*"
+S: SUCCESS {"fields": ["n"]}
+C: PULL "*"
+S: RECORD [1]
+   SUCCESS {"type": "r"}
+
+*: RESET
+?: GOODBYE

tests/stub/authorization/test_authorization.py

@@ -505,3 +505,72 @@ def test_should_be_able_to_use_current_sessions_after_AuthorizationExpired(self)
 
         session1.run('RETURN 2 as n').next()
         session1.close()
+
+
+class TestAuthenticationSchemes(AuthorizationBase):
+    def get_vars(self):
+        return {
+            "#VERSION#": "4.3"
+        }
+
+    def setUp(self):
+        super().setUp()
+        self._server = StubServer(9010)
+        self._uri = "bolt://%s:%d" % (self._server.host,
+                                      self._server.port)
+
+    def tearDown(self):
+        self._server.reset()
+        super().tearDown()
+
+    def test_basic_scheme(self):
+        implicit_defaults = self.driver_supports_features(
+            types.Feature.OPT_IMPLICIT_DEFAULT_ARGUMENTS
+        )
+        script_fn = "scheme_basic%s.script"
+        script_fn = script_fn % ("_minimal" if implicit_defaults else "")
+        self.start_server(self._server, script_fn)
+
+        auth = types.AuthorizationToken(scheme="basic", principal="neo4j",
+                                        credentials="pass")
+        driver = Driver(self._backend, self._uri, auth)
+        session = driver.session("r")
+        list(session.run("RETURN 1 AS n"))
+        session.close()
+        driver.close()
+        self._server.done()
+
+    # def test_kerberos_scheme(self):
+    #     implicit_defaults = self.driver_supports_features(
+    #         types.Feature.OPT_IMPLICIT_DEFAULT_ARGUMENTS
+    #     )
+    #     script_fn = "scheme_kerberos%s.script"
+    #     script_fn = script_fn % ("_minimal" if implicit_defaults else "")
+    #     self.start_server(self._server, script_fn)
+    #
+    #     auth = types.AuthorizationToken(scheme="kerberos", principal="",
+    #                                     credentials="QmFuYW5hIQ==")
+    #     driver = Driver(self._backend, self._uri, auth)
+    #     session = driver.session("r")
+    #     list(session.run("RETURN 1 AS n"))
+    #     session.close()
+    #     driver.close()
+    #     self._server.done()
+    #     self._server._dump()
+
+    def test_bearer_scheme(self):
+        implicit_defaults = self.driver_supports_features(
+            types.Feature.OPT_IMPLICIT_DEFAULT_ARGUMENTS
+        )
+        script_fn = "scheme_bearer%s.script"
+        script_fn = script_fn % ("_minimal" if implicit_defaults else "")
+        self.start_server(self._server, script_fn)
+
+        auth = types.AuthorizationToken(scheme="bearer", principal="",
+                                        credentials="QmFuYW5hIQ==")
+        driver = Driver(self._backend, self._uri, auth)
+        session = driver.session("r")
+        list(session.run("RETURN 1 AS n"))
+        session.close()
+        driver.close()
+        self._server.done()