/* * Copyright 2015-2020 The OpenZipkin Authors * * Licensed under the Apache License, Version 2.0 (the "License"); you may not use this file except * in compliance with the License. You may obtain a copy of the License at * * http://www.apache.org/licenses/LICENSE-2.0 * * Unless required by applicable law or agreed to in writing, software distributed under the License * is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express * or implied. See the License for the specific language governing permissions and limitations under * the License. */ package zipkin2.server.internal; import com.linecorp.armeria.client.ClientFactory; import com.linecorp.armeria.client.WebClient; import com.linecorp.armeria.common.AggregatedHttpResponse; import com.linecorp.armeria.common.HttpStatus; import com.linecorp.armeria.common.SessionProtocol; import com.linecorp.armeria.server.Server; import com.linecorp.armeria.spring.ArmeriaSettings; import org.junit.Before; import org.junit.Test; import org.junit.runner.RunWith; import org.springframework.beans.factory.annotation.Autowired; import org.springframework.boot.test.context.SpringBootTest; import org.springframework.test.context.junit4.SpringRunner; import zipkin.server.ZipkinServer; import static org.assertj.core.api.Assertions.assertThat; import static zipkin2.server.internal.elasticsearch.Access.configureSsl; /** * This code ensures you can setup SSL. Look at {@link ArmeriaSettings} for property names. * *

This is inspired by com.linecorp.armeria.spring.ArmeriaSslConfigurationTest */ @SpringBootTest( classes = ZipkinServer.class, webEnvironment = SpringBootTest.WebEnvironment.NONE, // RANDOM_PORT requires spring-web properties = { "server.port=0", "spring.config.name=zipkin-server", // TODO: use normal spring.server properties after https://github.com/line/armeria/issues/1834 "armeria.ssl.enabled=true", "armeria.ssl.key-store=classpath:keystore.p12", "armeria.ssl.key-store-password=password", "armeria.ssl.key-store-type=PKCS12", "armeria.ssl.trust-store=classpath:keystore.p12", "armeria.ssl.trust-store-password=password", "armeria.ssl.trust-store-type=PKCS12", "armeria.ports[1].port=0", "armeria.ports[1].protocols[0]=https", // redundant in zipkin-server-shared https://github.com/spring-projects/spring-boot/issues/16394 "armeria.ports[0].port=${server.port}", "armeria.ports[0].protocols[0]=http", }) @RunWith(SpringRunner.class) public class ITZipkinServerSsl { @Autowired Server server; @Autowired ArmeriaSettings armeriaSettings; ClientFactory clientFactory; @Before public void configureClientFactory() { clientFactory = configureSsl(ClientFactory.builder(), armeriaSettings.getSsl()).build(); } @Test public void callHealthEndpoint_HTTP() { callHealthEndpoint(SessionProtocol.HTTP); } @Test public void callHealthEndpoint_HTTPS() { callHealthEndpoint(SessionProtocol.HTTPS); } void callHealthEndpoint(SessionProtocol http) { AggregatedHttpResponse response = WebClient.builder(baseUrl(server, http)).factory(clientFactory).build() .get("/health") .aggregate().join(); assertThat(response.status()).isEqualTo(HttpStatus.OK); } static String baseUrl(Server server, SessionProtocol protocol) { return server.activePorts().values().stream() .filter(p -> p.hasProtocol(protocol)).findAny() .map(p -> protocol.uriText() + "://localhost:" + p.localAddress().getPort()) .orElseThrow(() -> new AssertionError(protocol + " port not open")); } }