UNPKG

openhim-core

Version:

The OpenHIM core application that provides logging and routing of http requests

openhim.org

jembi/openhim-core-js

225 lines (204 loc) 7.5 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
should = require "should" net = require 'net' tls = require 'tls' Channel = require("../../lib/model/channels").Channel Client = require("../../lib/model/clients").Client Transaction = require("../../lib/model/transactions").Transaction Certificate = require("../../lib/model/keystore").Certificate testUtils = require "../testUtils" server = require "../../lib/server" fs = require "fs" sinon = require "sinon" config = require "../../lib/config/config" stats = require "../../lib/stats" describe "TCP/TLS/MLLP Integration Tests", -> testMessage = "This is an awesome test message!" mockTCPServer = null mockHTTPServer = null mockTLSServer = null mockTLSServerWithoutClientCert = null mockMLLPServer = null channel1 = new Channel name: 'TCPIntegrationChannel1' urlPattern: '/' allow: [ 'tcp' ] type: 'tcp' tcpPort: 4000 tcpHost: 'localhost' routes: [ name: 'tcp route' host: 'localhost' port: 6000 type: 'tcp' primary: true ] channel2 = new Channel name: 'TCPIntegrationChannel2' urlPattern: '/' allow: [ 'tls' ] type: 'tls' tcpPort: 4001 tcpHost: 'localhost' routes: [ name: 'tcp route' host: 'localhost' port: 6000 type: 'tcp' primary: true ] channel3 = new Channel name: 'TCPIntegrationChannel3' urlPattern: '/' allow: [ 'tcp' ] type: 'tcp' tcpPort: 4002 tcpHost: 'localhost' routes: [ name: 'http route' host: 'localhost' port: 6001 type: 'http' primary: true ] channel4 = new Channel name: 'TCPIntegrationChannel4' urlPattern: '/' allow: [ 'tcp' ] type: 'tcp' tcpPort: 4003 tcpHost: 'localhost' routes: [ name: 'tls route' host: 'localhost' port: 6002 type: 'tcp' secured: true primary: true ] channel5 = new Channel name: 'TCPIntegrationChannel5' urlPattern: '/' allow: [ 'tcp' ] type: 'tcp' tcpPort: 4004 tcpHost: 'localhost' routes: [ name: 'tls route without client cert' host: 'localhost' port: 6003 type: 'tcp' secured: true primary: true ] channel6 = new Channel name: 'MLLPIntegrationChannel1' urlPattern: '/' allow: [ 'tcp' ] type: 'tcp' tcpPort: 4005 tcpHost: 'localhost' routes: [ name: 'mllp route' host: 'localhost' port: 6004 type: 'mllp' primary: true ] secureClient = new Client clientID: "TlsIntegrationClient" clientDomain: "test-client.jembi.org" name: "TEST Client" roles: [ "test" ] passwordHash: "" cert: (fs.readFileSync "test/resources/client-tls/cert.pem").toString() sendTCPTestMessage = (port, callback) -> client = net.connect port, 'localhost', -> client.write testMessage client.on 'data', (data) -> client.end() callback "#{data}" sendTLSTestMessage = (port, callback) -> options = cert: fs.readFileSync "test/resources/client-tls/cert.pem" key: fs.readFileSync "test/resources/client-tls/key.pem" ca: [ fs.readFileSync "test/resources/server-tls/cert.pem" ] client = tls.connect port, 'localhost', options, -> client.write testMessage client.on 'data', (data) -> client.end() callback "#{data}" before (done) -> testUtils.setupTestKeystore null, null, [], (keystore) -> cert = new Certificate data: fs.readFileSync 'test/resources/server-tls/cert.pem' # Setup certs for secure channels channel4.routes[0].cert = cert._id channel5.routes[0].cert = cert._id keystore.ca.push cert keystore.save -> channel1.save -> channel2.save -> channel3.save -> channel4.save -> channel5.save -> channel6.save -> secureClient.save -> testUtils.createMockTCPServer 6000, testMessage, 'TCP OK', 'TCP Not OK', (server) -> mockTCPServer = server testUtils.createMockHTTPRespondingPostServer 6001, testMessage, 'HTTP OK', 'HTTP Not OK', (server) -> mockHTTPServer = server testUtils.createMockTLSServerWithMutualAuth 6002, testMessage, 'TLS OK', 'TLS Not OK', (server) -> mockTLSServer = server testUtils.createMockTLSServerWithMutualAuth 6003, testMessage, 'TLS OK', 'TLS Not OK', false, (server) -> mockTLSServerWithoutClientCert = server testUtils.createMockTCPServer 6004, testMessage, 'MLLP OK' + String.fromCharCode(0o034) + '\n', 'MLLP Not OK' + String.fromCharCode(0o034) + '\n', (server) -> mockMLLPServer = server done() beforeEach (done) -> Transaction.remove {}, done after (done) -> testUtils.cleanupTestKeystore -> Channel.remove {}, -> Transaction.remove {}, -> Client.remove {}, -> mockTCPServer.close -> mockHTTPServer.close -> mockTLSServer.close -> mockTLSServerWithoutClientCert.close -> mockMLLPServer.close done afterEach (done) -> server.stop done it "should route TCP messages", (done) -> incrementTransactionCountSpy = sinon.spy stats, 'incrementTransactionCount' # check if the method was called measureTransactionDurationSpy = sinon.spy stats, 'measureTransactionDuration' # check if the method was called server.start tcpHttpReceiverPort: 7787, -> sendTCPTestMessage 4000, (data) -> data.should.be.exactly 'TCP OK' if config.statsd.enabled incrementTransactionCountSpy.calledOnce.should.be.true incrementTransactionCountSpy.getCall(0).args[0].authorisedChannel.should.have.property 'name', 'TCPIntegrationChannel1' measureTransactionDurationSpy.calledOnce.should.be.true done() it "should handle disconnected clients", (done) -> server.start tcpHttpReceiverPort: 7787, -> client = net.connect 4000, 'localhost', -> client.on 'close', -> server.stop done client.end 'test' it "should route TLS messages", (done) -> server.start tcpHttpReceiverPort: 7787, -> sendTLSTestMessage 4001, (data) -> data.should.be.exactly 'TCP OK' done() it "should route TCP messages to HTTP routes", (done) -> server.start tcpHttpReceiverPort: 7787, -> sendTCPTestMessage 4002, (data) -> data.should.be.exactly 'HTTP OK' done() it "should route TCP messages to TLS routes", (done) -> server.start tcpHttpReceiverPort: 7787, -> sendTCPTestMessage 4003, (data) -> data.should.be.exactly 'TLS OK' done() it "should return an error when the client cert is not known by the server", (done) -> server.start tcpHttpReceiverPort: 7787, -> sendTCPTestMessage 4004, (data) -> data.should.be.exactly 'An internal server error occurred' done() it "should persist messages", (done) -> server.start tcpHttpReceiverPort: 7787, -> sendTCPTestMessage 4000, (data) -> Transaction.find {}, (err, trx) -> trx.length.should.be.exactly 1 trx[0].channelID.toString().should.be.exactly channel1._id.toString() trx[0].request.body.should.be.exactly testMessage trx[0].response.body.should.be.exactly 'TCP OK' done() it "should route MLLP messages", (done) -> server.start tcpHttpReceiverPort: 7787, -> sendTCPTestMessage 4005, (data) -> data.should.be.exactly 'MLLP OK' + String.fromCharCode(0o034) + '\n' done()