feat(k8s-test): Try login and obtain API token

DefectDojo · Jul 2, 2024 · 42a7617 · 42a7617
1 parent 6fc4bae
commit 42a7617
Showing 1 changed file with 53 additions and 0 deletions.
diff --git a/.github/workflows/k8s-tests.yml b/.github/workflows/k8s-tests.yml
@@ -175,6 +175,35 @@ jobs:
                 break
                fi
              done
+             ADMIN_PASS=$(kubectl get secret/defectdojo -o json | jq -r '.data.DD_ADMIN_PASSWORD' | base64 -d)
+             echo "Simple Login check"
+             OUT=$(kubectl run  curl --quiet=true --image=curlimages/curl:7.73.0 \
+               --overrides='{ "apiVersion": "v1" }' \
+               --restart=Never -i --rm -- -s -m 20 -I --header "Host: $DD_HOSTNAME" http://`kubectl get service defectdojo-django -o json \
+               |  jq -r '.spec.clusterIP'`/login?next=/ --data-raw "username=admin&password=$ADMIN_PASS")
+             echo $OUT
+             CR=`echo $OUT | egrep "^HTTP" | cut -d' ' -f2`
+             echo $CR
+             if [[ $CR -ne 200 ]]; then
+              echo "ERROR: login is not possible; got HTTP code $CR"
+              exit 1
+             else
+              echo "Result received"
+             fi
+             echo "Simple API check"
+             OUT=$(kubectl run  curl --quiet=true --image=curlimages/curl:7.73.0 \
+               --overrides='{ "apiVersion": "v1" }' \
+               --restart=Never -i --rm -- -s -m 20 -I --header "Host: $DD_HOSTNAME" http://`kubectl get service defectdojo-django -o json \
+               |  jq -r '.spec.clusterIP'`/api/v2/api-token-auth/ --data-raw "username=admin&password=$ADMIN_PASS")
+             echo $OUT
+             CR=`echo $OUT | egrep "^HTTP" | cut -d' ' -f2`
+             echo $CR
+             if [[ $CR -ne 200 ]]; then
+              echo "ERROR: login is not possible; got HTTP code $CR"
+              exit 1
+             else
+              echo "Result received"
+             fi
              echo "Final Check of components"
              errors=`kubectl get pods | grep Error | awk '{print  $1}'`
              if [[ ! -z  $errors ]]; then
@@ -187,3 +216,27 @@ jobs:
              else
                echo "DD K8S successfully deployed"
              fi
+
+
+
+curl 'http://localhost:8080/login?next=/' \
+  -H 'Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8' \
+  -H 'Accept-Language: en-GB,en' \
+  -H 'Cache-Control: no-cache' \
+  -H 'Connection: keep-alive' \
+  -H 'Content-Type: application/x-www-form-urlencoded' \
+  -H 'Cookie: firefly_session=eyJpdiI6IlNrTjZoTThFQWwvVlgrQjN0ZUd1dVE9PSIsInZhbHVlIjoiZk55Mm85VTFhU0ZpZndjM3F0d3d1T3FNUWMxRmNVT0krS0JremsxTDBLdWJlbFNsdDhYdHhHeFBiaU5mZmNuSlNCRWsvaEVuUG45ZzVQTEwzQUkyMWtFR08vU0JRaU80aVJ4NWMrNFI5cVN4ZHRTTllZVFhEVU1VTlBDVHdVQXciLCJtYWMiOiI3OTY5M2M2YzliZDNlNDc2NDllMjUyMDliNzU0NjBlYWFmNzM5MjczYjg1MWNiYWZkOTIwZDNhM2JjYmFiYmRlIiwidGFnIjoiIn0%3D; connect.sid=s%3Aa6qlcBd8drYUT9T0OmLxWxtpYOzs9o6V.ZS5pTqajXzIUkpA07owtWtVngJ%2BZQP71gMglhPQgUI4; access_token=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; base_url=eyJpdiI6IkhmRWZaR250QTJIR1IzRTdaS2Z1dUE9PSIsInZhbHVlIjoiMTl6cnFoRTM4a09wSEdGMHQ5aFNVUnJuMllVc29vTEU5K0dxRDZaS1IrUGhuREdoWjlwT1R5bkUxMm9Id0wwM1NmY2Jkby8weHJrVUt3SlVJZHRuZEJSanNZdndjcmF1dWkwWStXd2VXSms9IiwibWFjIjoiZmE2OGEwNzQ0OWVlZjEyMTk4OWVhMjhmMWI3ZWU5YThjMmMzMTkyOTgxN2ZmNmI3NmMzN2U5NjRlZGE1NDZmYSIsInRhZyI6IiJ9; vanity_url=eyJpdiI6IlB1L3Vaa0tzTUlFV2dCY2hSMTVxYlE9PSIsInZhbHVlIjoiZ2ZzczFHN25Vck14enZkYlY5OGpPcWZIenJCcVhaVFFEY3NUL3NkeGE3NE5rMUxxZnV2c3R6Rk9aclJRbzR1UElBMWJQWEFqWGwzZm5pVXN1ckQzOWN5Y1ZGczFLcUFJWVZpU1djMkpaVk09IiwibWFjIjoiZGNiNmU2ZDcxYmMxM2RmZGQyNWI2NjlmYTUyMmUyMDJhODY5MmIwOTMzZDI3YzNiMGRkMmVhM2NkOWFjYTlhYiIsInRhZyI6IiJ9; refresh_token=eyJpdiI6IksxVGJMZ2VVVnMza0RRUFNvMzN5L2c9PSIsInZhbHVlIjoidmpNN2g2Nkg2ZlVQQnlRWG8wMUlPUGdNWVIyUG1pVjlzd1l2Uzg4anloRHplVmF5TXdhR09TUFZPNVNiM21ZTSIsIm1hYyI6ImY1NTExNjI1NWY2MGZkNzA4ZWQ0ZDFiZGVhNDFjYjRlYTI3YzAwYTg2N2NjODMwNWI1M2YyMDJiZGY1M2VkMzciLCJ0YWciOiIifQ%3D%3D; flow=eyJpdiI6IkN5OTdJYWI1REFrWThQQnFGTVA1L3c9PSIsInZhbHVlIjoibnNNbExHa2JoNXphWldESkJaQ2dnR1R3SS9TazY2R0tncmFlYkJ0OC9LYzc1Ym93OXRzcFFtTjkrUTZ4aGxMWCIsIm1hYyI6ImFhMzUwOTY2OGZhOWRhYjQ5YWEwYjNmYWMzOTU5OGVmYTE4NzkyZjNjNzJiN2RlZDMyYjcwOTAwYjUyMjViMWMiLCJ0YWciOiIifQ%3D%3D; csrftoken=HGbxIy9Yy0PMTPBXePHxsM6x6ZaWl832' \
+  -H 'Origin: http://localhost:8080' \
+  -H 'Pragma: no-cache' \
+  -H 'Referer: http://localhost:8080/login?next=/' \
+  -H 'Sec-Fetch-Dest: document' \
+  -H 'Sec-Fetch-Mode: navigate' \
+  -H 'Sec-Fetch-Site: same-origin' \
+  -H 'Sec-Fetch-User: ?1' \
+  -H 'Sec-GPC: 1' \
+  -H 'Upgrade-Insecure-Requests: 1' \
+  -H 'User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36' \
+  -H 'sec-ch-ua: "Not/A)Brand";v="8", "Chromium";v="126", "Brave";v="126"' \
+  -H 'sec-ch-ua-mobile: ?0' \
+  -H 'sec-ch-ua-platform: "macOS"' \
+  --data-raw 'csrfmiddlewaretoken=uMiPBTX9Ue7LmofKGBjWruu3seKEheQC1ijc9hWXi4Mn53GxKgQjJ6qqo3KqscJu&username=admin&password=admin'