test(end-to-end): Add end-to-end test for TLS auth

Author: julienloizelet

.github/workflows/test-suite.yml

@@ -220,4 +220,27 @@ jobs:
           sed -i  's/\x27stream_mode\x27 => true/\x27stream_mode\x27 => false/g' scripts/auto-prepend/settings.php
           cat scripts/auto-prepend/settings.php
           cd ${{ github.workspace }}/${{env.EXTENSION_PATH}}/tests/end-to-end/__scripts__
-          ./run-tests.sh ci "./__tests__/1-live-mode.js"
+          ./run-tests.sh ci "./__tests__/1-live-mode.js"
+
+      - name: Run "live mode with TLS auth" test
+        run: |
+          cd ${{ github.workspace }}/${{env.EXTENSION_PATH}}
+          sed -i  's/\x27auth_type\x27 => \x27api_key\x27/\x27auth_type\x27 => \x27tls\x27/g' scripts/auto-prepend/settings.php
+          sed -i  's/\x27api_key\x27 => \x27${{env.BOUNCER_KEY}}\x27/\x27api_key\x27 => \x27\x27/g' scripts/auto-prepend/settings.php
+          sed -i  's/\x27tls_cert_path\x27 => \x27\x27/\x27tls_cert_path\x27 => \x27\/var\/www\/html\/cfssl\/bouncer.pem\x27/g' scripts/auto-prepend/settings.php
+          sed -i  's/\x27tls_key_path\x27 => \x27\x27/\x27tls_key_path\x27 => \x27\/var\/www\/html\/cfssl\/bouncer-key.pem\x27/g' scripts/auto-prepend/settings.php
+          sed -i  's/\x27tls_ca_cert_path\x27 => \x27\x27/\x27tls_ca_cert_path\x27 => \x27\/var\/www\/html\/cfssl\/ca-chain.pem\x27/g' scripts/auto-prepend/settings.php
+          cat scripts/auto-prepend/settings.php
+          cd ${{ github.workspace }}/${{env.EXTENSION_PATH}}/tests/end-to-end/__scripts__
+          ./run-tests.sh ci "./__tests__/1-live-mode.js"
+          
+
+      - name: Run "stream mode with TLS auth and cURL" test
+        run: |
+          cd ${{ github.workspace }}/${{env.EXTENSION_PATH}}
+          sed -i  's/\x27stream_mode\x27 => false/\x27stream_mode\x27 => true/g' scripts/auto-prepend/settings.php
+          sed -i  's/\x27forced_test_forwarded_ip\x27 => \x27${{env.IPV6_TEST_IP}}\x27/\x27forced_test_forwarded_ip\x27 => \x27\x27/g' scripts/auto-prepend/settings.php
+          sed -i  's/\x27use_curl\x27 => false/\x27use_curl\x27 => true/g' scripts/auto-prepend/settings.php
+          cat scripts/auto-prepend/settings.php
+          cd ${{ github.workspace }}/${{env.EXTENSION_PATH}}/tests/end-to-end/__scripts__
+          ./run-tests.sh ci "./__tests__/3-stream-mode.js"

tests/end-to-end/settings/base.php.dist

@@ -4,11 +4,16 @@ use CrowdSecBouncer\Constants;
 
 $crowdSecStandaloneBouncerConfig = [
     // LAPI Connection
+    'auth_type' => 'api_key',
     'api_url' => 'https://crowdsec:8080',
     'api_key' => 'REPLACE_API_KEY',
     'api_timeout'=> 1,
     'api_user_agent'=> 'CrowdSec PHP Library/test',
     'use_curl' => false,
+    'tls_cert_path' => '',
+    'tls_key_path' => '',
+    'tls_verify_peer' => true,
+    'tls_ca_cert_path' => '',
     // Debug/Test
     'debug_mode' => true,
     'display_errors' => true,