revise & test SessionSv1.ProcessEvent for IPAuthorization

2026-02-11 10:06:24 +05:00 · 2026-01-15 10:22:36 -05:00
parent d9c2bd5045
commit a79bd15eab
2 changed files with 298 additions and 0 deletions
--- a/sessions/apis.go
+++ b/sessions/apis.go
@@ -920,6 +920,9 @@ func (sS *SessionS) BiRPCv1ProcessEvent(ctx *context.Context,
 			if authIP, err = sS.ipsAuthorize(ctx, cgrEv); err != nil {
 				return
 			}
 			if apiRply.IPsAllocation == nil {
 				apiRply.IPsAllocation = make(map[string]*utils.AllocatedIP)
 			}
 			apiRply.IPsAllocation[runID] = authIP
 		}
--- a/sessions/sessions_processeventips_it_test.go
+++ b/sessions/sessions_processeventips_it_test.go
@@ -0,0 +1,295 @@
 //go:build integration
 // +build integration
 /*
 Real-time Online/Offline Charging System (OCS) for Telecom & ISP environments
 Copyright (C) ITsysCOM GmbH
 This program is free software: you can redistribute it and/or modify
 it under the terms of the GNU Affero General Public License as published by
 the Free Software Foundation, either version 3 of the License, or
 (at your option) any later version.
 This program is distributed in the hope that it will be useful,
 but WITHOUT ANY WARRANTY; without even the implied warranty of
 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 GNU Affero General Public License for more details.
 You should have received a copy of the GNU Affero General Public License
 along with this program.  If not, see <https://www.gnu.org/licenses/>
 */
 package sessions
 import (
 	"testing"
 	"time"
 	"github.com/cgrates/cgrates/engine"
 	"github.com/cgrates/cgrates/utils"
 	"github.com/cgrates/birpc/context"
 )
 func TestSessionSv1ProcessEventIPsAuthorize(t *testing.T) {
 	var dbcfg engine.DBCfg
 	switch *utils.DBType {
 	case utils.MetaInternal:
 		dbcfg = engine.InternalDBCfg
 	case utils.MetaRedis:
 		dbcfg = engine.RedisDBCfg
 	case utils.MetaMySQL:
 		dbcfg = engine.MySQLDBCfg
 	case utils.MetaMongo:
 		dbcfg = engine.MongoDBCfg
 	case utils.MetaPostgres:
 		dbcfg = engine.PostgresDBCfg
 	default:
 		t.Fatal("unsupported dbtype value")
 	}
 	ng := engine.TestEngine{
 		ConfigJSON: `{
 "logger": {
 	"level": 7
 },
 "sessions": {
 	"enabled": true,
 	"ips_conns": ["*localhost"]
 },
 "ips": {
 	"enabled": true,
 	"store_interval": "-1",
 	"indexed_selects": true,
 	"string_indexed_fields": ["*req.Account"]
 },
 "admins": {
 	"enabled": true
 }
 }`,
 		TpFiles: map[string]string{
 			utils.IPsCsv: `#Tenant[0],ID[1],FilterIDs[2],Weights[3],TTL[4],Stored[5],PoolID[6],PoolFilterIDs[7],PoolType[8],PoolRange[9],PoolStrategy[10],PoolMessage[11],PoolWeights[12],PoolBlockers[13]
 cgrates.org,IPs1,*string:~*req.Account:1001,;10,1s,true,,,,,,,,
 cgrates.org,IPs1,,,,,POOL1,*string:~*req.Destination:2001,*ipv4,172.16.1.1/32,*ascending,alloc_success,;15,`,
 		},
 		DBCfg:    dbcfg,
 		Encoding: *utils.Encoding,
 		// LogBuffer: new(bytes.Buffer),
 	}
 	// t.Cleanup(func() {
 	// 	if ng.LogBuffer != nil {
 	// 		fmt.Println(ng.LogBuffer)
 	// 	}
 	// })
 	client, _ := ng.Run(t)
 	time.Sleep(100 * time.Millisecond)
 	t.Run("noFlags", func(t *testing.T) {
 		var rply V1ProcessEventReply
 		err := client.Call(context.Background(), utils.SessionSv1ProcessEvent,
 			&utils.CGREvent{
 				Tenant:  "cgrates.org",
 				ID:      "noFlags",
 				APIOpts: map[string]any{},
 				Event: map[string]any{
 					utils.AccountField: "1001",
 					utils.Destination:  "2001",
 					utils.SetupTime:    "2018-01-07T17:00:00Z",
 				},
 			}, &rply)
 		if err != nil {
 			t.Fatalf("ProcessEvent failed without IPs flags: %v", err)
 		}
 		if len(rply.IPsAllocation) > 0 {
 			t.Errorf("IPsAllocation should be empty without IPs flags, got: %v",
 				rply.IPsAllocation)
 		}
 	})
 	t.Run("noAuthMatchingProfile", func(t *testing.T) {
 		var reply V1ProcessEventReply
 		err := client.Call(context.Background(), utils.SessionSv1ProcessEvent,
 			&utils.CGREvent{
 				Tenant: "cgrates.org",
 				ID:     "NoAuthMatchingProfile",
 				APIOpts: map[string]any{
 					utils.MetaIPs: true,
 				},
 				Event: map[string]any{
 					utils.AccountField: "1001",
 					utils.Destination:  "2001",
 					utils.SetupTime:    "2018-01-07T17:00:00Z",
 				},
 			}, &reply)
 		if err != nil {
 			t.Fatalf("ProcessEvent failed: %v", err)
 		}
 		if len(reply.IPsAllocation) > 0 {
 			t.Errorf("IPsAllocation should be empty without authorization flags, got: %v",
 				reply.IPsAllocation)
 		}
 	})
 	t.Run("flagsIpsAuthorize", func(t *testing.T) {
 		var rply V1ProcessEventReply
 		err := client.Call(context.Background(), utils.SessionSv1ProcessEvent,
 			&utils.CGREvent{
 				Tenant: "cgrates.org",
 				ID:     "flagsIpsAuthorize",
 				APIOpts: map[string]any{
 					utils.MetaIPs:             true,
 					utils.MetaAuthorize:       true,
 					utils.OptsIPsAllocationID: "testallocid11",
 				},
 				Event: map[string]any{
 					utils.AccountField: "1001",
 					utils.Destination:  "2001",
 					utils.SetupTime:    "2018-01-07T17:00:00Z",
 				},
 			}, &rply)
 		if err != nil {
 			t.Fatalf("ProcessEvent failed with *ips + *authorize flags: %v", err)
 		}
 		if rply.IPsAllocation == nil {
 			t.Fatal("IPsAllocation should not be nil with *ips + *authorize flags")
 		}
 		authorizedIP, exists := rply.IPsAllocation[utils.MetaDefault]
 		if !exists {
 			t.Fatal("No IP authorization for *default runID with *ips + *authorize flags")
 		}
 		if authorizedIP.Address.String() != "172.16.1.1" {
 			t.Errorf("Authorized IP = %s, want 172.16.1.1", authorizedIP.Address.String())
 		}
 		if authorizedIP.ProfileID != "IPs1" {
 			t.Errorf("ProfileID = %s, want IPs1", authorizedIP.ProfileID)
 		}
 		if authorizedIP.PoolID != "POOL1" {
 			t.Errorf("PoolID = %s, want POOL1", authorizedIP.PoolID)
 		}
 	})
 	t.Run("ipsAuthorizeFlag", func(t *testing.T) {
 		var rply V1ProcessEventReply
 		err := client.Call(context.Background(), utils.SessionSv1ProcessEvent,
 			&utils.CGREvent{
 				Tenant: "cgrates.org",
 				ID:     "ipsAuthorizeFlag",
 				APIOpts: map[string]any{
 					utils.MetaIPsAuthorizeCfg: true,
 					utils.OptsIPsAllocationID: "testallocid101",
 				},
 				Event: map[string]any{
 					utils.AccountField: "1001",
 					utils.Destination:  "2001",
 					utils.SetupTime:    "2018-01-07T17:00:00Z",
 				},
 			}, &rply)
 		if err != nil {
 			t.Fatalf("ProcessEvent failed with *ipsAuthorize flag: %v", err)
 		}
 		if rply.IPsAllocation == nil {
 			t.Fatal("IPsAllocation should not be nil with *ipsAuthorize flag")
 		}
 		authorizedIP, exists := rply.IPsAllocation[utils.MetaDefault]
 		if !exists {
 			t.Fatal("No IP authorization for *default runID with *ipsAuthorize flag")
 		}
 		if authorizedIP.Address.String() != "172.16.1.1" {
 			t.Errorf("Authorized IP = %s, want 172.16.1.1", authorizedIP.Address.String())
 		}
 		if authorizedIP.ProfileID != "IPs1" {
 			t.Errorf("ProfileID = %s, want IPs1", authorizedIP.ProfileID)
 		}
 		if authorizedIP.PoolID != "POOL1" {
 			t.Errorf("PoolID = %s, want POOL1", authorizedIP.PoolID)
 		}
 	})
 	t.Run("AuthMatchPrf", func(t *testing.T) {
 		var rply V1ProcessEventReply
 		err := client.Call(context.Background(), utils.SessionSv1ProcessEvent,
 			&utils.CGREvent{
 				Tenant: "cgrates.org",
 				ID:     "AuthMatchPrf",
 				APIOpts: map[string]any{
 					utils.MetaIPsAuthorizeCfg: true,
 					utils.OptsIPsAllocationID: "testallocid21",
 				},
 				Event: map[string]any{
 					utils.AccountField: "1001",
 					utils.Destination:  "2001",
 					utils.SetupTime:    "2018-01-07T17:00:00Z",
 				},
 			}, &rply)
 		if err != nil {
 			t.Fatalf("ProcessEvent failed: %v", err)
 		}
 		if rply.IPsAllocation == nil {
 			t.Fatal("IPsAllocation should not be nil for matching profile")
 		}
 		authorizedIP, exists := rply.IPsAllocation[utils.MetaDefault]
 		if !exists {
 			t.Fatal("No IP authorization found for matching profile")
 		}
 		if authorizedIP.ProfileID != "IPs1" {
 			t.Errorf("ProfileID = %s, want IPs1", authorizedIP.ProfileID)
 		}
 		if authorizedIP.PoolID != "POOL1" {
 			t.Errorf("PoolID = %s, want POOL1", authorizedIP.PoolID)
 		}
 		if authorizedIP.Address.String() != "172.16.1.1" {
 			t.Errorf("Authorized IP = %s, want 172.16.1.1", authorizedIP.Address.String())
 		}
 		if authorizedIP.Message != "alloc_success" {
 			t.Errorf("Message = %s, want alloc_success", authorizedIP.Message)
 		}
 	})
 	t.Run("AuthNoMatchPrfl", func(t *testing.T) {
 		var rply V1ProcessEventReply
 		err := client.Call(context.Background(), utils.SessionSv1ProcessEvent,
 			&utils.CGREvent{
 				Tenant: "cgrates.org",
 				ID:     "AuthNoMatchPrfl",
 				APIOpts: map[string]any{
 					utils.MetaIPsAuthorizeCfg: true,
 					utils.OptsIPsAllocationID: "testallocid212",
 				},
 				Event: map[string]any{
 					utils.AccountField: "9999",
 					utils.Destination:  "9999",
 					utils.SetupTime:    "2018-01-07T17:00:00Z",
 				},
 			}, &rply)
 		if err != nil {
 			t.Fatalf("ProcessEvent failed: %v", err)
 		}
 		if len(rply.IPsAllocation) > 0 {
 			authorizedIP, exists := rply.IPsAllocation[utils.MetaDefault]
 			if exists && authorizedIP.Address.IsValid() {
 				t.Errorf("IPsAllocation should have no valid IP when no profile matches, got IP: %v",
 					authorizedIP.Address)
 			}
 		}
 	})
 }