mirror of
https://github.com/webrecorder/browsertrix-crawler.git
synced 2025-10-19 14:33:17 +00:00
8934feaf70
- Adds support for running a SOCKS5 proxy over an SSH connection. This can be configured by using `--proxyServer ssh://user@host[:port]` config and also passing an `--sshProxyPrivateKeyFile <private key file>` file param and an optional `--sshProxyKnownHostsFile <public host key file>`file param. The key files are expected to be mounted as volumes into the crawler. - Same arguments are also available for create-login-profile - The proxy config uses autossh to establish a more robust connection, and also waits until a connection can be established before proceeding. - Docs are updated to include a new 'Crawling with Proxies' page in the user guide - Tests are updated to include crawling through an SSH proxy running locally. --------- Co-authored-by: Vinzenz Sinapius <Vinzenz.Sinapius@gmail.com>
152 lines
5.4 KiB
JavaScript
152 lines
5.4 KiB
JavaScript
import { execSync, exec } from "child_process";
|
|
|
|
const sleep = (ms) => new Promise((res) => setTimeout(res, ms));
|
|
|
|
const PROXY_IMAGE = "tarampampam/3proxy:1.9.1";
|
|
const SOCKS_PORT = "1080";
|
|
const HTTP_PORT = "3128";
|
|
const WRONG_PORT = "33130";
|
|
|
|
const SSH_PROXY_IMAGE = "linuxserver/openssh-server"
|
|
|
|
const PDF = "https://specs.webrecorder.net/wacz/1.1.1/wacz-2021.pdf";
|
|
const HTML = "https://webrecorder.net/";
|
|
|
|
const extraArgs = "--limit 1 --failOnFailedSeed --timeout 10 --logging debug";
|
|
|
|
let proxyAuthId;
|
|
let proxyNoAuthId;
|
|
let proxySSHId;
|
|
|
|
beforeAll(() => {
|
|
execSync("docker network create proxy-test-net");
|
|
|
|
proxyAuthId = execSync(`docker run -e PROXY_LOGIN=user -e PROXY_PASSWORD=passw0rd -d --rm --network=proxy-test-net --name proxy-with-auth ${PROXY_IMAGE}`, {encoding: "utf-8"});
|
|
|
|
proxyNoAuthId = execSync(`docker run -d --rm --network=proxy-test-net --name proxy-no-auth ${PROXY_IMAGE}`, {encoding: "utf-8"});
|
|
|
|
proxySSHId = execSync(`docker run -d --rm -e DOCKER_MODS=linuxserver/mods:openssh-server-ssh-tunnel -e USER_NAME=user -e PUBLIC_KEY_FILE=/keys/proxy-key.pub -v $PWD/tests/fixtures/proxy-key.pub:/keys/proxy-key.pub --network=proxy-test-net --name ssh-proxy ${SSH_PROXY_IMAGE}`);
|
|
});
|
|
|
|
afterAll(async () => {
|
|
execSync(`docker kill -s SIGINT ${proxyAuthId}`);
|
|
execSync(`docker kill -s SIGINT ${proxyNoAuthId}`);
|
|
execSync(`docker kill -s SIGINT ${proxySSHId}`);
|
|
await sleep(5000);
|
|
execSync("docker network rm proxy-test-net");
|
|
});
|
|
|
|
describe("socks5 + https proxy tests", () => {
|
|
for (const scheme of ["socks5", "http"]) {
|
|
const port = scheme === "socks5" ? SOCKS_PORT : HTTP_PORT;
|
|
|
|
for (const type of ["HTML page", "PDF"]) {
|
|
|
|
const url = type === "PDF" ? PDF : HTML;
|
|
|
|
test(`${scheme} proxy, ${type}, no auth`, () => {
|
|
let status = 0;
|
|
|
|
try {
|
|
execSync(`docker run -e PROXY_SERVER=${scheme}://proxy-no-auth:${port} --rm --network=proxy-test-net webrecorder/browsertrix-crawler crawl --url ${url} ${extraArgs}`, {encoding: "utf-8"});
|
|
} catch (e) {
|
|
status = e.status;
|
|
}
|
|
expect(status).toBe(0);
|
|
});
|
|
|
|
test(`${scheme} proxy, ${type}, with auth`, () => {
|
|
let status = 0;
|
|
|
|
try {
|
|
execSync(`docker run -e PROXY_SERVER=${scheme}://user:passw0rd@proxy-with-auth:${port} --rm --network=proxy-test-net webrecorder/browsertrix-crawler crawl --url ${url} ${extraArgs}`, {encoding: "utf-8"});
|
|
} catch (e) {
|
|
status = e.status;
|
|
}
|
|
// auth supported only for SOCKS5
|
|
expect(status).toBe(scheme === "socks5" ? 0 : 1);
|
|
});
|
|
|
|
test(`${scheme} proxy, ${type}, wrong auth`, () => {
|
|
let status = 0;
|
|
|
|
try {
|
|
execSync(`docker run -e PROXY_SERVER=${scheme}://user:passw1rd@proxy-with-auth:${port} --rm --network=proxy-test-net webrecorder/browsertrix-crawler crawl --url ${url} ${extraArgs}`, {encoding: "utf-8"});
|
|
} catch (e) {
|
|
status = e.status;
|
|
}
|
|
expect(status).toBe(1);
|
|
});
|
|
|
|
test(`${scheme} proxy, ${type}, wrong protocol`, () => {
|
|
let status = 0;
|
|
|
|
try {
|
|
execSync(`docker run -e PROXY_SERVER=${scheme}://user:passw1rd@proxy-with-auth:${scheme === "socks5" ? HTTP_PORT : SOCKS_PORT} --rm --network=proxy-test-net webrecorder/browsertrix-crawler crawl --url ${url} ${extraArgs}`, {encoding: "utf-8"});
|
|
} catch (e) {
|
|
status = e.status;
|
|
}
|
|
expect(status).toBe(1);
|
|
});
|
|
}
|
|
|
|
test(`${scheme} proxy, proxy missing error`, () => {
|
|
let status = 0;
|
|
|
|
try {
|
|
execSync(`docker run -e PROXY_SERVER=${scheme}://proxy-no-auth:${WRONG_PORT} --rm --network=proxy-test-net webrecorder/browsertrix-crawler crawl --url ${HTML} ${extraArgs}`, {encoding: "utf-8"});
|
|
} catch (e) {
|
|
status = e.status;
|
|
}
|
|
expect(status).toBe(1);
|
|
});
|
|
}
|
|
});
|
|
|
|
|
|
test("http proxy, PDF, separate env vars", () => {
|
|
execSync(`docker run -e PROXY_HOST=proxy-no-auth -e PROXY_PORT=${HTTP_PORT} --rm --network=proxy-test-net webrecorder/browsertrix-crawler crawl --url ${PDF} ${extraArgs}`, {encoding: "utf-8"});
|
|
});
|
|
|
|
test("http proxy set, but not running, separate env vars", () => {
|
|
let status = 0;
|
|
|
|
try {
|
|
execSync(`docker run -e PROXY_HOST=proxy-no-auth -e PROXY_PORT=${WRONG_PORT} --rm --network=proxy-test-net webrecorder/browsertrix-crawler crawl --url ${PDF} ${extraArgs}`, {encoding: "utf-8"});
|
|
} catch (e) {
|
|
status = e.status;
|
|
}
|
|
expect(status).toBe(1);
|
|
});
|
|
|
|
test("http proxy set, but not running, cli arg", () => {
|
|
let status = 0;
|
|
|
|
try {
|
|
execSync(`docker run --rm --network=proxy-test-net webrecorder/browsertrix-crawler crawl --proxyServer http://proxy-no-auth:${WRONG_PORT} --url ${PDF} ${extraArgs}`, {encoding: "utf-8"});
|
|
} catch (e) {
|
|
status = e.status;
|
|
}
|
|
expect(status).toBe(1);
|
|
});
|
|
|
|
|
|
test("ssh socks proxy with custom user", () => {
|
|
execSync(`docker run --rm --network=proxy-test-net -v $PWD/tests/fixtures/proxy-key:/keys/proxy-key webrecorder/browsertrix-crawler crawl --proxyServer ssh://user@ssh-proxy:2222 --sshProxyPrivateKeyFile /keys/proxy-key --url ${HTML} ${extraArgs}`, {encoding: "utf-8"});
|
|
});
|
|
|
|
|
|
test("ssh socks proxy, wrong user", () => {
|
|
let status = 0;
|
|
|
|
try {
|
|
execSync(`docker run --rm --network=proxy-test-net webrecorder/browsertrix-crawler crawl --proxyServer ssh://ssh-proxy:2222 --url ${HTML} ${extraArgs}`, {encoding: "utf-8"});
|
|
} catch (e) {
|
|
status = e.status;
|
|
}
|
|
expect(status).toBe(21);
|
|
});
|
|
|
|
|
|
|
|
|