works locally

Author: molly-moen

javabuilder-authorizer/jwt_helper.rb

@@ -1,19 +1,33 @@
 module JwtHelper
+  IS_LOAD_TEST = false
+  LOAD_TEST_KEY = "placeholder"
   # Verify the token with the appropriate public key (dependant on the
   # environment the request came from), and checks the token has not
   # expired and its issue time is not in the future.
   def decode_token(token, origin)
     return false unless token
     begin
-      return JWT.decode(
-        token,
-        # Temporarily choose the key based on the client origin rather than the
-        # resource until we have environment-specific Javabuilders set up.
-        get_public_key(origin),
-        true,
-        verify_iat: true, # verify issued at time is valid
-        algorithm: 'RS256'
-      )
+      if IS_LOAD_TEST
+        puts "in load test"
+        # load tests use a simpler authentication scheme  
+        return JWT.decode(
+          token,
+          LOAD_TEST_KEY,
+          true,
+          verify_iat: true, # verify issued at time is valid
+          algorithm: 'HS256'
+        )
+      else
+        return JWT.decode(
+          token,
+          # Temporarily choose the key based on the client origin rather than the
+          # resource until we have environment-specific Javabuilders set up.
+          get_public_key(origin),
+          true,
+          verify_iat: true, # verify issued at time is valid
+          algorithm: 'RS256'
+        )
+      end
     rescue JWT::ExpiredSignature, JWT::InvalidIatError
       return false
     end

load-test/Dockerfile

@@ -4,4 +4,4 @@ COPY ./scripts /scripts
 WORKDIR /scripts
 # Override the entry point of the base k6 image
 ENTRYPOINT []
-CMD ["sh", "-c", "k6 run $SCRIPT --include-system-env-vars"]
+CMD ["sh", "-c", "k6 run $SCRIPT"]

load-test/scripts/configuration.js

@@ -1,21 +1,21 @@
 export const basicTestOptions = {
   scenarios: {
     // ramp up to 5 VUs over 30 seconds
-    rampUp: {
-      executor: "ramping-vus",
-      startVUs: 0,
-      stages: [
-        {duration: '30s', target: 5}
-      ]
-    },
+    // rampUp: {
+    //   executor: "ramping-vus",
+    //   startVUs: 0,
+    //   stages: [
+    //     {duration: '30s', target: 5}
+    //   ]
+    // },
     // have 5 VUs do 3 iterations each, up to a max of 2 minutes. Start this after
     // the ramp up time.
     highLoad: {
       executor: "per-vu-iterations",
-      vus: 5,
-      iterations: 3,
+      vus: 1,
+      iterations: 1,
       maxDuration: "2m",
-      startTime: '30s',
+      //startTime: '30s',
     }
   },
   thresholds: {
@@ -31,8 +31,7 @@ export const basicTestOptions = {
 // TODO: Update to a load testing instance of Javabuilder
 export const uploadUrl = `https://javabuilder-molly-http.dev-code.org/seedsources/sources.json?Authorization=`;
 export const url = `wss://javabuilder-molly.dev-code.org?Authorization=`;
-// TODO: update to 'load-test' once we have load test auth set up
-const origin = "http://localhost-studio.code.org:3000";
+const origin = "load-test";
 
 export const websocketParams = {
   headers: {
@@ -48,8 +47,7 @@ export const uploadParams = {
 };
 
 // These will be used for generating the JWT token
-export const PRIVATE_KEY = __ENV.PRIVATE_KEY;
-export const PRIVATE_KEY_PASSWORD = __ENV.PRIVATE_KEY_PASSWORD;
+export const PRIVATE_KEY = null;
 
 // Thresholds for metrics
 export const LONG_REQUEST_MS = 5000;

load-test/scripts/generateToken.js

@@ -1,29 +1,46 @@
 import crypto from "k6/crypto";
 import encoding from "k6/encoding";
+import {
+  uuidv4,
+} from 'https://jslib.k6.io/k6-utils/1.1.0/index.js';
+import { PRIVATE_KEY } from "./configuration.js";
 
 const algToHash = {
     HS256: "sha256",
     HS384: "sha384",
     HS512: "sha512"
 };
 
-export default function generateToken() {
-  
+export default function generateToken(miniAppType) {
+  const issuedAtTime = (Date.now() / 1000) - 3;
+  const expirationTime = issuedAtTime + 600;
+  const payload = {
+    iat: issuedAtTime,
+    iss: "load-test-dev",
+    exp: expirationTime,
+    uid: uuidv4(),
+    level_id: "none",
+    execution_type: "RUN",
+    mini_app_type: miniAppType,
+    verified_teachers: uuidv4(),
+    options: "{}",
+    sid: uuidv4()
+  };
+  let token = encode(payload);
+  console.log("token: " + token);
+  return token;
 }
 
-function sign(data, hashAlg, secret) {
-    let hasher = crypto.createHMAC(hashAlg, secret);
-    hasher.update(data);
-
-    // Some manual base64 rawurl encoding as `Hasher.digest(encodingType)`
-    // doesn't support that encoding type yet.
-    return hasher.digest("base64").replace(/\//g, "_").replace(/\+/g, "-").replace(/=/g, "");
+function sign(data) {
+    let hash = crypto.hmac('sha256', PRIVATE_KEY, data, 'base64rawurl');
+    return hash;
 }
 
-function encode(payload, secret, algorithm) {
-    algorithm = algorithm || "HS256";
+function encode(payload) {
+    let algorithm = "HS256";
     let header = encoding.b64encode(JSON.stringify({ typ: "JWT", alg: algorithm }), "rawurl");
-    payload = encoding.b64encode(JSON.stringify(payload), "rawurl");
-    let sig = sign(header + "." + payload, algToHash[algorithm], secret);
-    return [header, payload, sig].join(".");
+    let payloadEncoded = encoding.b64encode(JSON.stringify(payload), "rawurl");
+    let contentToEncode = header + "." + payloadEncoded;
+    let sig = sign(contentToEncode, algToHash[algorithm]);
+    return [header, payloadEncoded, sig].join(".");
 }

load-test/scripts/hello-world-load-test.js

@@ -12,6 +12,7 @@ import {
   LONG_REQUEST_MS,
   EXTRA_LONG_REQUEST_MS
 } from "./configuration.js";
+import generateToken from "./generateToken.js";
 
 export const options = basicTestOptions;
 
@@ -27,7 +28,8 @@ const longWebsocketSessions = new Counter("long_websocket_sessions");
 const extraLongWebsocketSessions = new Counter("extra_long_websocket_sessions");
 
 export default function () {
-  const authToken = "placeholder";
+  const authToken = generateToken("console");
+  console.log(authToken);
   const uploadResult = http.put(
     uploadUrl + authToken,
     helloWorld,