Forum Discussion

ArunS's avatar
ArunS
Occasional Contributor
5 years ago

Read aws secrets from ReadyAPI

Did anybody tried to read aws secrets from ReayAPI groovy code,   We have built java code to read secrets but the same not working from ReadyAPI groovy script   1. copied respective aws-java-sdk ...
  • sprice090161's avatar
    sprice090161
    5 years ago

    I Think this is what you are looking for. You'll need an http test step to follow the groovy script to actually log into AWS and retrieve secret, accesskey and token info then another groovy script to simply pick up these values and store them for use with you aws user you'll need to define in the authorization manager, and of course you'll need to use that profile on all subsequent test steps making calls to the cloud.....BTW don't be surprised if your requests fail due to a bad signature being generated by readyApi, I've had tickets in for a long time :-). You can write your own code to generate a signature if you want to give that a try Let me know how this works out.

     

    Groovy Script 1

    // Import Required libraries
    import java.util.concurrent.TimeUnit
    import org.openqa.selenium.By
    import org.openqa.selenium.WebDriver
    import org.openqa.selenium.WebElement
    import org.openqa.selenium.firefox.FirefoxBinary
    import org.openqa.selenium.firefox.FirefoxDriver
    import org.openqa.selenium.firefox.FirefoxDriverLogLevel
    import org.openqa.selenium.firefox.FirefoxOptions
    import org.openqa.selenium.support.ui.ExpectedConditions
    import org.openqa.selenium.support.ui.WebDriverWait


    // Define geckodriver path

    System.setProperty("webdriver.gecko.driver","C:\\SoapUI\\Drivers\\geckodriver.exe")


    // Define closures

    def query_string_to_map = {
    it.tokenize('&').collectEntries {
    it.split('=', 2).collect { URLDecoder.decode(it, 'UTF-8') }
    }
    }

    def map_to_query_string = {
    it.collect { k, v -> "$k=${URLEncoder.encode(v.toString())}" }.join('&')
    }

    // Define vars

    def username = context.expand( '${#Project#contactNameQaone}' ) // qaone@newforming.com
    def password = context.expand( '${#Project#password}' ) // $56&pass
    def clientId = context.expand( '${#Project#clientId}' )
    def redirectUri = context.expand( '${#Project#redirectUri}' )
    def signInTitle = context.expand( '${#Project#signInTitle}' )
    def passwordInputId = context.expand( '${#Project#passwordInputId}' )
    def submitButtonId = context.expand( '${#Project#submitButtonId}' )
    def staySignedInButtonId = context.expand( '${#Project#staySignedInButtonId}' )
    def authorizeUrl = context.expand( '${#Project#authorizeUrl}' )

    // Builds the authorizeUrl if not yet defined

    if (!authorizeUrl) {
    String url = 'login.microsoftonline.com'
    String path = 'common/oauth2/authorize'

    def params = [
    tenant : 'common',
    nonce : 'nonce01234',
    response_mode: 'query',
    redirect_uri : redirectUri,
    response_type: 'id_token code',
    access_type : 'offline',
    client_id : clientId
    ]

    String query_string = map_to_query_string(params)
    authorizeUrl = "https://${url}/${path}?${query_string}"
    }

    authorizeUrl += "&login_hint=${username}"
    log.info('Getting authentication token')
    log.info 'Authorize URL: ' + authorizeUrl

    FirefoxBinary firefoxBinary = new FirefoxBinary()
    //firefoxBinary.addCommandLineOptions("--headless")

    FirefoxOptions firefoxOptions = new FirefoxOptions()
    firefoxOptions.setLogLevel(FirefoxDriverLogLevel.INFO)
    firefoxOptions.setBinary(firefoxBinary)

    FirefoxDriver driver = new FirefoxDriver(firefoxOptions)
    //driver.manage().timeouts().implicitlyWait(10, TimeUnit.SECONDS);
    driver.get(authorizeUrl)

    WebDriverWait wait = new WebDriverWait(driver, 30)
    wait.until(ExpectedConditions.titleIs(signInTitle))

    WebElement passwordInput = driver.findElement(By.id(passwordInputId))
    passwordInput.sendKeys(password)

    WebElement submitButton = driver.findElement(By.id(submitButtonId))

    submitButton.click()
    sleep (2000)

    if (driver.findElements(By.id(staySignedInButtonId)).size() > 0) {
    log.debug('Clicking "Yes" on "Stay Signed in?" prompt')
    driver.findElement(By.id(staySignedInButtonId)).click()
    }
    //
    String redirect_url = driver.getCurrentUrl()
    log.info 'Redirect URL: ' + redirect_url

    driver.quit()

    def query_map = query_string_to_map(new URL(redirect_url.replace('#', '?')).query)

    String id_token = query_map.id_token
    String code = query_map.code

    log.info 'idToken: ' + id_token
    log.info 'code: ' + code

    testRunner.testCase.setPropertyValue( "idToken", id_token )
    testRunner.testCase.setPropertyValue( "code", code )

     

     

    Groovy Script 2

    /// Import AWS credentials from HTTP POST
    import java.lang.*;
    import java.security.*;
    import javax.crypto.*;
    import javax.crypto.spec.SecretKeySpec;

     

    def accessKeyId = context.expand( '${HTTP Retrieve AWS Credentials#Response#$[\'accessKeyId\']}' )
    def secretAccessKeyId = context.expand( '${HTTP Retrieve AWS Credentials#Response#$[\'secretAccessKey\']}' )
    def sessionToken = context.expand( '${HTTP Retrieve AWS Credentials#Response#$[\'sessionToken\']}' )
    def signatureScope = context.expand( '${HTTP Retrieve AWS Credentials#Response#$[\'signatureScope\']}' )
    def expiration = context.expand( '${HTTP Retrieve AWS Credentials#Response#$[\'expiration\']}' )
    def serviceName = context.expand( '${#TestCase#serviceName}' )


    testRunner.testCase.setPropertyValue( "accessKeyId", accessKeyId )
    testRunner.testCase.setPropertyValue( "secretAccessKeyId", secretAccessKeyId )
    testRunner.testCase.setPropertyValue( "sessionToken", sessionToken )
    testRunner.testCase.setPropertyValue( "signatureScope", signatureScope )
    testRunner.testCase.setPropertyValue( "serviceName", serviceName )

nmrao's avatar
nmrao
Champion Level 3
In which directory of installation the files are copied? Is the tool Restarted after copying the files?
And the list of files?
What groovy script did you try?
sonya_m's avatar
sonya_m
SmartBear Alumni (Retired)
5 years ago

Thank you Rao!

 

Hi ArunS , the Community needs more information from you to be able to try and provide a solution. Thank you.

  • sprice090161's avatar
    sprice090161
    Contributor
    5 years ago

    I Think this is what you are looking for. You'll need an http test step to follow the groovy script to actually log into AWS and retrieve secret, accesskey and token info then another groovy script to simply pick up these values and store them for use with you aws user you'll need to define in the authorization manager, and of course you'll need to use that profile on all subsequent test steps making calls to the cloud.....BTW don't be surprised if your requests fail due to a bad signature being generated by readyApi, I've had tickets in for a long time :-). You can write your own code to generate a signature if you want to give that a try Let me know how this works out.

     

    Groovy Script 1

    // Import Required libraries
    import java.util.concurrent.TimeUnit
    import org.openqa.selenium.By
    import org.openqa.selenium.WebDriver
    import org.openqa.selenium.WebElement
    import org.openqa.selenium.firefox.FirefoxBinary
    import org.openqa.selenium.firefox.FirefoxDriver
    import org.openqa.selenium.firefox.FirefoxDriverLogLevel
    import org.openqa.selenium.firefox.FirefoxOptions
    import org.openqa.selenium.support.ui.ExpectedConditions
    import org.openqa.selenium.support.ui.WebDriverWait


    // Define geckodriver path

    System.setProperty("webdriver.gecko.driver","C:\\SoapUI\\Drivers\\geckodriver.exe")


    // Define closures

    def query_string_to_map = {
    it.tokenize('&').collectEntries {
    it.split('=', 2).collect { URLDecoder.decode(it, 'UTF-8') }
    }
    }

    def map_to_query_string = {
    it.collect { k, v -> "$k=${URLEncoder.encode(v.toString())}" }.join('&')
    }

    // Define vars

    def username = context.expand( '${#Project#contactNameQaone}' ) // qaone@newforming.com
    def password = context.expand( '${#Project#password}' ) // $56&pass
    def clientId = context.expand( '${#Project#clientId}' )
    def redirectUri = context.expand( '${#Project#redirectUri}' )
    def signInTitle = context.expand( '${#Project#signInTitle}' )
    def passwordInputId = context.expand( '${#Project#passwordInputId}' )
    def submitButtonId = context.expand( '${#Project#submitButtonId}' )
    def staySignedInButtonId = context.expand( '${#Project#staySignedInButtonId}' )
    def authorizeUrl = context.expand( '${#Project#authorizeUrl}' )

    // Builds the authorizeUrl if not yet defined

    if (!authorizeUrl) {
    String url = 'login.microsoftonline.com'
    String path = 'common/oauth2/authorize'

    def params = [
    tenant : 'common',
    nonce : 'nonce01234',
    response_mode: 'query',
    redirect_uri : redirectUri,
    response_type: 'id_token code',
    access_type : 'offline',
    client_id : clientId
    ]

    String query_string = map_to_query_string(params)
    authorizeUrl = "https://${url}/${path}?${query_string}"
    }

    authorizeUrl += "&login_hint=${username}"
    log.info('Getting authentication token')
    log.info 'Authorize URL: ' + authorizeUrl

    FirefoxBinary firefoxBinary = new FirefoxBinary()
    //firefoxBinary.addCommandLineOptions("--headless")

    FirefoxOptions firefoxOptions = new FirefoxOptions()
    firefoxOptions.setLogLevel(FirefoxDriverLogLevel.INFO)
    firefoxOptions.setBinary(firefoxBinary)

    FirefoxDriver driver = new FirefoxDriver(firefoxOptions)
    //driver.manage().timeouts().implicitlyWait(10, TimeUnit.SECONDS);
    driver.get(authorizeUrl)

    WebDriverWait wait = new WebDriverWait(driver, 30)
    wait.until(ExpectedConditions.titleIs(signInTitle))

    WebElement passwordInput = driver.findElement(By.id(passwordInputId))
    passwordInput.sendKeys(password)

    WebElement submitButton = driver.findElement(By.id(submitButtonId))

    submitButton.click()
    sleep (2000)

    if (driver.findElements(By.id(staySignedInButtonId)).size() > 0) {
    log.debug('Clicking "Yes" on "Stay Signed in?" prompt')
    driver.findElement(By.id(staySignedInButtonId)).click()
    }
    //
    String redirect_url = driver.getCurrentUrl()
    log.info 'Redirect URL: ' + redirect_url

    driver.quit()

    def query_map = query_string_to_map(new URL(redirect_url.replace('#', '?')).query)

    String id_token = query_map.id_token
    String code = query_map.code

    log.info 'idToken: ' + id_token
    log.info 'code: ' + code

    testRunner.testCase.setPropertyValue( "idToken", id_token )
    testRunner.testCase.setPropertyValue( "code", code )

     

     

    Groovy Script 2

    /// Import AWS credentials from HTTP POST
    import java.lang.*;
    import java.security.*;
    import javax.crypto.*;
    import javax.crypto.spec.SecretKeySpec;

     

    def accessKeyId = context.expand( '${HTTP Retrieve AWS Credentials#Response#$[\'accessKeyId\']}' )
    def secretAccessKeyId = context.expand( '${HTTP Retrieve AWS Credentials#Response#$[\'secretAccessKey\']}' )
    def sessionToken = context.expand( '${HTTP Retrieve AWS Credentials#Response#$[\'sessionToken\']}' )
    def signatureScope = context.expand( '${HTTP Retrieve AWS Credentials#Response#$[\'signatureScope\']}' )
    def expiration = context.expand( '${HTTP Retrieve AWS Credentials#Response#$[\'expiration\']}' )
    def serviceName = context.expand( '${#TestCase#serviceName}' )


    testRunner.testCase.setPropertyValue( "accessKeyId", accessKeyId )
    testRunner.testCase.setPropertyValue( "secretAccessKeyId", secretAccessKeyId )
    testRunner.testCase.setPropertyValue( "sessionToken", sessionToken )
    testRunner.testCase.setPropertyValue( "signatureScope", signatureScope )
    testRunner.testCase.setPropertyValue( "serviceName", serviceName )

    • sonya_m's avatar
      sonya_m
      SmartBear Alumni (Retired)
      5 years ago

      Thank you sprice090161 !

       

      ArunS Is this still an ongoing issue for you? Please let us know if this suggestion works.