asp.net-mvc - 如何以特定域用户身份运行 Internet Explorer Selenium 测试?

标签 asp.net-mvc selenium selenium-webdriver windows-authentication specflow

我有一个使用 Windows 身份验证来控制访问的 ASP.NET MVC 网站。我想要一个 specflow selenium 测试,通过尝试以非授权用户身份访问该站点来检查配置是否正确。

由于我们使用域帐户来控制访问,因此没有用户名/密码登录屏幕。当前用户的凭据由浏览器自动传递给站点。

因此,对于我的 Selenium 测试,我需要能够以特定用户身份运行 Internet Explorer。

我找到了许多关于 Windows 模拟的文章,我可以在测试运行期间切换到我的测试用户(使用来自 http://support.microsoft.com/kb/306158 的代码)。但是,如果我随后创建 InternetExplorerDriver,它将使用我的凭据而不是测试用户的凭据启动 Internet Explorer(尽管此问题和答案表明它应该可以工作 https://sqa.stackexchange.com/questions/2277/using-selenium-webdriver-with-windows-authentication )。

我也可以作为我的测试用户显式启动 Internet Explorer 进程,但是我看不到将 InternetExplorerDriver 绑定(bind)到已经运行的 Internet Explorer 进程的方法,因此这可能是死路一条。

我的代码,基本上取自上面的 MSDN 页面,如下所示。在调试器中,我可以看到 WindowsIdentity.GetCurrent().Name 在测试的所有步骤中都是“testUser”。

namespace MyProject.Specs
{
using NUnit.Framework;
using OpenQA.Selenium;
using OpenQA.Selenium.IE;
using System;
using System.Runtime.InteropServices;
using System.Security.Principal;
using TechTalk.SpecFlow;

[Binding]
public class AuthorisationSteps
{
    public const int LOGON32_LOGON_INTERACTIVE = 2;
    public const int LOGON32_PROVIDER_DEFAULT = 0;
    private static WindowsImpersonationContext impersonationContext;
    private static IWebDriver driver;

    [BeforeScenario]
    public static void impersonateUser()
    {
        if (!impersonateValidUser("testUser", "testDomain", "password"))
        {
            throw new Exception();
        }
        driver = new InternetExplorerDriver();
    }

    [AfterScenario]
    public static void cleanupUser()
    {
        undoImpersonation();
        driver.Quit();
    }

    [Given(@"I am an unauthorised user")]
    public void GivenIAmAnUnauthorisedUser()
    {
        var temp = WindowsIdentity.GetCurrent().Name;
    }

    [When(@"I go to the home page")]
    public void WhenIGoToTheHomePage()
    {
        var temp = WindowsIdentity.GetCurrent().Name;
        driver.Navigate().GoToUrl(BaseUrl);
    }

    [Then(@"I should see an error page")]
    public void ThenIShouldSeeAnErrorPage()
    {
        var temp = WindowsIdentity.GetCurrent().Name;
        Assert.That(driver.Title.Contains("Error"));
    }

    [DllImport("advapi32.dll")]
    public static extern int LogonUserA(String lpszUserName,
                                        String lpszDomain,
                                        String lpszPassword,
                                        int dwLogonType,
                                        int dwLogonProvider,
                                        ref IntPtr phToken);

    [DllImport("advapi32.dll", CharSet = CharSet.Auto, SetLastError = true)]
    public static extern int DuplicateToken(IntPtr hToken,
                                            int impersonationLevel,
                                            ref IntPtr hNewToken);

    [DllImport("advapi32.dll", CharSet = CharSet.Auto, SetLastError = true)]
    public static extern bool RevertToSelf();

    [DllImport("kernel32.dll", CharSet = CharSet.Auto)]
    public static extern bool CloseHandle(IntPtr handle);

    private static bool impersonateValidUser(String userName, String domain, String password)
    {
        WindowsIdentity tempWindowsIdentity;
        var token = IntPtr.Zero;
        var tokenDuplicate = IntPtr.Zero;

        if (RevertToSelf())
        {
            if (LogonUserA(userName, domain, password, LOGON32_LOGON_INTERACTIVE,
                LOGON32_PROVIDER_DEFAULT, ref token) != 0)
            {
                if (DuplicateToken(token, 2, ref tokenDuplicate) != 0)
                {
                    tempWindowsIdentity = new WindowsIdentity(tokenDuplicate);
                    impersonationContext = tempWindowsIdentity.Impersonate();
                    if (impersonationContext != null)
                    {
                        CloseHandle(token);
                        CloseHandle(tokenDuplicate);
                        return true;
                    }
                }
            }
        }
        if (token != IntPtr.Zero)
        {
            CloseHandle(token);
        }
        if (tokenDuplicate != IntPtr.Zero)
        {
            CloseHandle(tokenDuplicate);
        }
        return false;
    }

    private static void undoImpersonation()
    {
        impersonationContext.Undo();
    }
}

}

最佳答案

我们有许多企业客户端对面向 Intranet 的应用程序使用 Windows 身份验证,并且我们开始运行许多 Selenium 测试以进行确认、回归等。

我们从 Steven 的回答中获取了有用的代码,并将其重构为一个可重用的类,类似于其他 Impersonate 帖子,这些帖子对我们不起作用,因为我们希望测试在本地开发中工作并作为 Visual 的一部分部署Studio Team System 发布流程。

uri 方法不能在本地工作,也不能使用 Win32 native 方法模拟方法。

这个工作,所以在这里。

使用 Steven 的代码重构为帮助程序的测试示例

[TestMethod]
public void ThisApp_WhenAccessedByUnathorizedUser_ShouldDisallowAccess()
{
    string userName = "ThisAppNoAccess";
    string password = "123456";
    string domainName = Environment.MachineName;
    using (new Perkins.Impersonator(userName, domainName, password))
    {
        // - Use Remote Web Driver to hook up the browser driver instance launched manually.
        using (var driver = new RemoteWebDriver(new Uri("http://localhost:9515"), DesiredCapabilities.Chrome()))
        {
            var desiredUri = Helper.Combine(Helper.BaseURL, "/ThisApp/#/appGrid");
            TestContext.WriteLine("desiredUri: {0}", desiredUri);
            driver.Navigate().GoToUrl(desiredUri);
            Helper.WaitForAngular(driver);
            var noPermissionNotificationElement = driver.FindElementByXPath("//div[@ng-show='!vm.authorized']/div/div/div/p");
            var showsNoPermissionNotification = noPermissionNotificationElement.Text.Contains("You do not have permissions to view ThisApp.");
            Assert.AreEqual(true, showsNoPermissionNotification, "The text `You do not have permissions to view ThisApp.` is not being displayed!");
        }
    }
}

助手类
// Idea from http://stackoverflow.com/a/34406336/16008
// - Launch the browser driver manually with other user's credentials in background
public class Perkins
{
    public class Impersonator : IDisposable
    {
        Process _driverProcess = null;
        string _driverPath = @"chromedriver.exe";
        /// <summary>
        /// Impersonates the specified user account by launching the selenium server under that account.  Connect to it via RemoteWebDriver and localhost on port 9515.
        /// </summary>
        /// <remarks>
        /// We may later want to enhance this by allowing for different ports, etc.
        /// </remarks>
        /// <param name="userName">Name of the user</param>
        /// <param name="domainName">Name of the domain or computer if using a local account.</param>
        /// <param name="password">The password</param>
        public Impersonator(string userName, string domainName, string password)
        {
            ProcessStartInfo processStartInfo = new ProcessStartInfo(_driverPath);
            processStartInfo.UserName = userName;
            System.Security.SecureString securePassword = new System.Security.SecureString();
            foreach (char c in password)
            {
                securePassword.AppendChar(c);
            }
            processStartInfo.Password = securePassword;
            processStartInfo.Domain = domainName; // this is important, mcollins was getting a 'stub received bad data' without it, even though rglos was not
            processStartInfo.UseShellExecute = false;
            processStartInfo.LoadUserProfile = true; // this seemed to be key, without this, I get Internal Server Error 500
            Thread startThread = new Thread(() =>
            {
                _driverProcess = Process.Start(processStartInfo);
                _driverProcess.WaitForExit();
            })
            { IsBackground = true };
            startThread.Start();
        }
        public void Dispose()
        {
            // - Remember to close/exit/terminate the driver process and browser instance when you are done.
            if (_driverProcess != null)
            {
                // Free managed resources
                if (!_driverProcess.HasExited)
                {
                    _driverProcess.CloseMainWindow();
                    _driverProcess.WaitForExit(5000);
                    // Kill the process if the process still alive after the wait
                    if (!_driverProcess.HasExited)
                    {
                        _driverProcess.Kill();
                    }
                    _driverProcess.Close();
                }
                _driverProcess.Dispose();
                _driverProcess = null;
            }
        }
    }
}

也许这会帮助其他人解决同样的问题。

关于asp.net-mvc - 如何以特定域用户身份运行 Internet Explorer Selenium 测试?,我们在Stack Overflow上找到一个类似的问题: https://stackoverflow.com/questions/28045870/

相关文章:

javascript - 如何使用 Selenium WebDriver 获取 disqus 评论 iframe 数据

javascript - Protractor - StaleElementReferenceException 偶尔发生

c# - 使用 Ninject : Named binding or WithConstructorArgument doesn't work 进行多次注入(inject)

asp.net - 业务逻辑在MVC模式中属于什么位置

c# - 安装了两个网格包: The call is ambiguous between the following methods or properties

javascript - 使用 selenium webdriver 清除依赖文本框时未启用文本框

asp.net-mvc - 提高 ASP.NET MVC 启动性能

java - 如何发送 Allure 报告的电子邮件?

python - 如何使用selenium让chrome浏览器在后台运行

css - 我们如何选择下拉箭头键的 css 定位器-