zydronium/google-nomulus
1
0
Fork 0
mirror of https://github.com/google/nomulus.git synced 2025-06-06 04:27:27 +02:00
Code Issues Projects Releases Packages Wiki Activity

Allow checking reserved domains with a valid token (#451)

Browse source 
* Add test for checking reserved domain with token

* Allow domain checks with a valid token if the domain isn't fully blocked

* Check specifically for specific-use or anchor reservations

* Add test for LRP in-time token
This commit is contained in:
gbrodman 2020-01-23 11:45:07 -05:00 committed by GitHub
parent ff24c7bd61
commit a6d8509dcf
4 changed files with 135 additions and 15 deletions
Download patch file Download diff file Expand all files Collapse all files

22
core/src/main/java/google/registry/flows/domain/DomainCheckFlow.java
View file

@ -20,7 +20,9 @@ import static google.registry.flows.ResourceFlowUtils.verifyTargetIdCount;
import static google.registry.flows.domain.DomainFlowUtils.checkAllowedAccessToTld; import static google.registry.flows.domain.DomainFlowUtils.checkAllowedAccessToTld;
import static google.registry.flows.domain.DomainFlowUtils.getReservationTypes; import static google.registry.flows.domain.DomainFlowUtils.getReservationTypes;
import static google.registry.flows.domain.DomainFlowUtils.handleFeeRequest; import static google.registry.flows.domain.DomainFlowUtils.handleFeeRequest;
import static google.registry.flows.domain.DomainFlowUtils.isAnchorTenant;
import static google.registry.flows.domain.DomainFlowUtils.isReserved; import static google.registry.flows.domain.DomainFlowUtils.isReserved;
import static google.registry.flows.domain.DomainFlowUtils.isValidReservedCreate;
import static google.registry.flows.domain.DomainFlowUtils.validateDomainName; import static google.registry.flows.domain.DomainFlowUtils.validateDomainName;
import static google.registry.flows.domain.DomainFlowUtils.validateDomainNameWithIdnTables; import static google.registry.flows.domain.DomainFlowUtils.validateDomainNameWithIdnTables;
import static google.registry.flows.domain.DomainFlowUtils.verifyNotInPredelegation; import static google.registry.flows.domain.DomainFlowUtils.verifyNotInPredelegation;
@ -168,17 +170,18 @@ public final class DomainCheckFlow implements Flow {
tokenDomainCheckResults tokenDomainCheckResults
.map(AllocationTokenDomainCheckResults::domainCheckResults) .map(AllocationTokenDomainCheckResults::domainCheckResults)
.orElse(ImmutableMap.of()); .orElse(ImmutableMap.of());
Optional<AllocationToken> allocationToken =
tokenDomainCheckResults.flatMap(AllocationTokenDomainCheckResults::token);
for (String targetId : targetIds) { for (String targetId : targetIds) {
Optional<String> message = Optional<String> message =
getMessageForCheck( getMessageForCheck(
domainNames.get(targetId), domainNames.get(targetId),
existingIds, existingIds,
domainCheckResults, domainCheckResults,
tldStates); tldStates,
allocationToken);
checks.add(DomainCheck.create(!message.isPresent(), targetId, message.orElse(null))); checks.add(DomainCheck.create(!message.isPresent(), targetId, message.orElse(null)));
} }
Optional<AllocationToken> allocationToken =
tokenDomainCheckResults.flatMap(AllocationTokenDomainCheckResults::token);
BeforeResponseReturnData responseData = BeforeResponseReturnData responseData =
flowCustomLogic.beforeResponse( flowCustomLogic.beforeResponse(
BeforeResponseParameters.newBuilder() BeforeResponseParameters.newBuilder()
@ -196,15 +199,20 @@ public final class DomainCheckFlow implements Flow {
InternetDomainName domainName, InternetDomainName domainName,
Set<String> existingIds, Set<String> existingIds,
ImmutableMap<InternetDomainName, String> tokenCheckResults, ImmutableMap<InternetDomainName, String> tokenCheckResults,
Map<String, TldState> tldStates) { Map<String, TldState> tldStates,
Optional<AllocationToken> allocationToken) {
if (existingIds.contains(domainName.toString())) { if (existingIds.contains(domainName.toString())) {
return Optional.of("In use"); return Optional.of("In use");
} }
TldState tldState = tldStates.get(domainName.parent().toString()); TldState tldState = tldStates.get(domainName.parent().toString());
if (isReserved(domainName, START_DATE_SUNRISE.equals(tldState))) { if (isReserved(domainName, START_DATE_SUNRISE.equals(tldState))) {
ImmutableSet<ReservationType> reservationTypes = getReservationTypes(domainName); if (!isValidReservedCreate(domainName, allocationToken)
if (!reservationTypes.isEmpty()) { && !isAnchorTenant(domainName, allocationToken, Optional.empty())) {
return Optional.of(getTypeOfHighestSeverity(reservationTypes).getMessageForCheck()); ImmutableSet<ReservationType> reservationTypes = getReservationTypes(domainName);
if (!reservationTypes.isEmpty()) {
ReservationType highestSeverityType = getTypeOfHighestSeverity(reservationTypes);
return Optional.of(highestSeverityType.getMessageForCheck());
}
} }
} }
return Optional.ofNullable(emptyToNull(tokenCheckResults.get(domainName))); return Optional.ofNullable(emptyToNull(tokenCheckResults.get(domainName)));

109
core/src/test/java/google/registry/flows/domain/DomainCheckFlowTest.java
View file

@ -77,8 +77,7 @@ import org.junit.Ignore;
import org.junit.Test; import org.junit.Test;
/** Unit tests for {@link DomainCheckFlow}. */ /** Unit tests for {@link DomainCheckFlow}. */
public class DomainCheckFlowTest public class DomainCheckFlowTest extends ResourceCheckFlowTestCase<DomainCheckFlow, DomainBase> {
extends ResourceCheckFlowTestCase<DomainCheckFlow, DomainBase> {
public DomainCheckFlowTest() { public DomainCheckFlowTest() {
setEppInput("domain_check_one_tld.xml"); setEppInput("domain_check_one_tld.xml");
@ -93,11 +92,12 @@ public class DomainCheckFlowTest
.build()); .build());
return persistReservedList( return persistReservedList(
"tld-reserved", "tld-reserved",
"reserved,FULLY_BLOCKED",
"anchor,RESERVED_FOR_ANCHOR_TENANT",
"allowedinsunrise,ALLOWED_IN_SUNRISE", "allowedinsunrise,ALLOWED_IN_SUNRISE",
"anchor,RESERVED_FOR_ANCHOR_TENANT",
"collision,NAME_COLLISION", "collision,NAME_COLLISION",
"premiumcollision,NAME_COLLISION"); "premiumcollision,NAME_COLLISION",
"reserved,FULLY_BLOCKED",
"specificuse,RESERVED_FOR_SPECIFIC_USE");
} }
@Before @Before
@ -140,7 +140,8 @@ public class DomainCheckFlowTest
doCheckTest( doCheckTest(
create(false, "example1.tld", "In use"), create(false, "example1.tld", "In use"),
create(false, "example2.tld", "The allocation token is invalid"), create(false, "example2.tld", "The allocation token is invalid"),
create(false, "reserved.tld", "Reserved")); create(false, "reserved.tld", "Reserved"),
create(false, "specificuse.tld", "Reserved"));
} }
@Test @Test
@ -152,7 +153,8 @@ public class DomainCheckFlowTest
doCheckTest( doCheckTest(
create(false, "example1.tld", "In use"), create(false, "example1.tld", "In use"),
create(true, "example2.tld", null), create(true, "example2.tld", null),
create(false, "reserved.tld", "Reserved")); create(false, "reserved.tld", "Reserved"),
create(false, "specificuse.tld", "Reserved"));
} }
@Test @Test
@ -168,7 +170,86 @@ public class DomainCheckFlowTest
doCheckTest( doCheckTest(
create(false, "example1.tld", "In use"), create(false, "example1.tld", "In use"),
create(false, "example2.tld", "Alloc token was already redeemed"), create(false, "example2.tld", "Alloc token was already redeemed"),
create(false, "reserved.tld", "Reserved")); create(false, "reserved.tld", "Reserved"),
create(false, "specificuse.tld", "Reserved"));
}
@Test
public void testSuccess_oneExists_allocationTokenForReservedDomain() throws Exception {
setEppInput("domain_check_allocationtoken.xml");
persistActiveDomain("example1.tld");
persistResource(
new AllocationToken.Builder()
.setDomainName("specificuse.tld")
.setToken("abc123")
.setTokenType(SINGLE_USE)
.build());
doCheckTest(
create(false, "example1.tld", "In use"),
create(true, "example2.tld", null),
create(false, "reserved.tld", "Reserved"),
create(true, "specificuse.tld", null));
}
@Test
public void testSuccess_oneExists_allocationTokenForWrongDomain() throws Exception {
setEppInput("domain_check_allocationtoken.xml");
persistActiveDomain("example1.tld");
persistResource(
new AllocationToken.Builder()
.setDomainName("someotherdomain.tld")
.setToken("abc123")
.setTokenType(SINGLE_USE)
.build());
doCheckTest(
create(false, "example1.tld", "In use"),
create(true, "example2.tld", null),
create(false, "reserved.tld", "Reserved"),
create(false, "specificuse.tld", "Reserved"));
}
@Test
public void testSuccess_notOutOfDateToken_forSpecificDomain() throws Exception {
setEppInput("domain_check_allocationtoken.xml");
persistResource(
new AllocationToken.Builder()
.setToken("abc123")
.setTokenType(SINGLE_USE)
.setDomainName("specificuse.tld")
.setTokenStatusTransitions(
ImmutableSortedMap.<DateTime, TokenStatus>naturalOrder()
.put(START_OF_TIME, TokenStatus.NOT_STARTED)
.put(clock.nowUtc().minusDays(1), TokenStatus.VALID)
.put(clock.nowUtc().plusDays(1), TokenStatus.ENDED)
.build())
.build());
doCheckTest(
create(true, "example1.tld", null),
create(true, "example2.tld", null),
create(false, "reserved.tld", "Reserved"),
create(true, "specificuse.tld", null));
}
@Test
public void testSuccess_outOfDateToken_forSpecificDomain() throws Exception {
setEppInput("domain_check_allocationtoken.xml");
persistResource(
new AllocationToken.Builder()
.setToken("abc123")
.setTokenType(SINGLE_USE)
.setDomainName("specificuse.tld")
.setTokenStatusTransitions(
ImmutableSortedMap.<DateTime, TokenStatus>naturalOrder()
.put(START_OF_TIME, TokenStatus.NOT_STARTED)
.put(clock.nowUtc().minusDays(2), TokenStatus.VALID)
.put(clock.nowUtc().minusDays(1), TokenStatus.ENDED)
.build())
.build());
doCheckTest(
create(false, "example1.tld", "Alloc token not in promo period"),
create(false, "example2.tld", "Alloc token not in promo period"),
create(false, "reserved.tld", "Reserved"),
create(false, "specificuse.tld", "Alloc token not in promo period"));
} }
@Test @Test
@ -317,6 +398,18 @@ public class DomainCheckFlowTest
doCheckTest(create(false, "anchor.tld", "Reserved")); doCheckTest(create(false, "anchor.tld", "Reserved"));
} }
@Test
public void testSuccess_anchorTenantWithToken() throws Exception {
setEppInput("domain_check_anchor_allocationtoken.xml");
persistResource(
new AllocationToken.Builder()
.setToken("abc123")
.setTokenType(SINGLE_USE)
.setDomainName("anchor.tld")
.build());
doCheckTest(create(true, "anchor.tld", null));
}
@Test @Test
public void testSuccess_multipartTld_oneReserved() throws Exception { public void testSuccess_multipartTld_oneReserved() throws Exception {
createTld("tld.foo"); createTld("tld.foo");

1
core/src/test/resources/google/registry/flows/domain/domain_check_allocationtoken.xml
View file

@ -6,6 +6,7 @@
<domain:name>example1.tld</domain:name> <domain:name>example1.tld</domain:name>
<domain:name>example2.tld</domain:name> <domain:name>example2.tld</domain:name>
<domain:name>reserved.tld</domain:name> <domain:name>reserved.tld</domain:name>
<domain:name>specificuse.tld</domain:name>
</domain:check> </domain:check>
</check> </check>
<extension> <extension>

18
core/src/test/resources/google/registry/flows/domain/domain_check_anchor_allocationtoken.xml Normal file
View file

@ -0,0 +1,18 @@
<epp xmlns="urn:ietf:params:xml:ns:epp-1.0">
<command>
<check>
<domain:check
xmlns:domain="urn:ietf:params:xml:ns:domain-1.0">
<domain:name>anchor.tld</domain:name>
</domain:check>
</check>
<extension>
<allocationToken:allocationToken
xmlns:allocationToken=
"urn:ietf:params:xml:ns:allocationToken-1.0">
abc123
</allocationToken:allocationToken>
</extension>
<clTRID>ABC-12345</clTRID>
</command>
</epp>