Add whitelist functinality documentation

Author: dteteruk

Doxyfile

@@ -186,7 +186,7 @@ HTML_HEADER            =
 HTML_FOOTER            = 
 HTML_STYLESHEET        = 
 HTML_EXTRA_STYLESHEET  = 
-HTML_EXTRA_FILES       = 
+HTML_EXTRA_FILES       = ./src/webdriver/whitelist.xsd
 HTML_COLORSTYLE_HUE    = 220
 HTML_COLORSTYLE_SAT    = 100
 HTML_COLORSTYLE_GAMMA  = 80

inc/webdriver_access.h

@@ -1,3 +1,42 @@
+/// \page page_whitelist IP/command whitelist
+///Whitelist functionality allows to specify xml-file with list of IP with allowed/denied commands. To pass whitelist file to WebDriver need to use "white-list" server option(\ref page_webdriver_switches)
+///\code
+/// -white-list=/path/to/whitelist.xml
+///\endcode
+///If no whitelist xml-file defined then all commands for all IP is allowed.
+///
+///Example of whitelist.xml:
+///\code
+/// <?xml version="1.0" encoding="UTF-8"?>
+/// <hosts>
+///     <host ip="10.32.191.8"/>
+///     <host ip="192.27.27.7">
+///         <deny url="/session/*/window/*" method="*"/>
+///         <deny url="/session/*/click" method="POST"/>
+///     </host>
+///     <host ip="192.34.191.7">
+///         <allow url="/status" method="GET" />
+///     </host>
+/// </hosts>
+///\endcode
+///*In this example:
+///*   - if nothing is specified (10.32.191.8) all command is allowed for that IP;
+///*   - if "allow" node is specified only these commands is allowed, other disallowed;
+///*   - if "deny" node is specified this command will be disallowed, all other allowed;
+///*   - if there will be "allow" and "deny" nodes for one IP, only "deny" will have effect, all other will be allowed;
+///*   - for all other IP all commands will be disallowed;
+///
+///To allow some command for any IP wildcard should be used:
+///\code
+/// <host ip="*">
+///     <allow url="/status" method="GET" />
+/// </host>
+///\endcode
+///
+///
+///There is <a href="whitelist.xsd" target="_blank"><b>xsd</b></a> file to validate/generate whitelist.xml
+
+
 #ifndef WEBDRIVER_ACCESS_H
 #define WEBDRIVER_ACCESS_H
 
@@ -8,28 +47,38 @@
 
 namespace webdriver {
 
-struct AccessCommandTable
-{
-    std::string method;
-    std::string url;
-};
-
-struct AccessRule {
-    long hostIp;
-    bool isGeneralRule; //for all ip
-    bool allowed;
-    std::vector<AccessCommandTable> commandList;
-};
-
+/// Provides \ref page_whitelist functionality
 class AccessValidator
 {
 public:
     AccessValidator();
     ~AccessValidator();
+
+    ///Parse xml file with whitelist config
+    ///@param xmlPath path to whitelist xml-file
     void setWhiteList(FilePath &xmlPath);
+
+    ///Check if given command is allowed for this IP
+    ///@param remote_ip origin IP to check
+    ///@param url command url
+    ///@param method command method
     bool isAllowed(const long &remote_ip, const std::string &url, const std::string &method);
 
 private:
+
+    struct AccessCommandTable
+    {
+        std::string method;
+        std::string url;
+    };
+
+    struct AccessRule {
+        long hostIp;
+        bool isGeneralRule; //for all ip
+        bool allowed;
+        std::vector<AccessCommandTable> commandList;
+    };
+
     bool convertIpString(const char *str_ip, long *int_ip);
     std::list<AccessRule> accessList;
 };

inc/webdriver_server.h

@@ -11,6 +11,7 @@ extension that allow testing native UI.
 - \subpage page_views
 - \subpage page_url_post
 - \subpage page_hybrid_capabilities
+- \subpage page_whitelist
 */
 
 //-----------------------------------------------------------

inc/webdriver_switches.h

@@ -80,10 +80,12 @@ class Switches {
     static const char kUserInputDevice[];
 
     /// \page page_webdriver_switches WD Server switches
-    /// - <b>config</b><br>
+    /// - <b>white-list</b><br>
     /// The path to whitelist file (e.g. whitelist.xml) in
-    /// XML format with specified list of IP with allowed/disallowed
-    /// commands for each of them
+    /// XML format with specified list of IP with allowed/denied
+    /// commands for each of them. For more information please refer:
+    ///\ref page_whitelist
+
     static const char kWhiteList[];
 
 };

src/webdriver/whitelist.xsd

@@ -0,0 +1,40 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!-- edited with XMLSpy v2010 rel. 3 (http://www.altova.com) by Salima Khelifi (NDS Technologies France) -->
+<xs:schema xmlns:xs="http://www.w3.org/2001/XMLSchema" elementFormDefault="qualified" attributeFormDefault="unqualified">
+	<xs:element name="hosts">
+		<xs:annotation>
+			<xs:documentation>whitelist</xs:documentation>
+		</xs:annotation>
+		<xs:complexType>
+			<xs:sequence>
+				<xs:element name="host" maxOccurs="unbounded">
+					<xs:complexType>
+						<xs:sequence minOccurs="0">
+							<xs:choice maxOccurs="unbounded">
+								<xs:element name="allow" type="permission"/>
+								<xs:element name="deny" type="permission"/>
+							</xs:choice>
+						</xs:sequence>
+						<xs:attribute name="ip" type="xs:token"/>
+					</xs:complexType>
+				</xs:element>
+			</xs:sequence>
+		</xs:complexType>
+	</xs:element>
+	<xs:complexType name="permission">
+		<xs:annotation>
+			<xs:documentation>allow or deny</xs:documentation>
+		</xs:annotation>
+		<xs:attribute name="url" type="xs:token" use="required"/>
+		<xs:attribute name="method" use="required">
+			<xs:simpleType>
+				<xs:restriction base="xs:token">
+					<xs:enumeration value="POST"/>
+					<xs:enumeration value="GET"/>
+					<xs:enumeration value="DELETE"/>
+					<xs:enumeration value="*"/>
+				</xs:restriction>
+			</xs:simpleType>
+		</xs:attribute>
+	</xs:complexType>
+</xs:schema>