| /** |
| * Licensed to the Apache Software Foundation (ASF) under one or more |
| * contributor license agreements. See the NOTICE file distributed with |
| * this work for additional information regarding copyright ownership. |
| * The ASF licenses this file to You under the Apache License, Version 2.0 |
| * (the "License"); you may not use this file except in compliance with |
| * the License. You may obtain a copy of the License at |
| * |
| * http://www.apache.org/licenses/LICENSE-2.0 |
| * |
| * Unless required by applicable law or agreed to in writing, software |
| * distributed under the License is distributed on an "AS IS" BASIS, |
| * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. |
| * See the License for the specific language governing permissions and |
| * limitations under the License. |
| */ |
| package org.apache.activemq.security; |
| |
| |
| import java.net.URI; |
| import java.util.HashMap; |
| import java.util.concurrent.TimeUnit; |
| import java.util.concurrent.atomic.AtomicBoolean; |
| import java.util.concurrent.atomic.AtomicReference; |
| |
| import javax.jms.Connection; |
| import javax.jms.DeliveryMode; |
| import javax.jms.QueueBrowser; |
| import javax.jms.Session; |
| import javax.management.MBeanServerConnection; |
| import javax.management.MBeanServerInvocationHandler; |
| import javax.management.ObjectName; |
| import javax.management.remote.JMXConnector; |
| import javax.management.remote.JMXConnectorFactory; |
| import javax.management.remote.JMXServiceURL; |
| |
| import junit.framework.TestCase; |
| |
| import org.apache.activemq.ActiveMQConnectionFactory; |
| import org.apache.activemq.broker.BrokerFactory; |
| import org.apache.activemq.broker.BrokerService; |
| import org.apache.activemq.broker.TransportConnection; |
| import org.apache.activemq.broker.TransportConnector; |
| import org.apache.activemq.broker.jmx.QueueViewMBean; |
| import org.apache.activemq.command.ActiveMQQueue; |
| import org.apache.activemq.transport.stomp.StompConnection; |
| import org.apache.activemq.util.DefaultTestAppender; |
| import org.apache.logging.log4j.LogManager; |
| import org.apache.logging.log4j.core.Appender; |
| import org.apache.logging.log4j.core.LogEvent; |
| import org.apache.logging.log4j.core.appender.AbstractAppender; |
| import org.apache.logging.log4j.core.config.Property; |
| import org.apache.logging.log4j.core.filter.AbstractFilter; |
| import org.apache.logging.log4j.core.layout.MessageLayout; |
| import org.slf4j.Logger; |
| import org.slf4j.LoggerFactory; |
| |
| public class SecurityJMXTest extends TestCase { |
| |
| private static final Logger LOG = LoggerFactory.getLogger(SecurityJMXTest.class); |
| private BrokerService broker; |
| |
| @Override |
| public void setUp() throws Exception { |
| broker = createBroker(); |
| broker.waitUntilStarted(); |
| } |
| |
| @Override |
| public void tearDown() throws Exception { |
| broker.stop(); |
| } |
| |
| public void testDeniedViaStompNoStackTrace() throws Exception { |
| final AtomicBoolean gotExpected = new AtomicBoolean(false); |
| final AtomicReference<Object> stackTrace = new AtomicReference<Object>(); |
| |
| final Appender appender = new AbstractAppender("testAppender", new AbstractFilter() {}, new MessageLayout(), false, new Property[0]) { |
| @Override |
| public void append(LogEvent event) { |
| String message = event.getMessage().getFormattedMessage(); |
| if (message.contains("Async error occurred")) { |
| gotExpected.set(true); |
| stackTrace.set(event.getThrown()); |
| } |
| } |
| }; |
| |
| appender.start(); |
| org.apache.logging.log4j.core.Logger toVerify = (org.apache.logging.log4j.core.Logger)LogManager.getLogger(TransportConnection.class.getName() + ".Service"); |
| toVerify.addAppender(appender); |
| |
| try { |
| |
| TransportConnector stomp = broker.addConnector("stomp://localhost:0"); |
| broker.startTransportConnector(stomp); |
| StompConnection stompConnection = new StompConnection(); |
| stompConnection.open(stomp.getConnectUri().getHost(), stomp.getConnectUri().getPort()); |
| stompConnection.connect("guest", "password"); |
| // async sub |
| stompConnection.subscribe("/queue/USERS.Q"); |
| stompConnection.receive(1000); |
| stompConnection.close(); |
| |
| } finally { |
| toVerify.removeAppender(appender); |
| } |
| |
| assertTrue("Got async error:", gotExpected.get()); |
| assertNull("No stack trace", stackTrace.get()); |
| } |
| |
| |
| public void testMoveMessages() throws Exception { |
| JMXServiceURL url = new JMXServiceURL("service:jmx:rmi:///jndi/rmi://localhost:1199/jmxrmi"); |
| JMXConnector connector = JMXConnectorFactory.connect(url, null); |
| connector.connect(); |
| MBeanServerConnection connection = connector.getMBeanServerConnection(); |
| ObjectName name = new ObjectName("org.apache.activemq:type=Broker,brokerName=localhost," + |
| "destinationType=Queue,destinationName=TEST.Q"); |
| QueueViewMBean queueMbean = MBeanServerInvocationHandler.newProxyInstance(connection, name, QueueViewMBean.class, true); |
| String msgId = queueMbean.sendTextMessage("test", "system", "manager"); |
| queueMbean.moveMessageTo(msgId, "TEST1.Q"); |
| } |
| |
| public void testBrowseExpiredMessages() throws Exception { |
| JMXServiceURL url = new JMXServiceURL("service:jmx:rmi:///jndi/rmi://localhost:1199/jmxrmi"); |
| JMXConnector connector = JMXConnectorFactory.connect(url, null); |
| connector.connect(); |
| MBeanServerConnection connection = connector.getMBeanServerConnection(); |
| ObjectName name = new ObjectName("org.apache.activemq:type=Broker,brokerName=localhost," + |
| "destinationType=Queue,destinationName=TEST.Q"); |
| QueueViewMBean queueMbean = MBeanServerInvocationHandler.newProxyInstance(connection, name, QueueViewMBean.class, true); |
| HashMap<String, String> headers = new HashMap<String, String>(); |
| headers.put("timeToLive", Long.toString(2000)); |
| headers.put("JMSDeliveryMode", Integer.toString(DeliveryMode.PERSISTENT)); |
| queueMbean.sendTextMessage(headers, "test", "system", "manager"); |
| // allow message to expire on the queue |
| TimeUnit.SECONDS.sleep(4); |
| |
| Connection c = new ActiveMQConnectionFactory("vm://localhost").createConnection("system", "manager"); |
| c.start(); |
| |
| // browser consumer will force expriation check on addConsumer |
| QueueBrowser browser = c.createSession(false, Session.AUTO_ACKNOWLEDGE).createBrowser(new ActiveMQQueue("TEST.Q")); |
| assertTrue("no message in the q", !browser.getEnumeration().hasMoreElements()); |
| |
| // verify dlq got the message, no security exception as brokers context is now used |
| browser = c.createSession(false, Session.AUTO_ACKNOWLEDGE).createBrowser(new ActiveMQQueue("ActiveMQ.DLQ")); |
| assertTrue("one message in the dlq", browser.getEnumeration().hasMoreElements()); |
| } |
| |
| protected BrokerService createBroker() throws Exception { |
| return createBroker("org/apache/activemq/security/simple-auth-broker.xml"); |
| } |
| |
| protected BrokerService createBroker(String uri) throws Exception { |
| LOG.info("Loading broker configuration from the classpath with URI: " + uri); |
| return BrokerFactory.createBroker(new URI("xbean:" + uri)); |
| } |
| } |