integration-tests/shiro/src/main/java/org/apache/camel/quarkus/component/shiro/it/ShiroRouteBuilder.java

/*
 * Licensed to the Apache Software Foundation (ASF) under one or more
 * contributor license agreements.  See the NOTICE file distributed with
 * this work for additional information regarding copyright ownership.
 * The ASF licenses this file to You under the Apache License, Version 2.0
 * (the "License"); you may not use this file except in compliance with
 * the License.  You may obtain a copy of the License at
 *
 *      http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 */
package org.apache.camel.quarkus.component.shiro.it;

import java.util.ArrayList;
import java.util.Collections;
import java.util.List;

import org.apache.camel.CamelAuthorizationException;
import org.apache.camel.builder.RouteBuilder;
import org.apache.camel.component.shiro.security.ShiroSecurityPolicy;
import org.apache.shiro.authc.AuthenticationException;
import org.apache.shiro.authc.IncorrectCredentialsException;
import org.apache.shiro.authc.LockedAccountException;
import org.apache.shiro.authc.UnknownAccountException;
import org.apache.shiro.authz.Permission;
import org.apache.shiro.authz.permission.WildcardPermission;

public class ShiroRouteBuilder extends RouteBuilder {
    public static final String DIRECT_SECURE_ENDPOINT = "direct:secureEndpoint";
    public static final String DIRECT_SECURE_WITH_ROLES = "direct:secureWithRoles";
    public static final String DIRECT_SECURE_WITH_PERMISSIONS = "direct:secureWithPermissions";

    @Override
    public void configure() throws Exception {
        String securityConfig = "classpath:config/securityConfig.ini";

        onException(CamelAuthorizationException.class, UnknownAccountException.class, IncorrectCredentialsException.class,
                LockedAccountException.class, AuthenticationException.class).to("mock:authenticationException");
        //policy ignores roles or permissions
        final ShiroSecurityPolicy securityPolicy = new ShiroSecurityPolicy(securityConfig, ShiroResource.passPhrase);
        securityPolicy.setBase64(true);

        from(DIRECT_SECURE_ENDPOINT).policy(securityPolicy).to("mock:success");

        //policy respects roles
        List<String> rolesList = new ArrayList<>();
        rolesList.add("sec-level2");
        rolesList.add("sec-level3");

        final ShiroSecurityPolicy securityPolicyWithRoles = new ShiroSecurityPolicy(securityConfig,
                ShiroResource.passPhrase,
                true);
        securityPolicyWithRoles.setRolesList(rolesList);

        from(DIRECT_SECURE_WITH_ROLES).policy(securityPolicyWithRoles).to("mock:success");

        //policy respects permissions
        List<Permission> permissionsList = Collections.singletonList(new WildcardPermission("earth1:writeonly:*"));

        final ShiroSecurityPolicy securityPolicyWithPermissions = new ShiroSecurityPolicy(securityConfig,
                ShiroResource.passPhrase, true, permissionsList);

        from(DIRECT_SECURE_WITH_PERMISSIONS).policy(securityPolicyWithPermissions).to("mock:success");

    }
}