plugins/user-authenticators/ldap/src/test/groovy/org/apache/cloudstack/ldap/LdapContextFactorySpec.groovy - cloudstack - Git at Google

 // Licensed to the Apache Software Foundation (ASF) under one
 // or more contributor license agreements.  See the NOTICE file
 // distributed with this work for additional information
 // regarding copyright ownership.  The ASF licenses this file
 // to you under the Apache License, Version 2.0 (the
 // "License"); you may not use this file except in compliance
 // with the License.  You may obtain a copy of the License at
 //
 //   http://www.apache.org/licenses/LICENSE-2.0
 //
 // Unless required by applicable law or agreed to in writing,
 // software distributed under the License is distributed on an
 // "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
 // KIND, either express or implied.  See the License for the
 // specific language governing permissions and limitations
 // under the License.
 package groovy.org.apache.cloudstack.ldap

 import org.apache.cloudstack.ldap.LdapConfiguration
 import org.apache.cloudstack.ldap.LdapContextFactory
 import spock.lang.Shared

 import javax.naming.NamingException
 import javax.naming.directory.SearchControls

 class LdapContextFactorySpec extends spock.lang.Specification {
     @Shared
     private def ldapConfiguration

     @Shared
     private def username

     @Shared
     private def principal

     @Shared
     private def password

     def setupSpec() {
         ldapConfiguration = Mock(LdapConfiguration)

         ldapConfiguration.getFactory() >> "com.sun.jndi.ldap.LdapCtxFactory"
         ldapConfiguration.getProviderUrl(_) >> "ldap://localhost:389"
         ldapConfiguration.getAuthentication() >> "none"
         ldapConfiguration.getScope() >> SearchControls.SUBTREE_SCOPE
         ldapConfiguration.getReturnAttributes() >> ["uid", "mail", "cn"]
         ldapConfiguration.getUsernameAttribute() >> "uid"
         ldapConfiguration.getEmailAttribute() >> "mail"
         ldapConfiguration.getFirstnameAttribute() >> "givenname"
         ldapConfiguration.getLastnameAttribute() >> "sn"
         ldapConfiguration.getBaseDn(_) >> "dc=cloudstack,dc=org"
 		ldapConfiguration.getSSLStatus() >> true
 		ldapConfiguration.getTrustStore() >> "/tmp/ldap.ts"
 		ldapConfiguration.getTrustStorePassword() >> "password"
         ldapConfiguration.getReadTimeout(_) >> 1000
         ldapConfiguration.getLdapPageSize() >> 1

         username = "rmurphy"
         principal = "cn=" + username + "," + ldapConfiguration.getBaseDn()
 		password = "password"
     }

     def "Test successfully creating a initial context"() {
 		given: "We have a LdapContextFactory"
 		def ldapContextFactory = new LdapContextFactory(ldapConfiguration)
 		when: "A context attempts to bind and no Ldap server is avaiable"
 		ldapContextFactory.createInitialDirContext(null, null, true)
 		then: "An expection is thrown"
 		thrown NamingException
     }

     def "Test successfully binding as a user"() {
 		given: "We have a LdapContextFactory"
 		def ldapContextFactory = new LdapContextFactory(ldapConfiguration)
 		when: "A user attempts to bind and no LDAP server is avaiable"
 		ldapContextFactory.createUserContext(principal, password)
 		then: "An exception is thrown"
 		thrown NamingException
     }

     def "Test successfully creating a environment with username and password"() {
 		given: "We have an LdapContextFactory"
         def ldapContextFactory = new LdapContextFactory(ldapConfiguration)

 		when: "A request for an environment is made"
         def result = ldapContextFactory.getEnvironment(null, null, null, true)

 		then: "The resulting values should be set"
         result['java.naming.provider.url'] == ldapConfiguration.getProviderUrl(null)
         result['java.naming.factory.initial'] == ldapConfiguration.getFactory()
         result['java.naming.security.principal'] == null
         result['java.naming.security.authentication'] == ldapConfiguration.getAuthentication()
 		result['java.naming.security.credentials'] == null
     }

     def "Test successfully creating a system environment with anon bind"() {
 		given: "We have an LdapContext Factory"
 		def ldapContextFactory = new LdapContextFactory(ldapConfiguration)

 		when: "A request for an environment is made"
 		def result = ldapContextFactory.getEnvironment(principal, password, null, false)

 		then: "The resulting values should be set"
 		result['java.naming.provider.url'] == ldapConfiguration.getProviderUrl(null)
 		result['java.naming.factory.initial'] == ldapConfiguration.getFactory()
 		result['java.naming.security.principal'] == principal
 		result['java.naming.security.authentication'] == "simple"
 		result['java.naming.security.credentials'] == password
 	}

 	def "Test successully binding as system"() {
 		given: "We have a LdapContextFactory"
 	    def ldapContextFactory = new LdapContextFactory(ldapConfiguration)
 		when: "A bind context attempts to bind and no Ldap server is avaiable"
 	    ldapContextFactory.createBindContext()
 		then: "An exception is thrown"
 		thrown NamingException
     }
 }
	// Licensed to the Apache Software Foundation (ASF) under one
	// or more contributor license agreements. See the NOTICE file
	// distributed with this work for additional information
	// regarding copyright ownership. The ASF licenses this file
	// to you under the Apache License, Version 2.0 (the
	// "License"); you may not use this file except in compliance
	// with the License. You may obtain a copy of the License at
	//
	// http://www.apache.org/licenses/LICENSE-2.0
	//
	// Unless required by applicable law or agreed to in writing,
	// software distributed under the License is distributed on an
	// "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
	// KIND, either express or implied. See the License for the
	// specific language governing permissions and limitations
	// under the License.
	package groovy.org.apache.cloudstack.ldap

	import org.apache.cloudstack.ldap.LdapConfiguration
	import org.apache.cloudstack.ldap.LdapContextFactory
	import spock.lang.Shared

	import javax.naming.NamingException
	import javax.naming.directory.SearchControls

	class LdapContextFactorySpec extends spock.lang.Specification {
	@Shared
	private def ldapConfiguration

	@Shared
	private def username

	@Shared
	private def principal

	@Shared
	private def password

	def setupSpec() {
	ldapConfiguration = Mock(LdapConfiguration)

	ldapConfiguration.getFactory() >> "com.sun.jndi.ldap.LdapCtxFactory"
	ldapConfiguration.getProviderUrl(_) >> "ldap://localhost:389"
	ldapConfiguration.getAuthentication() >> "none"
	ldapConfiguration.getScope() >> SearchControls.SUBTREE_SCOPE
	ldapConfiguration.getReturnAttributes() >> ["uid", "mail", "cn"]
	ldapConfiguration.getUsernameAttribute() >> "uid"
	ldapConfiguration.getEmailAttribute() >> "mail"
	ldapConfiguration.getFirstnameAttribute() >> "givenname"
	ldapConfiguration.getLastnameAttribute() >> "sn"
	ldapConfiguration.getBaseDn(_) >> "dc=cloudstack,dc=org"
	ldapConfiguration.getSSLStatus() >> true
	ldapConfiguration.getTrustStore() >> "/tmp/ldap.ts"
	ldapConfiguration.getTrustStorePassword() >> "password"
	ldapConfiguration.getReadTimeout(_) >> 1000
	ldapConfiguration.getLdapPageSize() >> 1

	username = "rmurphy"
	principal = "cn=" + username + "," + ldapConfiguration.getBaseDn()
	password = "password"
	}

	def "Test successfully creating a initial context"() {
	given: "We have a LdapContextFactory"
	def ldapContextFactory = new LdapContextFactory(ldapConfiguration)
	when: "A context attempts to bind and no Ldap server is avaiable"
	ldapContextFactory.createInitialDirContext(null, null, true)
	then: "An expection is thrown"
	thrown NamingException
	}

	def "Test successfully binding as a user"() {
	given: "We have a LdapContextFactory"
	def ldapContextFactory = new LdapContextFactory(ldapConfiguration)
	when: "A user attempts to bind and no LDAP server is avaiable"
	ldapContextFactory.createUserContext(principal, password)
	then: "An exception is thrown"
	thrown NamingException
	}

	def "Test successfully creating a environment with username and password"() {
	given: "We have an LdapContextFactory"
	def ldapContextFactory = new LdapContextFactory(ldapConfiguration)

	when: "A request for an environment is made"
	def result = ldapContextFactory.getEnvironment(null, null, null, true)

	then: "The resulting values should be set"
	result['java.naming.provider.url'] == ldapConfiguration.getProviderUrl(null)
	result['java.naming.factory.initial'] == ldapConfiguration.getFactory()
	result['java.naming.security.principal'] == null
	result['java.naming.security.authentication'] == ldapConfiguration.getAuthentication()
	result['java.naming.security.credentials'] == null
	}

	def "Test successfully creating a system environment with anon bind"() {
	given: "We have an LdapContext Factory"
	def ldapContextFactory = new LdapContextFactory(ldapConfiguration)

	when: "A request for an environment is made"
	def result = ldapContextFactory.getEnvironment(principal, password, null, false)

	then: "The resulting values should be set"
	result['java.naming.provider.url'] == ldapConfiguration.getProviderUrl(null)
	result['java.naming.factory.initial'] == ldapConfiguration.getFactory()
	result['java.naming.security.principal'] == principal
	result['java.naming.security.authentication'] == "simple"
	result['java.naming.security.credentials'] == password
	}

	def "Test successully binding as system"() {
	given: "We have a LdapContextFactory"
	def ldapContextFactory = new LdapContextFactory(ldapConfiguration)
	when: "A bind context attempts to bind and no Ldap server is avaiable"
	ldapContextFactory.createBindContext()
	then: "An exception is thrown"
	thrown NamingException
	}
	}