plugins/user-authenticators/ldap/src/test/java/org/apache/cloudstack/ldap/ADLdapUserManagerImplTest.java - cloudstack - Git at Google

 // Licensed to the Apache Software Foundation (ASF) under one
 // or more contributor license agreements.  See the NOTICE file
 // distributed with this work for additional information
 // regarding copyright ownership.  The ASF licenses this file
 // to you under the Apache License, Version 2.0 (the
 // "License"); you may not use this file except in compliance
 // with the License.  You may obtain a copy of the License at
 //
 //   http://www.apache.org/licenses/LICENSE-2.0
 //
 // Unless required by applicable law or agreed to in writing,
 // software distributed under the License is distributed on an
 // "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
 // KIND, either express or implied.  See the License for the
 // specific language governing permissions and limitations
 // under the License.
 package org.apache.cloudstack.ldap;

 import org.junit.Before;
 import org.junit.Test;
 import org.junit.runner.RunWith;
 import org.mockito.Mock;
 import org.mockito.junit.MockitoJUnitRunner;

 import javax.naming.directory.SearchControls;
 import javax.naming.ldap.LdapContext;

 import static org.junit.Assert.assertTrue;
 import static org.mockito.ArgumentMatchers.any;
 import static org.mockito.Mockito.lenient;
 import static org.mockito.Mockito.when;

 @RunWith(MockitoJUnitRunner.class)
 public class ADLdapUserManagerImplTest {

     ADLdapUserManagerImpl adLdapUserManager;

     @Mock
     LdapConfiguration ldapConfiguration;

     @Before
     public void init() throws Exception {
         adLdapUserManager = new ADLdapUserManagerImpl();
         adLdapUserManager._ldapConfiguration = ldapConfiguration;
     }

     @Test
     public void testGenerateADSearchFilterWithNestedGroupsEnabled() {
         when(ldapConfiguration.getUserObject(any())).thenReturn("user");
         when(ldapConfiguration.getCommonNameAttribute()).thenReturn("CN");
         when(ldapConfiguration.getBaseDn(any())).thenReturn("DC=cloud,DC=citrix,DC=com");
         when(ldapConfiguration.isNestedGroupsEnabled(any())).thenReturn(true);

         String [] groups = {"dev", "dev-hyd"};
         for (String group: groups) {
             String result = adLdapUserManager.generateADGroupSearchFilter(group, 1L);
             assertTrue(("(&(objectClass=user)(memberOf:1.2.840.113556.1.4.1941:=CN=" + group + ",DC=cloud,DC=citrix,DC=com))").equals(result));
         }

     }

     @Test
     public void testGenerateADSearchFilterWithNestedGroupsDisabled() {
         when(ldapConfiguration.getUserObject(any())).thenReturn("user");
         when(ldapConfiguration.getCommonNameAttribute()).thenReturn("CN");
         when(ldapConfiguration.getBaseDn(any())).thenReturn("DC=cloud,DC=citrix,DC=com");
         when(ldapConfiguration.isNestedGroupsEnabled(any())).thenReturn(false);

         String [] groups = {"dev", "dev-hyd"};
         for (String group: groups) {
             String result = adLdapUserManager.generateADGroupSearchFilter(group, 1L);
             assertTrue(("(&(objectClass=user)(memberOf=CN=" + group + ",DC=cloud,DC=citrix,DC=com))").equals(result));
         }
     }

     @Mock
     LdapContext ldapContext;

     @Test(expected = IllegalArgumentException.class)
     public void testGetUsersInGroupUsingNullGroup() throws Exception {
         String[] returnAttributes = {"username", "firstname", "lastname", "email"};
         lenient().when(ldapConfiguration.getScope()).thenReturn(SearchControls.SUBTREE_SCOPE);
         lenient().when(ldapConfiguration.getReturnAttributes(null)).thenReturn(returnAttributes);
         lenient().when(ldapConfiguration.getBaseDn(any())).thenReturn(null).thenReturn(null).thenReturn("DC=cloud,DC=citrix,DC=com");

         LdapContext context = ldapContext;
         String [] groups = {null, "group", null};
         for (String group: groups) {
             adLdapUserManager.getUsersInGroup(group, context,null);
         }
     }
 }
	// Licensed to the Apache Software Foundation (ASF) under one
	// or more contributor license agreements. See the NOTICE file
	// distributed with this work for additional information
	// regarding copyright ownership. The ASF licenses this file
	// to you under the Apache License, Version 2.0 (the
	// "License"); you may not use this file except in compliance
	// with the License. You may obtain a copy of the License at
	//
	// http://www.apache.org/licenses/LICENSE-2.0
	//
	// Unless required by applicable law or agreed to in writing,
	// software distributed under the License is distributed on an
	// "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
	// KIND, either express or implied. See the License for the
	// specific language governing permissions and limitations
	// under the License.
	package org.apache.cloudstack.ldap;

	import org.junit.Before;
	import org.junit.Test;
	import org.junit.runner.RunWith;
	import org.mockito.Mock;
	import org.mockito.junit.MockitoJUnitRunner;

	import javax.naming.directory.SearchControls;
	import javax.naming.ldap.LdapContext;

	import static org.junit.Assert.assertTrue;
	import static org.mockito.ArgumentMatchers.any;
	import static org.mockito.Mockito.lenient;
	import static org.mockito.Mockito.when;

	@RunWith(MockitoJUnitRunner.class)
	public class ADLdapUserManagerImplTest {

	ADLdapUserManagerImpl adLdapUserManager;

	@Mock
	LdapConfiguration ldapConfiguration;

	@Before
	public void init() throws Exception {
	adLdapUserManager = new ADLdapUserManagerImpl();
	adLdapUserManager._ldapConfiguration = ldapConfiguration;
	}

	@Test
	public void testGenerateADSearchFilterWithNestedGroupsEnabled() {
	when(ldapConfiguration.getUserObject(any())).thenReturn("user");
	when(ldapConfiguration.getCommonNameAttribute()).thenReturn("CN");
	when(ldapConfiguration.getBaseDn(any())).thenReturn("DC=cloud,DC=citrix,DC=com");
	when(ldapConfiguration.isNestedGroupsEnabled(any())).thenReturn(true);

	String [] groups = {"dev", "dev-hyd"};
	for (String group: groups) {
	String result = adLdapUserManager.generateADGroupSearchFilter(group, 1L);
	assertTrue(("(&(objectClass=user)(memberOf:1.2.840.113556.1.4.1941:=CN=" + group + ",DC=cloud,DC=citrix,DC=com))").equals(result));
	}

	}

	@Test
	public void testGenerateADSearchFilterWithNestedGroupsDisabled() {
	when(ldapConfiguration.getUserObject(any())).thenReturn("user");
	when(ldapConfiguration.getCommonNameAttribute()).thenReturn("CN");
	when(ldapConfiguration.getBaseDn(any())).thenReturn("DC=cloud,DC=citrix,DC=com");
	when(ldapConfiguration.isNestedGroupsEnabled(any())).thenReturn(false);

	String [] groups = {"dev", "dev-hyd"};
	for (String group: groups) {
	String result = adLdapUserManager.generateADGroupSearchFilter(group, 1L);
	assertTrue(("(&(objectClass=user)(memberOf=CN=" + group + ",DC=cloud,DC=citrix,DC=com))").equals(result));
	}
	}

	@Mock
	LdapContext ldapContext;

	@Test(expected = IllegalArgumentException.class)
	public void testGetUsersInGroupUsingNullGroup() throws Exception {
	String[] returnAttributes = {"username", "firstname", "lastname", "email"};
	lenient().when(ldapConfiguration.getScope()).thenReturn(SearchControls.SUBTREE_SCOPE);
	lenient().when(ldapConfiguration.getReturnAttributes(null)).thenReturn(returnAttributes);
	lenient().when(ldapConfiguration.getBaseDn(any())).thenReturn(null).thenReturn(null).thenReturn("DC=cloud,DC=citrix,DC=com");

	LdapContext context = ldapContext;
	String [] groups = {null, "group", null};
	for (String group: groups) {
	adLdapUserManager.getUsersInGroup(group, context,null);
	}
	}
	}