Google Git
Sign in
apache / geronimo-metrics / 887a5c4bb80cc1af59f9cec6aa4403b3129b16d1 / . / geronimo-metrics-common / src / test / java / org / apache / geronimo / microprofile / metrics / common / jaxrs / SecurityValidatorTest.java
blob: c2e0aefeef79dec0a657713ee7c112b596304818 [file] [log] [blame]
/*
* Licensed to the Apache Software Foundation (ASF) under one or more
* contributor license agreements. See the NOTICE file distributed with
* this work for additional information regarding copyright ownership.
* The ASF licenses this file to You under the Apache License, Version 2.0
* (the "License"); you may not use this file except in compliance with
* the License. You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
package org.apache.geronimo.microprofile.metrics.common.jaxrs;
import java.net.URI;
import java.security.Principal;
import java.util.List;
import javax.ws.rs.WebApplicationException;
import javax.ws.rs.core.MultivaluedMap;
import javax.ws.rs.core.PathSegment;
import javax.ws.rs.core.SecurityContext;
import javax.ws.rs.core.UriBuilder;
import javax.ws.rs.core.UriInfo;
import com.sun.org.apache.regexp.internal.RE;
import org.junit.Test;
public class SecurityValidatorTest {
private static final SecurityContext ANONYMOUS = new SecurityContext() {
@Override
public Principal getUserPrincipal() {
return null;
}
@Override
public boolean isUserInRole(final String role) {
return false;
}
@Override
public boolean isSecure() {
return false;
}
@Override
public String getAuthenticationScheme() {
return null;
}
};
private static final SecurityContext LOGGED_NO_ROLE = new SecurityContext() {
@Override
public Principal getUserPrincipal() {
return () -> "somebody";
}
@Override
public boolean isUserInRole(final String role) {
return false;
}
@Override
public boolean isSecure() {
return false;
}
@Override
public String getAuthenticationScheme() {
return null;
}
};
private static final SecurityContext ADMIN = new SecurityContext() {
@Override
public Principal getUserPrincipal() {
return () -> "somebody";
}
@Override
public boolean isUserInRole(final String role) {
return "admin".equals(role);
}
@Override
public boolean isSecure() {
return false;
}
@Override
public String getAuthenticationScheme() {
return null;
}
};
private static final UriInfo REMOTE = uri("http://geronimo.somewhere");
private static final UriInfo LOCALHOST = uri("http://localhost");
@Test
public void localValid() {
new SecurityValidator() {{
init();
}}.checkSecurity(ANONYMOUS, LOCALHOST);
}
@Test(expected = WebApplicationException.class)
public void remoteInvalid() {
new SecurityValidator() {{
init();
}}.checkSecurity(ANONYMOUS, REMOTE);
}
@Test
public void roleValid() {
new SecurityValidator() {
{
init();
}
@Override
protected String config(final String key) {
return key.endsWith("acceptedRoles") ? "admin" : null;
}
}.checkSecurity(ADMIN, LOCALHOST);
}
@Test(expected = WebApplicationException.class)
public void roleAnonymousInvalid() {
new SecurityValidator() {
{
init();
}
@Override
protected String config(final String key) {
return key.endsWith("acceptedRoles") ? "admin" : null;
}
}.checkSecurity(ANONYMOUS, LOCALHOST);
}
@Test(expected = WebApplicationException.class)
public void roleLoggedButInvalid() {
new SecurityValidator() {
{
init();
}
@Override
protected String config(final String key) {
return key.endsWith("acceptedRoles") ? "admin" : null;
}
}.checkSecurity(LOGGED_NO_ROLE, LOCALHOST);
}
@Test
public void roleAndHostValid() {
new SecurityValidator() {
{
init();
}
@Override
protected String config(final String key) {
return key.endsWith("acceptedRoles") ? "admin" : "geronimo.somewhere";
}
}.checkSecurity(ADMIN, REMOTE);
}
private static UriInfo uri(final String request) {
return new UriInfoMock(request);
}
private static class UriInfoMock implements UriInfo {
private final URI request;
private UriInfoMock(final String request) {
this.request = URI.create(request);
}
@Override
public String getPath() {
return null;
}
@Override
public String getPath(boolean decode) {
return null;
}
@Override
public List<PathSegment> getPathSegments() {
return null;
}
@Override
public List<PathSegment> getPathSegments(boolean decode) {
return null;
}
@Override
public URI getRequestUri() {
return request;
}
@Override
public UriBuilder getRequestUriBuilder() {
return null;
}
@Override
public URI getAbsolutePath() {
return null;
}
@Override
public UriBuilder getAbsolutePathBuilder() {
return null;
}
@Override
public URI getBaseUri() {
return null;
}
@Override
public UriBuilder getBaseUriBuilder() {
return null;
}
@Override
public MultivaluedMap<String, String> getPathParameters() {
return null;
}
@Override
public MultivaluedMap<String, String> getPathParameters(boolean decode) {
return null;
}
@Override
public MultivaluedMap<String, String> getQueryParameters() {
return null;
}
@Override
public MultivaluedMap<String, String> getQueryParameters(boolean decode) {
return null;
}
@Override
public List<String> getMatchedURIs() {
return null;
}
@Override
public List<String> getMatchedURIs(boolean decode) {
return null;
}
@Override
public List<Object> getMatchedResources() {
return null;
}
@Override
public URI resolve(URI uri) {
return null;
}
@Override
public URI relativize(URI uri) {
return null;
}
}
}