Google Git
Sign in
apache / jackrabbit-oak / 89773459d65d1753f05feecbae18333d42e4d775 / . / trunk / oak-core / src / test / java / org / apache / jackrabbit / oak / security / user / AbstractGroupPrincipalTest.java
blob: ea963e04afac3ec11baaa7873749ff5b6fd19383 [file] [log] [blame]
/*
* Licensed to the Apache Software Foundation (ASF) under one or more
* contributor license agreements. See the NOTICE file distributed with
* this work for additional information regarding copyright ownership.
* The ASF licenses this file to You under the Apache License, Version 2.0
* (the "License"); you may not use this file except in compliance with
* the License. You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
package org.apache.jackrabbit.oak.security.user;
import java.security.Principal;
import java.util.Iterator;
import java.util.List;
import javax.jcr.RepositoryException;
import com.google.common.collect.ImmutableList;
import org.apache.jackrabbit.api.security.user.Authorizable;
import org.apache.jackrabbit.api.security.user.Group;
import org.apache.jackrabbit.api.security.user.UserManager;
import org.apache.jackrabbit.oak.AbstractSecurityTest;
import org.apache.jackrabbit.oak.spi.security.principal.EveryonePrincipal;
import org.apache.jackrabbit.oak.spi.security.principal.PrincipalImpl;
import org.jetbrains.annotations.NotNull;
import org.junit.Test;
import org.mockito.Mockito;
import static org.junit.Assert.assertFalse;
import static org.junit.Assert.assertTrue;
import static org.mockito.Mockito.when;
public class AbstractGroupPrincipalTest extends AbstractSecurityTest {
private Group testGroup;
private AbstractGroupPrincipal agp;
private AbstractGroupPrincipal everyoneAgp;
private AbstractGroupPrincipal throwing;
@Override
public void before() throws Exception {
super.before();
testGroup = getUserManager(root).createGroup("AbstractGroupPrincipalTest");
root.commit();
agp = new AGP();
everyoneAgp = new AGP();
((AGP) everyoneAgp).isEveryone = true;
throwing = new ThrowingAGP();
}
@Override
public void after() throws Exception {
try {
if (testGroup != null) {
testGroup.remove();
root.commit();
}
} finally {
super.after();
}
}
@Test
public void testIsMemberOf() throws Exception {
final Principal p = getTestUser().getPrincipal();
assertTrue(agp.isMember(p));
assertTrue(agp.isMember(new PrincipalImpl(p.getName())));
assertTrue(agp.isMember(new Principal() {
@Override
public String getName() {
return p.getName();
}
}));
}
@Test
public void testIsMemberMissingAuthorizable() throws RepositoryException {
List<Principal> principals = ImmutableList.of(
new PrincipalImpl("name"),
new Principal() {
@Override
public String getName() {
return "name";
}
}
);
for (Principal p : principals) {
assertFalse(agp.isMember(p));
}
}
@Test
public void testIsMemberOfEveryone() throws Exception {
final Principal p = getTestUser().getPrincipal();
assertTrue(everyoneAgp.isMember(p));
assertTrue(everyoneAgp.isMember(new PrincipalImpl(p.getName())));
assertTrue(everyoneAgp.isMember(new Principal() {
@Override
public String getName() {
return p.getName();
}
}));
}
@Test
public void testIsMemberOfEveryoneMissingAuthorizable() throws RepositoryException {
List<Principal> principals = ImmutableList.of(
new PrincipalImpl("name"),
new Principal() {
@Override
public String getName() {
return "name";
}
}
);
for (Principal p : principals) {
assertTrue(everyoneAgp.isMember(p));
}
}
@Test
public void testIsMemberOfInternalError() throws Exception {
final Principal p = getTestUser().getPrincipal();
assertFalse(throwing.isMember(p));
}
@Test(expected = IllegalStateException.class)
public void testMembersInternalError() throws Exception {
throwing.members();
}
@Test
public void testEveryoneIsMemberOfEveryone() throws RepositoryException {
AbstractGroupPrincipal member = Mockito.mock(AbstractGroupPrincipal.class);
when(member.getName()).thenReturn(EveryonePrincipal.NAME);
assertFalse(everyoneAgp.isMember(member));
}
private class AGP extends AbstractGroupPrincipal {
private Authorizable member;
private boolean isEveryone;
AGP() throws Exception {
super(testGroup.getPrincipal().getName(), root.getTree(testGroup.getPath()), getNamePathMapper());
member = getTestUser();
}
@Override
UserManager getUserManager() {
return AbstractGroupPrincipalTest.this.getUserManager(root);
}
@Override
boolean isEveryone() throws RepositoryException {
return isEveryone;
}
@Override
boolean isMember(@NotNull Authorizable authorizable) throws RepositoryException {
return member.getID().equals(authorizable.getID());
}
@NotNull
@Override
Iterator<Authorizable> getMembers() throws RepositoryException {
return ImmutableList.of(member).iterator();
}
}
private class ThrowingAGP extends AGP {
ThrowingAGP() throws Exception {
super();
}
@Override
UserManager getUserManager() {
UserManager userManager = Mockito.mock(UserManager.class);
Mockito.doThrow(RepositoryException.class);
return userManager;
}
@Override
boolean isEveryone() throws RepositoryException {
throw new RepositoryException();
}
@Override
boolean isMember(@NotNull Authorizable authorizable) throws RepositoryException {
throw new RepositoryException();
}
@NotNull
@Override
Iterator<Authorizable> getMembers() throws RepositoryException {
throw new RepositoryException();
}
}
}