jspwiki-main/src/test/java/org/apache/wiki/auth/TestAuthorizer.java - jspwiki - Git at Google

 /*
     Licensed to the Apache Software Foundation (ASF) under one
     or more contributor license agreements.  See the NOTICE file
     distributed with this work for additional information
     regarding copyright ownership.  The ASF licenses this file
     to you under the Apache License, Version 2.0 (the
     "License"); you may not use this file except in compliance
     with the License.  You may obtain a copy of the License at

        http://www.apache.org/licenses/LICENSE-2.0

     Unless required by applicable law or agreed to in writing,
     software distributed under the License is distributed on an
     "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
     KIND, either express or implied.  See the License for the
     specific language governing permissions and limitations
     under the License.
  */
 package org.apache.wiki.auth;

 import org.apache.wiki.api.core.Engine;
 import org.apache.wiki.api.core.Session;
 import org.apache.wiki.auth.authorize.Role;
 import org.apache.wiki.auth.authorize.WebAuthorizer;

 import javax.servlet.http.HttpServletRequest;
 import java.security.Principal;
 import java.util.Properties;

 /**
  * A very fast authorizer that does almost nothing. The WebContainerAuthorizer module is very slow, as it parses the web.xml each time,
  * so we use this for most of the different tests.
  *
  * @since 2.3
  */
 public class TestAuthorizer implements WebAuthorizer {

     private Role[] m_roles = new Role[]{
             new Role( "Admin" ),
             Role.AUTHENTICATED,
             new Role( "IT" ),
             new Role( "Finance" ),
             new Role( "Engineering" ) };

     public TestAuthorizer()
     {
         super();
     }

     @Override
     public Principal findRole( final String role )
     {
         return null;
     }

     @Override
     public void initialize( final Engine engine, final Properties props ) {
     }

     /**
      * Returns an array of Principal objects containing five elements: Role "Admin", Role.AUTHENTICATED, Role "IT", Role "Finance" and
      * Role "Engineering."
      */
     @Override
     public Principal[] getRoles()
     {
         return m_roles;
     }

     /**
      * Returns <code>true</code> if the WikiSession's Subject contains a particular role principal.
      */
     @Override
     public boolean isUserInRole( final Session session, final Principal role ) {
         if ( session == null || role == null ) {
             return false;
         }

         return session.hasPrincipal( role );
     }

     /**
      * Returns <code>true</code> if the HTTP request contains
      * a particular role principal. Delegates to
      * {@link javax.servlet.http.HttpServletRequest#isUserInRole(String)}.
      * @see org.apache.wiki.auth.authorize.WebAuthorizer#isUserInRole(javax.servlet.http.HttpServletRequest, java.security.Principal)
      */
     @Override public boolean isUserInRole( final HttpServletRequest request, final Principal role )
     {
         return request.isUserInRole( role.getName() );
     }

 }
	/*
	Licensed to the Apache Software Foundation (ASF) under one
	or more contributor license agreements. See the NOTICE file
	distributed with this work for additional information
	regarding copyright ownership. The ASF licenses this file
	to you under the Apache License, Version 2.0 (the
	"License"); you may not use this file except in compliance
	with the License. You may obtain a copy of the License at

	http://www.apache.org/licenses/LICENSE-2.0

	Unless required by applicable law or agreed to in writing,
	software distributed under the License is distributed on an
	"AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
	KIND, either express or implied. See the License for the
	specific language governing permissions and limitations
	under the License.
	*/
	package org.apache.wiki.auth;

	import org.apache.wiki.api.core.Engine;
	import org.apache.wiki.api.core.Session;
	import org.apache.wiki.auth.authorize.Role;
	import org.apache.wiki.auth.authorize.WebAuthorizer;

	import javax.servlet.http.HttpServletRequest;
	import java.security.Principal;
	import java.util.Properties;

	/**
	* A very fast authorizer that does almost nothing. The WebContainerAuthorizer module is very slow, as it parses the web.xml each time,
	* so we use this for most of the different tests.
	*
	* @since 2.3
	*/
	public class TestAuthorizer implements WebAuthorizer {

	private Role[] m_roles = new Role[]{
	new Role( "Admin" ),
	Role.AUTHENTICATED,
	new Role( "IT" ),
	new Role( "Finance" ),
	new Role( "Engineering" ) };

	public TestAuthorizer()
	{
	super();
	}

	@Override
	public Principal findRole( final String role )
	{
	return null;
	}

	@Override
	public void initialize( final Engine engine, final Properties props ) {
	}

	/**
	* Returns an array of Principal objects containing five elements: Role "Admin", Role.AUTHENTICATED, Role "IT", Role "Finance" and
	* Role "Engineering."
	*/
	@Override
	public Principal[] getRoles()
	{
	return m_roles;
	}

	/**
	* Returns <code>true</code> if the WikiSession's Subject contains a particular role principal.
	*/
	@Override
	public boolean isUserInRole( final Session session, final Principal role ) {
	if ( session == null \|\| role == null ) {
	return false;
	}

	return session.hasPrincipal( role );
	}

	/**
	* Returns <code>true</code> if the HTTP request contains
	* a particular role principal. Delegates to
	* {@link javax.servlet.http.HttpServletRequest#isUserInRole(String)}.
	* @see org.apache.wiki.auth.authorize.WebAuthorizer#isUserInRole(javax.servlet.http.HttpServletRequest, java.security.Principal)
	*/
	@Override public boolean isUserInRole( final HttpServletRequest request, final Principal role )
	{
	return request.isUserInRole( role.getName() );
	}

	}