| package org.apache.maven.it; |
| |
| /* |
| * Licensed to the Apache Software Foundation (ASF) under one |
| * or more contributor license agreements. See the NOTICE file |
| * distributed with this work for additional information |
| * regarding copyright ownership. The ASF licenses this file |
| * to you under the Apache License, Version 2.0 (the |
| * "License"); you may not use this file except in compliance |
| * with the License. You may obtain a copy of the License at |
| * |
| * http://www.apache.org/licenses/LICENSE-2.0 |
| * |
| * Unless required by applicable law or agreed to in writing, |
| * software distributed under the License is distributed on an |
| * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY |
| * KIND, either express or implied. See the License for the |
| * specific language governing permissions and limitations |
| * under the License. |
| */ |
| |
| import org.apache.maven.it.Verifier; |
| import org.apache.maven.it.util.ResourceExtractor; |
| |
| import java.io.File; |
| import java.util.Collections; |
| import java.util.List; |
| import java.util.Properties; |
| |
| import org.mortbay.jetty.Server; |
| import org.mortbay.jetty.handler.DefaultHandler; |
| import org.mortbay.jetty.handler.HandlerList; |
| import org.mortbay.jetty.handler.ResourceHandler; |
| import org.mortbay.jetty.security.Constraint; |
| import org.mortbay.jetty.security.ConstraintMapping; |
| import org.mortbay.jetty.security.HashUserRealm; |
| import org.mortbay.jetty.security.SecurityHandler; |
| |
| /** |
| * This is a test set for <a href="https://issues.apache.org/jira/browse/MNG-553">MNG-553</a>. |
| * |
| * @author Benjamin Bentmann |
| */ |
| public class MavenITmng0553SettingsAuthzEncryptionTest |
| extends AbstractMavenIntegrationTestCase |
| { |
| |
| private File testDir; |
| |
| private Server server; |
| |
| private int port; |
| |
| public MavenITmng0553SettingsAuthzEncryptionTest() |
| { |
| super( "[2.1.0,3.0-alpha-1),[3.0-alpha-3,)" ); |
| } |
| |
| public void setUp() |
| throws Exception |
| { |
| super.setUp(); |
| |
| testDir = ResourceExtractor.simpleExtractResources( getClass(), "/mng-0553" ); |
| |
| Constraint constraint = new Constraint(); |
| constraint.setName( Constraint.__BASIC_AUTH ); |
| constraint.setRoles( new String[] { "user" } ); |
| constraint.setAuthenticate( true ); |
| |
| ConstraintMapping constraintMapping = new ConstraintMapping(); |
| constraintMapping.setConstraint( constraint ); |
| constraintMapping.setPathSpec( "/*" ); |
| |
| HashUserRealm userRealm = new HashUserRealm( "TestRealm" ); |
| userRealm.put( "testuser", "testtest" ); |
| userRealm.addUserToRole( "testuser", "user" ); |
| |
| SecurityHandler securityHandler = new SecurityHandler(); |
| securityHandler.setUserRealm( userRealm ); |
| securityHandler.setConstraintMappings( new ConstraintMapping[] { constraintMapping } ); |
| |
| ResourceHandler repoHandler = new ResourceHandler(); |
| repoHandler.setResourceBase( new File( testDir, "repo" ).getAbsolutePath() ); |
| |
| HandlerList handlerList = new HandlerList(); |
| handlerList.addHandler( securityHandler ); |
| handlerList.addHandler( repoHandler ); |
| handlerList.addHandler( new DefaultHandler() ); |
| |
| server = new Server( 0 ); |
| server.setHandler( handlerList ); |
| server.start(); |
| |
| port = server.getConnectors()[0].getLocalPort(); |
| } |
| |
| protected void tearDown() |
| throws Exception |
| { |
| if ( server != null ) |
| { |
| server.stop(); |
| server = null; |
| } |
| |
| super.tearDown(); |
| } |
| |
| /** |
| * Test that the encrypted auth infos given in the settings.xml are decrypted. |
| */ |
| public void testitBasic() |
| throws Exception |
| { |
| testDir = new File( testDir, "test-1" ); |
| |
| Properties filterProps = new Properties(); |
| filterProps.setProperty( "@port@", Integer.toString( port ) ); |
| |
| Verifier verifier = newVerifier( testDir.getAbsolutePath() ); |
| verifier.setAutoclean( false ); |
| verifier.deleteArtifacts( "org.apache.maven.its.mng0553" ); |
| verifier.assertArtifactNotPresent( "org.apache.maven.its.mng0553", "a", "0.1-SNAPSHOT", "jar" ); |
| verifier.filterFile( "settings-template.xml", "settings.xml", "UTF-8", filterProps ); |
| setUserHome( verifier, new File( testDir, "userhome" ) ); |
| verifier.addCliOption( "--settings" ); |
| verifier.addCliOption( "settings.xml" ); |
| verifier.executeGoal( "validate" ); |
| verifier.verifyErrorFreeLog(); |
| verifier.resetStreams(); |
| |
| verifier.assertArtifactPresent( "org.apache.maven.its.mng0553", "a", "0.1-SNAPSHOT", "jar" ); |
| } |
| |
| /** |
| * Test that the encrypted auth infos given in the settings.xml are decrypted when the master password resides |
| * in an external file. |
| */ |
| public void testitRelocation() |
| throws Exception |
| { |
| testDir = new File( testDir, "test-2" ); |
| |
| Properties filterProps = new Properties(); |
| filterProps.setProperty( "@port@", Integer.toString( port ) ); |
| // NOTE: The upper-case scheme name is essential part of the test |
| String secUrl = "FILE://" + new File( testDir, "relocated-settings-security.xml" ).toURI().getRawPath(); |
| filterProps.setProperty( "@relocation@", secUrl ); |
| |
| Verifier verifier = newVerifier( testDir.getAbsolutePath() ); |
| verifier.setAutoclean( false ); |
| verifier.deleteArtifacts( "org.apache.maven.its.mng0553" ); |
| verifier.assertArtifactNotPresent( "org.apache.maven.its.mng0553", "a", "0.1-SNAPSHOT", "jar" ); |
| |
| // NOTE: The tilde ~ in the file name is essential part of the test |
| verifier.filterFile( "security-template.xml", "settings~security.xml", "UTF-8", filterProps ); |
| verifier.filterFile( "settings-template.xml", "settings.xml", "UTF-8", filterProps ); |
| |
| verifier.getSystemProperties().setProperty( "settings.security", |
| new File( testDir, "settings~security.xml" ).getAbsolutePath() ); |
| verifier.addCliOption( "--settings" ); |
| verifier.addCliOption( "settings.xml" ); |
| // NOTE: The selection of the Turkish language for the JVM locale is essential part of the test |
| verifier.executeGoal( "validate", Collections.singletonMap( "MAVEN_OPTS", "-Duser.language=tr" ) ); |
| verifier.verifyErrorFreeLog(); |
| verifier.resetStreams(); |
| |
| verifier.assertArtifactPresent( "org.apache.maven.its.mng0553", "a", "0.1-SNAPSHOT", "jar" ); |
| } |
| |
| /** |
| * Test that the CLI supports generation of encrypted (master) passwords. |
| */ |
| public void testitEncryption() |
| throws Exception |
| { |
| requiresMavenVersion( "[2.1.0,3.0-alpha-1),[3.0-alpha-7,)" ); |
| |
| testDir = new File( testDir, "test-3" ); |
| |
| Verifier verifier = newVerifier( testDir.getAbsolutePath() ); |
| verifier.setAutoclean( false ); |
| setUserHome( verifier, new File( testDir, "userhome" ) ); |
| verifier.addCliOption( "--encrypt-master-password" ); |
| verifier.addCliOption( "test" ); |
| verifier.setLogFileName( "log-emp.txt" ); |
| verifier.executeGoal( "-e" ); |
| verifier.verifyErrorFreeLog(); |
| verifier.resetStreams(); |
| |
| List<String> log = verifier.loadLines( verifier.getLogFileName(), null ); |
| assertNotNull( findPassword( log ) ); |
| |
| verifier = newVerifier( testDir.getAbsolutePath() ); |
| verifier.setAutoclean( false ); |
| setUserHome( verifier, new File( testDir, "userhome" ) ); |
| verifier.addCliOption( "--encrypt-password" ); |
| verifier.addCliOption( "testpass" ); |
| verifier.setLogFileName( "log-ep.txt" ); |
| verifier.executeGoal( "-e" ); |
| verifier.verifyErrorFreeLog(); |
| verifier.resetStreams(); |
| |
| log = verifier.loadLines( verifier.getLogFileName(), null ); |
| assertNotNull( findPassword( log ) ); |
| } |
| |
| private String findPassword( List<String> log ) |
| { |
| for ( String line : log ) |
| { |
| if ( line.matches( ".*\\{[A-Za-z0-9+/=]+\\}.*" ) ) |
| { |
| return line; |
| } |
| } |
| |
| return null; |
| } |
| |
| private void setUserHome( Verifier verifier, File home ) |
| { |
| // NOTE: We set the user.home directory instead of say settings.security to reflect Maven's normal behavior |
| String path = home.getAbsolutePath(); |
| if ( path.indexOf( ' ' ) < 0 ) |
| { |
| verifier.setEnvironmentVariable( "MAVEN_OPTS", "-Duser.home=" + path ); |
| } |
| else |
| { |
| verifier.setEnvironmentVariable( "MAVEN_OPTS", "\"-Duser.home=" + path + "\"" ); |
| } |
| } |
| |
| } |