Google Git
Sign in
apache / maven-integration-testing / refs/heads/master / . / core-it-suite / src / test / java / org / apache / maven / it / MavenITmng4470AuthenticatedDeploymentToProxyTest.java
blob: c56d065369813b4584ec605538042ceaa233c882 [file] [log] [blame]
/*
* Licensed to the Apache Software Foundation (ASF) under one
* or more contributor license agreements. See the NOTICE file
* distributed with this work for additional information
* regarding copyright ownership. The ASF licenses this file
* to you under the Apache License, Version 2.0 (the
* "License"); you may not use this file except in compliance
* with the License. You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing,
* software distributed under the License is distributed on an
* "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
* KIND, either express or implied. See the License for the
* specific language governing permissions and limitations
* under the License.
*/
package org.apache.maven.it;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import java.io.File;
import java.nio.charset.StandardCharsets;
import java.util.Base64;
import java.util.Collections;
import java.util.Deque;
import java.util.concurrent.ConcurrentLinkedDeque;
import org.apache.maven.it.utils.DeployedResource;
import org.apache.maven.shared.verifier.Verifier;
import org.apache.maven.shared.verifier.util.ResourceExtractor;
import org.codehaus.plexus.util.StringUtils;
import org.eclipse.jetty.security.ConstraintMapping;
import org.eclipse.jetty.security.ConstraintSecurityHandler;
import org.eclipse.jetty.security.HashLoginService;
import org.eclipse.jetty.security.UserStore;
import org.eclipse.jetty.server.Handler;
import org.eclipse.jetty.server.NetworkConnector;
import org.eclipse.jetty.server.Request;
import org.eclipse.jetty.server.Server;
import org.eclipse.jetty.server.handler.AbstractHandler;
import org.eclipse.jetty.server.handler.HandlerList;
import org.eclipse.jetty.util.security.Constraint;
import org.eclipse.jetty.util.security.Password;
import org.junit.jupiter.api.AfterEach;
import org.junit.jupiter.api.BeforeEach;
import org.junit.jupiter.api.Test;
import static org.eclipse.jetty.util.security.Constraint.__BASIC_AUTH;
/**
* This is a test set for <a href="https://issues.apache.org/jira/browse/MNG-4470">MNG-4470</a>.
*
* @author Benjamin Bentmann
*
*/
public class MavenITmng4470AuthenticatedDeploymentToProxyTest extends AbstractMavenIntegrationTestCase {
private Server server;
private int port;
private volatile boolean deployed;
private final Deque<DeployedResource> deployedResources = new ConcurrentLinkedDeque<>();
public MavenITmng4470AuthenticatedDeploymentToProxyTest() {
super("[2.0.3,3.0-alpha-1),[3.0-alpha-6,)");
}
@BeforeEach
protected void setUp() throws Exception {
Handler proxyHandler = new AbstractHandler() {
@Override
public void handle(
String target, Request baseRequest, HttpServletRequest request, HttpServletResponse response) {
String tn = Thread.currentThread().getName();
System.out.println(tn + " Handling (proxy) " + request.getMethod() + " " + request.getRequestURL());
String auth = request.getHeader("Proxy-Authorization");
if (auth != null) {
auth = auth.substring(auth.indexOf(' ') + 1).trim();
auth = new String(Base64.getDecoder().decode(auth), StandardCharsets.US_ASCII);
}
System.out.println(tn + " Proxy-Authorization: " + auth);
if (!"proxyuser:proxypass".equals(auth)) {
response.setStatus(HttpServletResponse.SC_PROXY_AUTHENTICATION_REQUIRED);
response.addHeader("Proxy-Authenticate", "Basic realm=\"Squid proxy-caching web server\"");
((Request) request).setHandled(true);
}
DeployedResource deployedResource = new DeployedResource();
deployedResource.httpMethod = request.getMethod();
deployedResource.requestUri = request.getRequestURI();
deployedResource.transferEncoding = request.getHeader("Transfer-Encoding");
deployedResource.contentLength = request.getHeader("Content-Length");
deployedResources.add(deployedResource);
System.out.println(tn + " Done (proxy) " + request.getMethod() + " " + request.getRequestURL());
}
};
Handler repoHandler = new AbstractHandler() {
@Override
public void handle(
String target, Request baseRequest, HttpServletRequest request, HttpServletResponse response) {
String tn = Thread.currentThread().getName();
System.out.println(tn + " Handling (repos) " + request.getMethod() + " " + request.getRequestURL());
if ("PUT".equalsIgnoreCase(request.getMethod())) {
response.setStatus(HttpServletResponse.SC_OK);
deployed = true;
} else {
response.setStatus(HttpServletResponse.SC_NOT_FOUND);
}
((Request) request).setHandled(true);
DeployedResource deployedResource = new DeployedResource();
deployedResource.httpMethod = request.getMethod();
deployedResource.requestUri = request.getRequestURI();
deployedResource.transferEncoding = request.getHeader("Transfer-Encoding");
deployedResource.contentLength = request.getHeader("Content-Length");
deployedResources.add(deployedResource);
System.out.println(tn + " Done (repos) " + request.getMethod() + " " + request.getRequestURL());
}
};
Constraint constraint = new Constraint();
constraint.setName(Constraint.__BASIC_AUTH);
constraint.setRoles(new String[] {"deployer"});
constraint.setAuthenticate(true);
ConstraintMapping constraintMapping = new ConstraintMapping();
constraintMapping.setConstraint(constraint);
constraintMapping.setPathSpec("/*");
HashLoginService userRealm = new HashLoginService("TestRealm");
UserStore userStore = new UserStore();
userStore.addUser("testuser", new Password("testtest"), new String[] {"deployer"});
userRealm.setUserStore(userStore);
server = new Server(0);
ConstraintSecurityHandler securityHandler = new ConstraintSecurityHandler();
securityHandler.setLoginService(userRealm);
securityHandler.setAuthMethod(__BASIC_AUTH);
securityHandler.setConstraintMappings(new ConstraintMapping[] {constraintMapping});
HandlerList handlerList = new HandlerList();
handlerList.addHandler(proxyHandler);
handlerList.addHandler(securityHandler);
handlerList.addHandler(repoHandler);
server.setHandler(handlerList);
server.start();
if (server.isFailed()) {
fail("Couldn't bind the server socket to a free port!");
}
port = ((NetworkConnector) server.getConnectors()[0]).getLocalPort();
System.out.println("Bound server socket to the port " + port);
deployed = false;
}
@AfterEach
protected void tearDown() throws Exception {
if (server != null) {
server.stop();
server.join();
}
}
/**
* Test that deployment (of a release) to a proxy that requires authentication works.
*
* @throws Exception in case of failure
*/
@Test
public void testitRelease() throws Exception {
testit("release");
}
/**
* Test that deployment (of a snapshot) to a proxy that requires authentication works.
*
* @throws Exception in case of failure
*/
@Test
public void testitSnapshot() throws Exception {
testit("snapshot");
}
private void testit(String project) throws Exception {
File testDir = ResourceExtractor.simpleExtractResources(getClass(), "/mng-4470/" + project);
Verifier verifier = newVerifier(testDir.getAbsolutePath());
verifier.setAutoclean(false);
verifier.filterFile(
"settings-template.xml",
"settings.xml",
"UTF-8",
Collections.singletonMap("@port@", Integer.toString(port)));
verifier.addCliArgument("--settings");
verifier.addCliArgument("settings.xml");
verifier.addCliArgument("validate");
verifier.execute();
verifier.verifyErrorFreeLog();
for (DeployedResource deployedResource : deployedResources) {
if (StringUtils.equalsIgnoreCase("chunked", deployedResource.transferEncoding)) {
fail("deployedResource " + deployedResource
+ " use chunked transfert encoding some http server doesn't support that");
}
}
assertTrue(deployed);
}
}