| /* |
| * Licensed to the Apache Software Foundation (ASF) under one |
| * or more contributor license agreements. See the NOTICE file |
| * distributed with this work for additional information |
| * regarding copyright ownership. The ASF licenses this file |
| * to you under the Apache License, Version 2.0 (the |
| * "License"); you may not use this file except in compliance |
| * with the License. You may obtain a copy of the License at |
| * |
| * http://www.apache.org/licenses/LICENSE-2.0 |
| * |
| * Unless required by applicable law or agreed to in writing, |
| * software distributed under the License is distributed on an |
| * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY |
| * KIND, either express or implied. See the License for the |
| * specific language governing permissions and limitations |
| * under the License. |
| */ |
| package org.apache.shiro.realm.ldap; |
| |
| import org.junit.jupiter.api.BeforeEach; |
| import org.junit.jupiter.api.Test; |
| |
| import javax.naming.AuthenticationException; |
| import javax.naming.Context; |
| import javax.naming.NamingException; |
| import javax.naming.ldap.LdapContext; |
| import java.util.HashMap; |
| import java.util.Hashtable; |
| import java.util.Map; |
| import java.util.UUID; |
| |
| import static org.easymock.EasyMock.createNiceMock; |
| import static org.junit.jupiter.api.Assertions.assertEquals; |
| import static org.junit.jupiter.api.Assertions.assertNotNull; |
| import static org.junit.jupiter.api.Assertions.assertNull; |
| import static org.junit.jupiter.api.Assertions.assertThrows; |
| |
| |
| /** |
| * Tests for the {@link JndiLdapContextFactory} class. |
| * |
| * @since 1.1 |
| */ |
| public class JndiLdapContextFactoryTest { |
| |
| private JndiLdapContextFactory factory; |
| |
| @BeforeEach |
| public void setUp() { |
| factory = new JndiLdapContextFactory() { |
| //Fake a JNDI environment for the tests: |
| @Override |
| protected LdapContext createLdapContext(Hashtable env) throws NamingException { |
| return createNiceMock(LdapContext.class); |
| } |
| }; |
| } |
| |
| /** |
| * This is the only test that does not fake the JNDI environment. It is provided for 100% test coverage. |
| * |
| * @throws NamingException thrown because the host is always broken. |
| */ |
| @Test |
| void testGetLdapContext() throws NamingException { |
| assertThrows(NamingException.class, () -> { |
| factory = new JndiLdapContextFactory(); |
| //garbage URL to test that the context is being created, but fails: |
| String brokenHost = UUID.randomUUID().toString(); |
| factory.setUrl("ldap://" + brokenHost + ":389"); |
| factory.getLdapContext("foo", "bar"); |
| }); |
| } |
| |
| @Test |
| void testAuthenticationMechanism() { |
| String mech = "MD5-DIGEST"; |
| factory.setAuthenticationMechanism(mech); |
| assertEquals(mech, factory.getAuthenticationMechanism()); |
| } |
| |
| @Test |
| void testReferral() { |
| String referral = "throw"; |
| factory.setReferral(referral); |
| assertEquals(referral, factory.getReferral()); |
| } |
| |
| @Test |
| void testGetContextFactoryClassName() { |
| assertEquals(JndiLdapContextFactory.DEFAULT_CONTEXT_FACTORY_CLASS_NAME, factory.getContextFactoryClassName()); |
| } |
| |
| @Test |
| void testSetEnvironmentPropertyNull() { |
| factory.setAuthenticationMechanism("MD5-DIGEST"); |
| factory.setAuthenticationMechanism(null); |
| assertNull(factory.getAuthenticationMechanism()); |
| } |
| |
| @Test |
| void testCustomEnvironment() { |
| Map<String, String> map = new HashMap<String, String>(); |
| map.put("foo", "bar"); |
| factory.setEnvironment(map); |
| assertEquals("bar", factory.getEnvironment().get("foo")); |
| } |
| |
| @Test |
| void testGetLdapContextWithoutUrl() throws NamingException { |
| assertThrows(IllegalStateException.class, () -> { |
| factory.getLdapContext("foo", "bar"); |
| }); |
| } |
| |
| @Test |
| void testGetLdapContextDefault() throws NamingException { |
| factory = new JndiLdapContextFactory() { |
| @Override |
| protected LdapContext createLdapContext(Hashtable env) throws NamingException { |
| assertEquals("ldap://localhost:389", env.get(Context.PROVIDER_URL)); |
| assertEquals("foo", env.get(Context.SECURITY_PRINCIPAL)); |
| assertEquals("bar", env.get(Context.SECURITY_CREDENTIALS)); |
| assertEquals("simple", env.get(Context.SECURITY_AUTHENTICATION)); |
| assertNull(env.get(SUN_CONNECTION_POOLING_PROPERTY)); |
| return createNiceMock(LdapContext.class); |
| } |
| }; |
| |
| factory.setUrl("ldap://localhost:389"); |
| factory.getLdapContext("foo", "bar"); |
| } |
| |
| @SuppressWarnings({"deprecation"}) |
| @Test |
| void testGetLdapContextStringArguments() throws NamingException { |
| factory = new JndiLdapContextFactory() { |
| @Override |
| protected LdapContext createLdapContext(Hashtable env) throws NamingException { |
| assertEquals("ldap://localhost:389", env.get(Context.PROVIDER_URL)); |
| assertEquals("foo", env.get(Context.SECURITY_PRINCIPAL)); |
| assertEquals("bar", env.get(Context.SECURITY_CREDENTIALS)); |
| assertEquals("simple", env.get(Context.SECURITY_AUTHENTICATION)); |
| assertNull(env.get(SUN_CONNECTION_POOLING_PROPERTY)); |
| return createNiceMock(LdapContext.class); |
| } |
| }; |
| |
| factory.setUrl("ldap://localhost:389"); |
| factory.getLdapContext("foo", "bar"); |
| } |
| |
| @Test |
| void testGetSystemLdapContext() throws NamingException { |
| factory = new JndiLdapContextFactory() { |
| @Override |
| protected LdapContext createLdapContext(Hashtable env) throws NamingException { |
| assertEquals("ldap://localhost:389", env.get(Context.PROVIDER_URL)); |
| assertEquals("foo", env.get(Context.SECURITY_PRINCIPAL)); |
| assertEquals("bar", env.get(Context.SECURITY_CREDENTIALS)); |
| assertEquals("simple", env.get(Context.SECURITY_AUTHENTICATION)); |
| assertNotNull(env.get(SUN_CONNECTION_POOLING_PROPERTY)); |
| return createNiceMock(LdapContext.class); |
| } |
| }; |
| |
| factory.setSystemUsername("foo"); |
| factory.setSystemPassword("bar"); |
| factory.setUrl("ldap://localhost:389"); |
| factory.getSystemLdapContext(); |
| } |
| |
| @Test |
| void testGetSystemLdapContextPoolingDisabled() throws NamingException { |
| factory = new JndiLdapContextFactory() { |
| @Override |
| protected LdapContext createLdapContext(Hashtable env) throws NamingException { |
| assertEquals("ldap://localhost:389", env.get(Context.PROVIDER_URL)); |
| assertEquals("foo", env.get(Context.SECURITY_PRINCIPAL)); |
| assertEquals("bar", env.get(Context.SECURITY_CREDENTIALS)); |
| assertEquals("simple", env.get(Context.SECURITY_AUTHENTICATION)); |
| assertNull(env.get(SUN_CONNECTION_POOLING_PROPERTY)); |
| return createNiceMock(LdapContext.class); |
| } |
| }; |
| |
| factory.setSystemUsername("foo"); |
| factory.setSystemPassword("bar"); |
| factory.setPoolingEnabled(false); |
| factory.setUrl("ldap://localhost:389"); |
| factory.getSystemLdapContext(); |
| } |
| |
| @Test |
| void testEmptyStringCredentials() throws NamingException { |
| assertThrows(AuthenticationException.class, () -> { |
| factory.setUrl("ldap://localhost:389"); |
| factory.getLdapContext("jcoder", ""); |
| }); |
| } |
| |
| @Test |
| void testEmptyCharArrayCredentials() throws NamingException { |
| assertThrows(AuthenticationException.class, () -> { |
| factory.setUrl("ldap://localhost:389"); |
| factory.getLdapContext("jcoder", new char[0]); |
| }); |
| } |
| |
| @Test |
| void testEmptyByteArrayCredentials() throws NamingException { |
| assertThrows(AuthenticationException.class, () -> { |
| factory.setUrl("ldap://localhost:389"); |
| factory.getLdapContext("jcoder", new byte[0]); |
| }); |
| } |
| |
| @Test |
| void testEmptyNullCredentials() throws NamingException { |
| assertThrows(AuthenticationException.class, () -> { |
| factory.setUrl("ldap://localhost:389"); |
| factory.getLdapContext("jcoder", null); |
| }); |
| } |
| |
| |
| } |