| /* |
| * Licensed to the Apache Software Foundation (ASF) under one |
| * or more contributor license agreements. See the NOTICE file |
| * distributed with this work for additional information |
| * regarding copyright ownership. The ASF licenses this file |
| * to you under the Apache License, Version 2.0 (the |
| * "License"); you may not use this file except in compliance |
| * with the License. You may obtain a copy of the License at |
| * |
| * http://www.apache.org/licenses/LICENSE-2.0 |
| * |
| * Unless required by applicable law or agreed to in writing, |
| * software distributed under the License is distributed on an |
| * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY |
| * KIND, either express or implied. See the License for the |
| * specific language governing permissions and limitations |
| * under the License. |
| */ |
| package org.apache.syncope.fit; |
| |
| import static org.awaitility.Awaitility.await; |
| import static org.junit.jupiter.api.Assertions.assertNotNull; |
| import static org.junit.jupiter.api.Assertions.assertTrue; |
| |
| import java.io.IOException; |
| import java.util.ArrayList; |
| import java.util.List; |
| import java.util.Optional; |
| import java.util.concurrent.TimeUnit; |
| import javax.ws.rs.core.HttpHeaders; |
| import javax.ws.rs.core.MediaType; |
| import org.apache.commons.lang3.tuple.Triple; |
| import org.apache.http.Consts; |
| import org.apache.http.NameValuePair; |
| import org.apache.http.client.entity.UrlEncodedFormEntity; |
| import org.apache.http.client.methods.CloseableHttpResponse; |
| import org.apache.http.client.methods.HttpPost; |
| import org.apache.http.client.protocol.HttpClientContext; |
| import org.apache.http.impl.client.CloseableHttpClient; |
| import org.apache.http.message.BasicNameValuePair; |
| import org.apache.syncope.client.lib.SyncopeClient; |
| import org.apache.syncope.client.lib.SyncopeClientFactoryBean; |
| import org.apache.syncope.common.rest.api.service.ClientAppService; |
| import org.apache.syncope.common.rest.api.service.OIDCC4UIProviderService; |
| import org.apache.syncope.common.rest.api.service.PolicyService; |
| import org.apache.syncope.common.rest.api.service.SAML2IdPEntityService; |
| import org.apache.syncope.common.rest.api.service.SAML2SP4UIIdPService; |
| import org.apache.syncope.common.rest.api.service.SRARouteService; |
| import org.apache.syncope.common.rest.api.service.UserService; |
| import org.apache.syncope.fit.sra.AbstractSRAITCase; |
| import org.jsoup.Connection; |
| import org.jsoup.Jsoup; |
| import org.jsoup.nodes.FormElement; |
| import org.junit.jupiter.api.BeforeAll; |
| import org.slf4j.Logger; |
| import org.slf4j.LoggerFactory; |
| |
| public abstract class AbstractITCase { |
| |
| protected static final Logger LOG = LoggerFactory.getLogger(AbstractSRAITCase.class); |
| |
| protected static final String ADMIN_UNAME = "admin"; |
| |
| protected static final String ADMIN_PWD = "password"; |
| |
| protected static final String CORE_ADDRESS = "https://localhost:9443/syncope/rest"; |
| |
| protected static final String CONSOLE_ADDRESS = "https://localhost:9443/syncope-console/"; |
| |
| protected static final String ENDUSER_ADDRESS = "https://localhost:9443/syncope-enduser/"; |
| |
| protected static final String WA_ADDRESS = "https://localhost:9443/syncope-wa"; |
| |
| protected static final String EN_LANGUAGE = "en-US,en;q=0.5"; |
| |
| protected static SyncopeClientFactoryBean CLIENT_FACTORY; |
| |
| protected static SyncopeClient ADMIN_CLIENT; |
| |
| protected static UserService USER_SERVICE; |
| |
| protected static PolicyService POLICY_SERVICE; |
| |
| protected static ClientAppService CLIENT_APP_SERVICE; |
| |
| protected static SRARouteService SRA_ROUTE_SERVICE; |
| |
| protected static SAML2SP4UIIdPService SAML2SP4UI_IDP_SERVICE; |
| |
| protected static OIDCC4UIProviderService OIDCC4UI_PROVIDER_SERVICE; |
| |
| @BeforeAll |
| public static void restSetup() { |
| CLIENT_FACTORY = new SyncopeClientFactoryBean().setAddress(CORE_ADDRESS); |
| ADMIN_CLIENT = CLIENT_FACTORY.create(ADMIN_UNAME, ADMIN_PWD); |
| |
| USER_SERVICE = ADMIN_CLIENT.getService(UserService.class); |
| POLICY_SERVICE = ADMIN_CLIENT.getService(PolicyService.class); |
| CLIENT_APP_SERVICE = ADMIN_CLIENT.getService(ClientAppService.class); |
| SRA_ROUTE_SERVICE = ADMIN_CLIENT.getService(SRARouteService.class); |
| SAML2SP4UI_IDP_SERVICE = ADMIN_CLIENT.getService(SAML2SP4UIIdPService.class); |
| OIDCC4UI_PROVIDER_SERVICE = ADMIN_CLIENT.getService(OIDCC4UIProviderService.class); |
| } |
| |
| @BeforeAll |
| public static void waitForWARefresh() { |
| SAML2IdPEntityService samlIdPEntityService = ADMIN_CLIENT.getService(SAML2IdPEntityService.class); |
| |
| await().atMost(50, TimeUnit.SECONDS).pollInterval(1, TimeUnit.SECONDS).until(() -> { |
| boolean refreshed = false; |
| try { |
| samlIdPEntityService.get(SAML2IdPEntityService.DEFAULT_OWNER); |
| refreshed = true; |
| } catch (Exception e) { |
| // ignore |
| } |
| return refreshed; |
| }); |
| } |
| |
| protected static Triple<String, String, String> parseSAMLRequestForm(final String body) { |
| FormElement form = (FormElement) Jsoup.parse(body).body().getElementsByTag("form").first(); |
| assertNotNull(form); |
| |
| String action = form.attr("action"); |
| assertNotNull(action); |
| |
| Optional<String> relayState = form.formData().stream(). |
| filter(keyval -> "RelayState".equals(keyval.key())). |
| map(Connection.KeyVal::value). |
| findFirst(); |
| assertTrue(relayState.isPresent()); |
| |
| Optional<String> samlRequest = form.formData().stream(). |
| filter(keyval -> "SAMLRequest".equals(keyval.key())). |
| map(Connection.KeyVal::value). |
| findFirst(); |
| assertTrue(samlRequest.isPresent()); |
| |
| return Triple.of(action, relayState.get(), samlRequest.get()); |
| } |
| |
| protected static Triple<String, String, String> parseSAMLResponseForm(final String body) { |
| FormElement form = (FormElement) Jsoup.parse(body).body().getElementsByTag("form").first(); |
| assertNotNull(form); |
| |
| String action = form.attr("action"); |
| assertNotNull(action); |
| |
| Optional<String> relayState = form.formData().stream(). |
| filter(keyval -> "RelayState".equals(keyval.key())). |
| map(Connection.KeyVal::value). |
| findFirst(); |
| assertTrue(relayState.isPresent()); |
| |
| Optional<String> samlResponse = form.formData().stream(). |
| filter(keyval -> "SAMLResponse".equals(keyval.key())). |
| map(Connection.KeyVal::value). |
| findFirst(); |
| assertTrue(samlResponse.isPresent()); |
| |
| return Triple.of(action, relayState.get(), samlResponse.get()); |
| } |
| |
| protected static String extractWAExecution(final String body) { |
| FormElement form = (FormElement) Jsoup.parse(body).body().getElementsByTag("form").first(); |
| assertNotNull(form); |
| |
| Optional<String> execution = form.formData().stream(). |
| filter(keyval -> "execution".equals(keyval.key())). |
| map(Connection.KeyVal::value). |
| findFirst(); |
| assertTrue(execution.isPresent()); |
| |
| return execution.get(); |
| } |
| |
| protected static CloseableHttpResponse authenticateToWA( |
| final String username, |
| final String password, |
| final String body, |
| final CloseableHttpClient httpclient, |
| final HttpClientContext context) |
| throws IOException { |
| |
| List<NameValuePair> form = new ArrayList<>(); |
| form.add(new BasicNameValuePair("_eventId", "submit")); |
| form.add(new BasicNameValuePair("execution", extractWAExecution(body))); |
| form.add(new BasicNameValuePair("username", username)); |
| form.add(new BasicNameValuePair("password", password)); |
| form.add(new BasicNameValuePair("geolocation", "")); |
| |
| HttpPost post = new HttpPost(WA_ADDRESS + "/login"); |
| post.addHeader(HttpHeaders.ACCEPT, MediaType.TEXT_HTML); |
| post.addHeader(HttpHeaders.ACCEPT_LANGUAGE, EN_LANGUAGE); |
| post.setEntity(new UrlEncodedFormEntity(form, Consts.UTF_8)); |
| return httpclient.execute(post, context); |
| } |
| } |