Examples of org.apache.wicket.security.hive.authorization.SimplePrincipal

• org.apache.wicket.security.hive.authorization.SimplePrincipal
  A very simple principal. It does not imply any subject on its own. This is only provided as a convenience to get started. Developers are likely to build there own principal and decorate it with jpa annotations to store / retrieve it from a database where they are coupled to users. @author marrink

  protected Subject getSubject(String username, String password) throws LoginException
  {
    // TODO verify username, password, if user is not authenticated throw a LoginException
    DefaultSubject subject = new DefaultSubject();
    // grant principals to the user based on .....
    subject.addPrincipal(new SimplePrincipal("something"));
    return subject;
  }

  protected Subject getSubject(String username, String password) throws LoginException
  {
    if (username != null && Objects.equal(username, password))
    {
      DefaultSubject subject = new DefaultSubject();
      subject.addPrincipal(new SimplePrincipal("user"));

      if (username.equalsIgnoreCase("admin"))
      {
        subject.addPrincipal(new SimplePrincipal("admin"));
      }
      return subject;
    }
    throw new LoginException("Username and password do not match any known user.");
  }

  {
    // TODO verify username, password, if user is not authenticated throw a
    // LoginException
    DefaultSubject subject = new DefaultSubject();
    // grant principals to the user based on .....
    subject.addPrincipal(new SimplePrincipal("something"));
    return subject;
  }

      {
        context = new PrimaryLoginContext();
      }
      else if ("all".equals(username))
      {
        context = new CustomLoginContext(new SimplePrincipal("all permissions"));
      }
      else
      {
        context = new CustomLoginContext(new SimplePrincipal(username));
      }
      ((WaspSession) Session.get()).login(context);
      if (!continueToOriginalDestination())
        setResponsePage(Application.get().getHomePage());
      return true;

    factory.setAlias("auth", "org.apache.wicket.security.hive.authorization");
    // based on policy content we can expect the following
    // principals/permissions
    Hive hive = factory.createHive();
    assertTrue(hive.containsPrincipal(new EverybodyPrincipal()));
    assertTrue(hive.containsPrincipal(new SimplePrincipal("test1")));
    assertTrue(hive.containsPrincipal(new SimplePrincipal("test2")));
    assertTrue(hive.containsPrincipal(new SimplePrincipal("test6")));
    assertTrue(hive.containsPermission(new TestPermission("A", "inherit, render")));
    assertTrue(hive.containsPermission(new TestPermission("A", "enable")));
    assertTrue(hive.containsPermission(new TestPermission("1.A", "inherit, render")));
    assertTrue(hive.containsPermission(new TestPermission("1.A", "enable")));
    assertFalse(hive.containsPermission(new TestPermission("2.A", "inherit, render")));
    assertFalse(hive.containsPermission(new TestPermission("2.A", "enable")));
    assertTrue(hive.containsPermission(new TestPermission("2.B", "inherit, render, enable")));
    assertTrue(hive.containsPermission(new TestPermission("2.B", "enable")));
    assertTrue(hive.containsPermission(new TestPermission("2.C", "render, enable")));
    assertTrue(hive.containsPermission(new TestPermission("2.C.1", "enable")));
    assertTrue(hive.containsPermission(new TestPermission("7.A", "inherit, render")));
    assertTrue(hive.containsPermission(new TestPermission("7.A", "enable")));
    assertTrue(hive.containsPermission(new TestPermission("7.B", "inherit, render, enable")));
    assertTrue(hive.containsPermission(new TestPermission("7.B", "enable")));
    assertTrue(hive.containsPermission(new TestPermission("7.C", "render, enable")));
    assertTrue(hive.containsPermission(new TestPermission("7.C.1", "enable")));
    assertFalse(hive.containsPermission(new TestPermission("6.A", "inherit, render")));
    assertFalse(hive.containsPermission(new TestPermission("6.A", "enable")));
    assertFalse(hive.containsPermission(new TestPermission("6.B", "inherit, render, enable")));
    assertFalse(hive.containsPermission(new TestPermission("6.B", "enable")));
    assertFalse(hive.containsPermission(new TestPermission("6.C", "render, enable")));
    assertFalse(hive.containsPermission(new TestPermission("6.C.1", "enable")));
    assertTrue(hive.containsPrincipal(new SimplePrincipal("test8")));
    assertTrue(hive.containsPermission(new TestPermission("8.A")));
    assertTrue(hive.containsPermission(new TestPermission("8.B")));
    assertFalse(hive.containsPermission(new FaultyPermission()));
    assertTrue(hive.containsPrincipal(new SimplePrincipal("test9")));
    assertTrue(hive.containsPermission(new TestPermission("9.A")));
    assertTrue(hive.containsPermission(new TestPermission("9.B", "test")));
    assertTrue(hive.containsPrincipal(new SimplePrincipal("test9B")));
    assertTrue(hive.containsPermission(new TestPermission(
      "test.ContainerPage2:test.ContainerPage2$SecureMarkupContainer", "inherit, render")));
    assertTrue(hive.containsPermission(new TestPermission(
      "test2.ContainerPage2:test.ContainerPage2$SecureMarkupContainer", "inherit, render")));
    assertTrue(hive.containsPrincipal(new SimplePrincipal("test10")));
    assertTrue(hive.containsPermission(new TestPermission("10.B")));
  }

   */
  @Override
  public Subject login()
  {
    DefaultSubject defaultSubject = new MySubject();
    defaultSubject.addPrincipal(new SimplePrincipal("basic"));
    return defaultSubject;
  }

      @Override
      public Subject login()
      {
        DefaultSubject subject = new DefaultSubject();
        subject.addPrincipal(new SimplePrincipal("home"));
        return subject;
      }
    };
    assertFalse(container.isClassAuthenticated(getClass()));
    try

      WicketTester mock = new WicketTester();
      mock.setupRequestAndResponse();
      container.login(low);
      assertFalse(container.isClassAuthenticated(VerySecurePage.class));
      assertTrue(container.getSubject().getPrincipals()
        .contains(new SimplePrincipal("basic")));
      assertFalse(container.getSubject().getPrincipals().contains(
        new SimplePrincipal("admin")));
      container.login(high);
      assertTrue(container.isClassAuthenticated(VerySecurePage.class));
      assertTrue(container.getSubject().getPrincipals()
        .contains(new SimplePrincipal("admin")));
      mock.processRequestCycle();
      mock.destroy();
    }
    catch (LoginException e)
    {

      BasicHive hive;
      if (cache)
        hive = new SimpleCachingHive();
      else
        hive = new BasicHive();
      Principal principal = new SimplePrincipal("speed");
      SwarmAction action = (SwarmAction) actionFactory.getAction("access, render");
      hive.addPermission(principal, new ComponentPermission(
        "org.apache.wicket.security.pages.SpeedPage", action));
      for (int i = 0; i < ROWS; i++)
      {

   */
  public void testGetPrincipals()
  {
    BasicHive hive = new BasicHive();
    hive.addPermission(new EverybodyPrincipal(), new TestPermission("foobar"));
    hive.addPermission(new SimplePrincipal("foo.bar"), new TestPermission("foobar"));
    hive.addPermission(new EverybodyPrincipal(), new TestPermission("test", "read, write"));
    assertEquals(Collections.EMPTY_SET, hive.getPrincipals(new TestPermission("foo")));
    Set<Principal> principals = hive.getPrincipals(new TestPermission("foobar"));
    assertEquals(2, principals.size());
    assertTrue(principals.contains(new EverybodyPrincipal()));
    assertTrue(principals.contains(new SimplePrincipal("foo.bar")));
    principals = hive.getPrincipals(new TestPermission("test", "read, write"));
    assertEquals(1, principals.size());
    assertTrue(principals.contains(new EverybodyPrincipal()));

  }