Examples of org.sonatype.security.model.Configuration

• org.sonatype.security.model.Configuration

  public ValidationResponse validateModel(ValidationRequest<Configuration> request) {
    ValidationResponse response = new ValidationResponse();
    response.setContext(new SecurityValidationContext());

    Configuration model = (Configuration) request.getConfiguration();

    SecurityValidationContext context = (SecurityValidationContext) response.getContext();

    List<CPrivilege> privs = model.getPrivileges();

    if (privs != null) {
      for (CPrivilege priv : privs) {
        response.append(validatePrivilege(context, priv, false));
      }
    }

    List<CRole> roles = model.getRoles();

    if (roles != null) {
      for (CRole role : roles) {
        response.append(validateRole(context, role, false));
      }
    }

    response.append(validateRoleContainment(context));

    List<CUser> users = model.getUsers();

    if (users != null) {
      for (CUser user : users) {
        Set<String> roleIds = new HashSet<String>();
        for (CUserRoleMapping userRoleMapping : (List<CUserRoleMapping>) model.getUserRoleMappings()) {
          if (userRoleMapping.getUserId() != null && userRoleMapping.getUserId().equals(user.getId())
              && (DEFAULT_SOURCE.equals(userRoleMapping.getSource()))) {
            roleIds.addAll(userRoleMapping.getRoles());
          }
        }

        response.append(validateUser(context, user, roleIds, false));
      }
    }

    List<CUserRoleMapping> userRoleMappings = model.getUserRoleMappings();
    if (userRoleMappings != null) {
      for (CUserRoleMapping userRoleMapping : userRoleMappings) {
        response.append(this.validateUserRoleMapping(context, userRoleMapping, false));
      }
    }

    else {
      this.log.warn("Default static security configuration not found in classpath: "
          + STATIC_SECURITY_RESOURCE);
    }

    Configuration configuration = getConfiguration();

    return configuration;
  }

      setConfiguration(securityDefaults.getConfiguration());

      // check for a configuration before saving
      // if it is null use an empty configuraiton
      if (this.getConfiguration() == null) {
        Configuration configuration = new Configuration();
        configuration.setVersion(Configuration.MODEL_VERSION);
        this.setConfiguration(configuration);
      }

      saveConfiguration(getConfigurationFile());

      getLogger().error(message);
      throw new IOException("Could not create configuration file " + file.getAbsolutePath(), e);
    }

    final Configuration configuration = getConfiguration();
    checkNotNull(configuration, "Missing security configuration");

    // perform the "safe save"
    getLogger().debug("Saving configuration: {}", file);
    final FileReplacer fileReplacer = new FileReplacer(file);

    userManager.addUser(user, "my-password");

    // now delete the user
    userManager.deleteUser(userId);

    Configuration securityModel = this.getSecurityConfiguration();

    for (CUser tmpUser : securityModel.getUsers()) {
      if (userId.equals(tmpUser.getId())) {
        Assert.fail("User " + userId + " was not removed.");
      }
    }

    for (CUserRoleMapping userRoleMapping : securityModel.getUserRoleMappings()) {
      if (userId.equals(userRoleMapping.getUserId()) && "default".equals(userRoleMapping.getSource())) {
        Assert.fail("User Role Mapping was not deleted when user: " + userId + " was removed.");
      }
    }
  }

    RoleIdentifier roleIdentifier = new RoleIdentifier("default", "role2");
    roleIdentifiers.add(roleIdentifier);

    securitySystem.setUsersRoles("admin", "default", roleIdentifiers);

    Configuration securityModel = this.getSecurityConfiguration();

    boolean found = false;
    for (CUserRoleMapping roleMapping : securityModel.getUserRoleMappings()) {
      if (roleMapping.getUserId().equals("admin")) {
        found = true;

        Assert.assertEquals(1, roleMapping.getRoles().size());
        Assert.assertEquals("role2", roleMapping.getRoles().get(0));

  public void testLoadConfigWithInvalidEmail()
      throws Exception
  {
    File securityXML = new File(CONFIG_DIR, "security.xml");
    Configuration config = null;

    String userId = null;

    try (FileInputStream fis = new FileInputStream(securityXML)) {
      SecurityConfigurationXpp3Reader reader = new SecurityConfigurationXpp3Reader();
      config = reader.read(fis);
    }

    try (FileWriter fileWriter = new FileWriter(securityXML)) {
      config.getUsers().get(0).setEmail("testLoadConfigWithInvalidEmail");
      userId = config.getUsers().get(0).getId();

      SecurityConfigurationXpp3Writer writer = new SecurityConfigurationXpp3Writer();
      writer.write(fileWriter, config);
    }

  @Test
  public void modifyConfiguration()
      throws Exception
  {
    final Configuration configuration = new SecurityConfigurationXpp3Reader().read(
        new FileInputStream(util.resolveFile("target/test-classes/security.xml"))
    );

    modifier.apply(configuration);