/**
* Licensed to the Apache Software Foundation (ASF) under one or more
* contributor license agreements. See the NOTICE file distributed with
* this work for additional information regarding copyright ownership.
* The ASF licenses this file to You under the Apache License, Version 2.0
* (the "License"); you may not use this file except in compliance with
* the License. You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
package org.apache.openejb.core.security;
import junit.framework.TestCase;
import org.apache.openejb.core.security.jaas.GroupPrincipal;
import org.apache.openejb.core.security.jaas.UserPrincipal;
import org.apache.openejb.core.security.jaas.UsernamePasswordCallbackHandler;
import javax.security.auth.Subject;
import javax.security.auth.login.FailedLoginException;
import javax.security.auth.login.LoginContext;
import javax.security.auth.login.LoginException;
import java.net.URL;
import static org.apache.openejb.util.URLs.toFilePath;
public class ServiceProviderLoginModuleTest extends TestCase {
@Override
protected void setUp() throws Exception {
loadJassLoginConfig();
}
private static void loadJassLoginConfig() {
String path = System.getProperty("java.security.auth.login.config");
if (path == null) {
final URL resource = ServiceProviderLoginModuleTest.class.getClassLoader().getResource("login.config");
if (resource != null) {
path = toFilePath(resource);
System.setProperty("java.security.auth.login.config", path);
}
}
}
public void testLogin() throws LoginException {
final LoginContext context = new LoginContext("ServiceProviderLogin", new UsernamePasswordCallbackHandler("paul", ""));
context.login();
final Subject subject = context.getSubject();
assertEquals("Should have three principals", 3, subject.getPrincipals().size());
assertEquals("Should have one user principal", 1, subject.getPrincipals(UserPrincipal.class).size());
assertEquals("Should have two group principals", 2, subject.getPrincipals(GroupPrincipal.class).size());
context.logout();
assertEquals("Should have zero principals", 0, subject.getPrincipals().size());
}
public void testBadUseridLogin() throws Exception {
final LoginContext context = new LoginContext("ServiceProviderLogin", new UsernamePasswordCallbackHandler("nobody", "secret"));
try {
context.login();
fail("Should have thrown a FailedLoginException");
} catch (final FailedLoginException doNothing) {
}
}
public void testBadPWLogin() throws Exception {
final LoginContext context = new LoginContext("ServiceProviderLogin", new UsernamePasswordCallbackHandler("eddie", "panama"));
try {
context.login();
fail("Should have thrown a FailedLoginException");
} catch (final FailedLoginException doNothing) {
}
}
}