Package org.sonatype.security.realms.tools

Source Code of org.sonatype.security.realms.tools.AllPermissionsAreDefinedTest

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
/*
* Sonatype Nexus (TM) Open Source Version
* Copyright (c) 2007-2014 Sonatype, Inc.
* All rights reserved. Includes the third-party code listed at http://links.sonatype.com/products/nexus/oss/attributions.
*
* This program and the accompanying materials are made available under the terms of the Eclipse Public License Version 1.0,
* which accompanies this distribution and is available at http://www.eclipse.org/legal/epl-v10.html.
*
* Sonatype Nexus (TM) Professional Version is available from Sonatype, Inc. "Sonatype" and "Sonatype Nexus" are trademarks
* of Sonatype, Inc. Apache Maven is a trademark of the Apache Software Foundation. M2eclipse is a trademark of the
* Eclipse Foundation. All other trademarks are the property of their respective owners.
*/
package org.sonatype.security.realms.tools;

import java.util.ArrayList;
import java.util.HashSet;
import java.util.Iterator;
import java.util.List;
import java.util.Set;

import org.sonatype.nexus.restlet1x.internal.SecurityResource;
import org.sonatype.plexus.rest.resource.PathProtectionDescriptor;
import org.sonatype.plexus.rest.resource.PlexusResource;
import org.sonatype.security.model.CPrivilege;
import org.sonatype.security.model.CProperty;
import org.sonatype.security.model.Configuration;
import org.sonatype.security.rest.users.AbstractSecurityRestTest;

import junit.framework.Assert;
import org.codehaus.plexus.component.repository.ComponentDescriptor;
import org.codehaus.plexus.component.repository.exception.ComponentLookupException;
import org.codehaus.plexus.context.Context;

public class AllPermissionsAreDefinedTest
    extends AbstractSecurityRestTest
{

  private static String SECURITY_FILE = "./target/security.xml";

  @Override
  protected void setUp()
      throws Exception
  {
    super.setUp();

    // FileUtils.copyFile( new File(""), new File( SECURITY_FILE ) );
  }

  @Override
  protected void customizeContext(Context context) {
    super.customizeContext(context);
    context.put("security-xml-file", SECURITY_FILE);
  }

  /**
   * While in security-rest-api, this method was returning security related resource only, and assertion
   * is done also against it. Now that the security-rest-api is moved into restlet1x plugin, this method
   * would return way more than needed, hence, we are filtering for resources who's implementation is
   * security related, is in package org.sonatype.security only.
   */
  public List<PlexusResource> getPlexusResources()
      throws ComponentLookupException
  {
    final ArrayList<PlexusResource> result = new ArrayList<PlexusResource>();
    final List<ComponentDescriptor<PlexusResource>> cds =
        getContainer().getComponentDescriptorList(PlexusResource.class, null);
    for (ComponentDescriptor<PlexusResource> cd : cds) {
      if (cd.getImplementation().startsWith("org.sonatype.security")) {
        result.add(getContainer().lookup(PlexusResource.class, cd.getRoleHint()));
      }
    }
    return result;
  }

  @SuppressWarnings("unchecked")
  public void testEnsurePermissions()
      throws Exception
  {
    Set<String> restPerms = new HashSet<String>();
    Set<String> staticPerms = new HashSet<String>();

    for (PlexusResource plexusResource : this.getPlexusResources()) {
      PathProtectionDescriptor ppd = plexusResource.getResourceProtection();

      String expression = ppd.getFilterExpression();
      if (expression.contains("[")) {
        String permission =
            ppd.getFilterExpression().substring(expression.indexOf('[') + 1, expression.indexOf(']'));
        restPerms.add(permission);
      }
    }

    // now we have a list of permissions, we need to make sure all of these are in the static security xml.

    StaticSecurityResource restResource = new SecurityResource();
    Configuration staticConfig = restResource.getConfiguration();

    List<CPrivilege> privs = staticConfig.getPrivileges();
    for (CPrivilege privilege : privs) {
      staticPerms.add(this.getPermssionFromPrivilege(privilege));
    }

    // make sure everything in the restPerms is in the staticPerms
    for (String perm : restPerms) {

      // TODO: need to find a way of dealing with test resources
      if (!perm.startsWith("sample")) {
        Assert.assertTrue("Permission: " + perm + " is missing from SecurityRestStaticSecurityResource",
            staticPerms.contains(perm));
      }
    }

  }

  private String getPermssionFromPrivilege(CPrivilege privilege) {
    for (Iterator<CProperty> iter = privilege.getProperties().iterator(); iter.hasNext(); ) {
      CProperty prop = iter.next();
      if (prop.getKey().equals("permission")) {
        return prop.getValue();
      }
    }
    return null;
  }
}
TOP

Related Classes of org.sonatype.security.realms.tools.AllPermissionsAreDefinedTest

  • org.sonatype.nexus.restlet1x.internal.SecurityResource
  • org.sonatype.plexus.rest.resource.PathProtectionDescriptor
  • org.sonatype.security.model.Configuration
  • org.sonatype.security.model.CProperty
    • TOP
    Copyright © 2018 www.massapi.com. All rights reserved.
    All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.