Package org.geomajas.internal.security

Source Code of org.geomajas.internal.security.SecurityContextBaseAuthorizationTest

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
/*
* This is part of Geomajas, a GIS framework, http://www.geomajas.org/.
*
* Copyright 2008-2011 Geosparc nv, http://www.geosparc.com/, Belgium.
*
* The program is available in open source according to the GNU Affero
* General Public License. All contributions in this program are covered
* by the Geomajas Contributors License Agreement. For full licensing
* details, see LICENSE.txt in the project root.
*/

package org.geomajas.internal.security;

import java.util.ArrayList;
import java.util.List;

import junit.framework.Assert;

import org.geomajas.security.Authentication;
import org.geomajas.security.BaseAuthorization;
import org.geomajas.security.allowall.AllowAllAuthorization;
import org.junit.Test;

/**
* Testing of BaseAuthorization related data in the security context.
*
* @author Joachim Van der Auwera
*/
public class SecurityContextBaseAuthorizationTest {

  private static final String TOOL_ID = "Tool";
  private static final String COMMAND_NAME = "Command";
  private static final String LAYER_ID = "layer";

  @Test
  public void testAuthorizedOne() {
    SecurityContextImpl securityContext = new SecurityContextImpl();
    List<Authentication> authentications = new ArrayList<Authentication>();
    Authentication authentication;
    authentication = new Authentication();
    authentication.setAuthorizations(
        new BaseAuthorization[]{new AllowAllAuthorization(), new AllowNoneAuthorization()});
    authentications.add(authentication);
    securityContext.setAuthentications("token", authentications);
    Assert.assertTrue(securityContext.isToolAuthorized(TOOL_ID));
    Assert.assertTrue(securityContext.isCommandAuthorized(COMMAND_NAME));
    Assert.assertTrue(securityContext.isLayerVisible(LAYER_ID));
    Assert.assertTrue(securityContext.isLayerCreateAuthorized(LAYER_ID));
    Assert.assertTrue(securityContext.isLayerUpdateAuthorized(LAYER_ID));
    Assert.assertTrue(securityContext.isLayerDeleteAuthorized(LAYER_ID));
  }

  @Test
  public void testAuthorizedOther() {
    SecurityContextImpl securityContext = new SecurityContextImpl();
    List<Authentication> authentications = new ArrayList<Authentication>();
    Authentication authentication;
    authentication = new Authentication();
    authentication.setAuthorizations(
        new BaseAuthorization[]{new AllowNoneAuthorization(), new AllowAllAuthorization()});
    authentications.add(authentication);
    securityContext.setAuthentications("token", authentications);
    Assert.assertTrue(securityContext.isToolAuthorized(TOOL_ID));
    Assert.assertTrue(securityContext.isCommandAuthorized(COMMAND_NAME));
    Assert.assertTrue(securityContext.isLayerVisible(LAYER_ID));
    Assert.assertTrue(securityContext.isLayerCreateAuthorized(LAYER_ID));
    Assert.assertTrue(securityContext.isLayerUpdateAuthorized(LAYER_ID));
    Assert.assertTrue(securityContext.isLayerDeleteAuthorized(LAYER_ID));
  }

  @Test
  public void testAuthorizedTwoAuthentications() {
    SecurityContextImpl securityContext = new SecurityContextImpl();
    List<Authentication> authentications = new ArrayList<Authentication>();
    Authentication authentication;
    authentication = new Authentication();
    authentication.setAuthorizations(new BaseAuthorization[]{new AllowNoneAuthorization()});
    authentications.add(authentication);
    authentication = new Authentication();
    authentication.setAuthorizations(new BaseAuthorization[]{new AllowAllAuthorization()});
    authentications.add(authentication);
    securityContext.setAuthentications("token", authentications);
    Assert.assertTrue(securityContext.isToolAuthorized(TOOL_ID));
    Assert.assertTrue(securityContext.isCommandAuthorized(COMMAND_NAME));
    Assert.assertTrue(securityContext.isLayerVisible(LAYER_ID));
    Assert.assertTrue(securityContext.isLayerCreateAuthorized(LAYER_ID));
    Assert.assertTrue(securityContext.isLayerUpdateAuthorized(LAYER_ID));
    Assert.assertTrue(securityContext.isLayerDeleteAuthorized(LAYER_ID));
  }

  @Test
  public void testAuthorizedNeither() {
    SecurityContextImpl securityContext = new SecurityContextImpl();
    Assert.assertFalse(securityContext.isToolAuthorized(TOOL_ID));
    Assert.assertFalse(securityContext.isCommandAuthorized(COMMAND_NAME));
    Assert.assertFalse(securityContext.isLayerVisible(LAYER_ID));
    Assert.assertFalse(securityContext.isLayerCreateAuthorized(LAYER_ID));
    Assert.assertFalse(securityContext.isLayerUpdateAuthorized(LAYER_ID));
    Assert.assertFalse(securityContext.isLayerDeleteAuthorized(LAYER_ID));
  }

  @Test
  public void testAuthorizedNone() {
    SecurityContextImpl securityContext = new SecurityContextImpl();
    Assert.assertFalse(securityContext.isToolAuthorized(TOOL_ID));
    Assert.assertFalse(securityContext.isCommandAuthorized(COMMAND_NAME));
    Assert.assertFalse(securityContext.isLayerVisible(LAYER_ID));
    Assert.assertFalse(securityContext.isLayerCreateAuthorized(LAYER_ID));
    Assert.assertFalse(securityContext.isLayerUpdateAuthorized(LAYER_ID));
    Assert.assertFalse(securityContext.isLayerDeleteAuthorized(LAYER_ID));
  }
}
TOP

Related Classes of org.geomajas.internal.security.SecurityContextBaseAuthorizationTest

  • org.geomajas.security.allowall.AllowAllAuthorization
  • org.geomajas.security.Authentication
    • TOP
    Copyright © 2018 www.massapi.com. All rights reserved.
    All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.