/**
* Copyright 2010 JBoss Inc
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
package org.drools.guvnor.server.security;
/*
* Copyright 2005 JBoss Inc
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
import static org.junit.Assert.assertEquals;
import static org.junit.Assert.assertNotNull;
import static org.junit.Assert.assertSame;
import static org.junit.Assert.assertTrue;
import static org.junit.Assert.fail;
import java.util.ArrayList;
import java.util.HashMap;
import java.util.List;
import java.util.Map;
import org.drools.guvnor.client.security.Capabilities;
import org.drools.guvnor.server.security.RoleBasedPermissionResolver;
import org.jboss.seam.contexts.Contexts;
import org.jboss.seam.contexts.Lifecycle;
import org.jboss.seam.security.AuthorizationException;
import org.junit.Test;
public class SecurityServiceImplTest {
@Test
public void testLogin() throws Exception {
SecurityServiceImpl impl = new SecurityServiceImpl();
assertTrue( impl.login( "XXX",
null ) );
}
@Test
public void testUser() throws Exception {
SecurityServiceImpl impl = new SecurityServiceImpl();
assertNotNull( impl.getCurrentUser() );
}
@Test
public void testCapabilities() {
SecurityServiceImpl impl = new SecurityServiceImpl();
Capabilities c = impl.getUserCapabilities();
assertTrue( c.list.size() > 1 );
}
@Test
public void testCapabilitiesWithContext() {
SecurityServiceImpl impl = new SecurityServiceImpl();
// Mock up SEAM contexts
Map<String, Object> application = new HashMap<String, Object>();
Lifecycle.beginApplication( application );
Lifecycle.beginCall();
MockIdentity midentity = new MockIdentity();
RoleBasedPermissionResolver resolver = new RoleBasedPermissionResolver();
resolver.setEnableRoleBasedAuthorization( true );
midentity.addPermissionResolver( resolver );
Contexts.getSessionContext().set( "org.jboss.seam.security.roleBasedPermissionResolver",
resolver );
Contexts.getSessionContext().set( "org.jboss.seam.security.identity",
midentity );
Contexts.getSessionContext().set( "org.drools.guvnor.client.rpc.RepositoryService",
impl );
List<RoleBasedPermission> pbps = new ArrayList<RoleBasedPermission>();
pbps.add( new RoleBasedPermission( "jervis",
RoleTypes.PACKAGE_READONLY,
"packagename",
null ) );
MockRoleBasedPermissionStore store = new MockRoleBasedPermissionStore( pbps );
Contexts.getSessionContext().set( "org.drools.guvnor.server.security.RoleBasedPermissionStore",
store );
// Put permission list in session.
RoleBasedPermissionManager testManager = new RoleBasedPermissionManager();
testManager.create();
Contexts.getSessionContext().set( "roleBasedPermissionManager",
testManager );
Capabilities c = impl.getUserCapabilities();
assertTrue( c.list.size() == 1 );
//now lets give them no permissions
pbps.clear();
try {
impl.getUserCapabilities();
fail( "should not be allowed as there are no permissions" );
} catch ( AuthorizationException e ) {
assertNotNull( e.getMessage() );
assertTrue( midentity.loggoutCalled );
}
//now lets turn off the role based stuff
resolver.setEnableRoleBasedAuthorization( false );
impl.getUserCapabilities(); // should not blow up !
Lifecycle.endApplication();
}
@Test
public void testCapabilitiesContext() throws Exception {
SecurityServiceImpl impl = new SecurityServiceImpl();
// Mock up SEAM contexts
Map<String, Object> application = new HashMap<String, Object>();
Lifecycle.beginApplication( application );
Lifecycle.beginCall();
MockIdentity midentity = new MockIdentity();
midentity.addRole( RoleTypes.ADMIN );
Contexts.getSessionContext().set( "org.jboss.seam.security.identity",
midentity );
Capabilities c = impl.getUserCapabilities();
assertTrue( c.list.size() > 1 );
Lifecycle.endApplication();
}
@Test
public void testPreferences() throws Exception {
SecurityServiceImpl impl = new SecurityServiceImpl();
assertNotNull( SecurityServiceImpl.PREFERENCES );
assertEquals( 7,
SecurityServiceImpl.PREFERENCES.size() );
assertTrue( SecurityServiceImpl.PREFERENCES.containsKey( "visual-ruleflow" ) );
assertTrue( SecurityServiceImpl.PREFERENCES.containsKey( "verifier" ) );
assertTrue( SecurityServiceImpl.PREFERENCES.containsKey( "flex-bpel-editor" ) );
assertEquals( "true",
SecurityServiceImpl.PREFERENCES.get( "verifier" ) );
assertEquals("true", SecurityServiceImpl.PREFERENCES.get("oryx-bpmn-editor"));
Capabilities caps = impl.getUserCapabilities();
assertSame( SecurityServiceImpl.PREFERENCES,
caps.prefs );
}
}