/*
* Licensed to the Apache Software Foundation (ASF) under one or more contributor license
* agreements. See the NOTICE file distributed with this work for additional information regarding
* copyright ownership. The ASF licenses this file to You under the Apache License, Version 2.0 (the
* "License"); you may not use this file except in compliance with the License. You may obtain a
* copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software distributed under the License
* is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express
* or implied. See the License for the specific language governing permissions and limitations under
* the License.
*/
package org.apache.geode.internal.cache.tier.sockets.command;
import static org.assertj.core.api.Assertions.*;
import static org.mockito.Matchers.*;
import static org.mockito.Mockito.*;
import java.util.Properties;
import org.junit.Before;
import org.junit.Test;
import org.junit.experimental.categories.Category;
import org.mockito.ArgumentCaptor;
import org.mockito.InjectMocks;
import org.mockito.Mock;
import org.mockito.MockitoAnnotations;
import org.apache.geode.CancelCriterion;
import org.apache.geode.cache.Cache;
import org.apache.geode.cache.CacheTransactionManager;
import org.apache.geode.cache.Operation;
import org.apache.geode.cache.operations.PutOperationContext;
import org.apache.geode.internal.Version;
import org.apache.geode.internal.cache.EntryEventImpl;
import org.apache.geode.internal.cache.LocalRegion;
import org.apache.geode.internal.cache.TXManagerImpl;
import org.apache.geode.internal.cache.tier.CachedRegionHelper;
import org.apache.geode.internal.cache.tier.sockets.CacheServerStats;
import org.apache.geode.internal.cache.tier.sockets.ClientProxyMembershipID;
import org.apache.geode.internal.cache.tier.sockets.Message;
import org.apache.geode.internal.cache.tier.sockets.Part;
import org.apache.geode.internal.cache.tier.sockets.ServerConnection;
import org.apache.geode.internal.security.AuthorizeRequest;
import org.apache.geode.internal.security.SecurityService;
import org.apache.geode.security.NotAuthorizedException;
import org.apache.geode.test.junit.categories.UnitTest;
@Category(UnitTest.class)
public class Put65Test {
private static final String REGION_NAME = "region1";
private static final String KEY = "key1";
private static final Object CALLBACK_ARG = "arg";
private static final byte[] EVENT = new byte[8];
private static final byte[] VALUE = new byte[8];
private static final byte[] OK_BYTES = new byte[] {0};
@Mock
private SecurityService securityService;
@Mock
private Message message;
@Mock
private ServerConnection serverConnection;
@Mock
private AuthorizeRequest authzRequest;
@Mock
private Cache cache;
@Mock
private LocalRegion localRegion;
@Mock
private Part regionNamePart;
@Mock
private Part keyPart;
@Mock
private Part valuePart;
@Mock
private Part oldValuePart;
@Mock
private Part deltaPart;
@Mock
private Part operationPart;
@Mock
private Part flagsPart;
@Mock
private Part eventPart;
@Mock
private Part callbackArgsPart;
@Mock
private PutOperationContext putOperationContext;
@Mock
private Object object;
@Mock
private Message errorResponseMessage;
@Mock
private Message replyMessage;
@InjectMocks
private Put65 put65;
@Before
public void setUp() throws Exception {
this.put65 = new Put65();
MockitoAnnotations.initMocks(this);
when(
this.authzRequest.putAuthorize(eq(REGION_NAME), eq(KEY), any(), eq(true), eq(CALLBACK_ARG)))
.thenReturn(this.putOperationContext);
when(this.cache.getRegion(isA(String.class))).thenReturn(this.localRegion);
when(this.cache.getCancelCriterion()).thenReturn(mock(CancelCriterion.class));
when(this.cache.getCacheTransactionManager()).thenReturn(mock(TXManagerImpl.class));
when(this.callbackArgsPart.getObject()).thenReturn(CALLBACK_ARG);
when(this.deltaPart.getObject()).thenReturn(Boolean.FALSE);
when(this.eventPart.getSerializedForm()).thenReturn(EVENT);
when(this.flagsPart.getInt()).thenReturn(1);
when(this.keyPart.getStringOrObject()).thenReturn(KEY);
when(this.localRegion.basicBridgePut(eq(KEY), eq(VALUE), eq(null), eq(true), eq(CALLBACK_ARG),
any(ClientProxyMembershipID.class), eq(true), any(EntryEventImpl.class))).thenReturn(true);
when(this.message.getNumberOfParts()).thenReturn(8);
when(this.message.getPart(eq(0))).thenReturn(this.regionNamePart);
when(this.message.getPart(eq(1))).thenReturn(operationPart);
when(this.message.getPart(eq(2))).thenReturn(this.flagsPart);
when(this.message.getPart(eq(3))).thenReturn(this.keyPart);
when(this.message.getPart(eq(4))).thenReturn(this.deltaPart);
when(this.message.getPart(eq(5))).thenReturn(this.valuePart);
when(this.message.getPart(eq(6))).thenReturn(this.eventPart);
when(this.message.getPart(eq(7))).thenReturn(this.callbackArgsPart);
when(this.operationPart.getObject()).thenReturn(null);
when(this.oldValuePart.getObject()).thenReturn(mock(Object.class));
when(this.putOperationContext.getCallbackArg()).thenReturn(CALLBACK_ARG);
when(this.putOperationContext.getValue()).thenReturn(VALUE);
when(this.putOperationContext.isObject()).thenReturn(true);
when(this.regionNamePart.getString()).thenReturn(REGION_NAME);
when(this.serverConnection.getCache()).thenReturn(this.cache);
when(this.serverConnection.getCacheServerStats()).thenReturn(mock(CacheServerStats.class));
when(this.serverConnection.getAuthzRequest()).thenReturn(this.authzRequest);
when(this.serverConnection.getCachedRegionHelper()).thenReturn(mock(CachedRegionHelper.class));
when(this.serverConnection.getReplyMessage()).thenReturn(this.replyMessage);
when(this.serverConnection.getErrorResponseMessage()).thenReturn(this.errorResponseMessage);
when(this.serverConnection.getClientVersion()).thenReturn(Version.CURRENT);
when(this.valuePart.getSerializedForm()).thenReturn(VALUE);
when(this.valuePart.isObject()).thenReturn(true);
}
@Test
public void noSecurityShouldSucceed() throws Exception {
when(this.securityService.isClientSecurityRequired()).thenReturn(false);
this.put65.cmdExecute(this.message, this.serverConnection, 0);
verify(this.replyMessage).send(this.serverConnection);
}
@Test
public void integratedSecurityShouldSucceedIfAuthorized() throws Exception {
when(this.securityService.isClientSecurityRequired()).thenReturn(true);
when(this.securityService.isIntegratedSecurity()).thenReturn(true);
this.put65.cmdExecute(this.message, this.serverConnection, 0);
verify(this.securityService).authorizeRegionWrite(eq(REGION_NAME), eq(KEY));
verify(this.replyMessage).send(this.serverConnection);
}
@Test
public void integratedSecurityShouldFailIfNotAuthorized() throws Exception {
when(this.securityService.isClientSecurityRequired()).thenReturn(true);
when(this.securityService.isIntegratedSecurity()).thenReturn(true);
doThrow(new NotAuthorizedException("")).when(this.securityService)
.authorizeRegionWrite(eq(REGION_NAME), eq(KEY));
this.put65.cmdExecute(this.message, this.serverConnection, 0);
verify(this.securityService).authorizeRegionWrite(eq(REGION_NAME), eq(KEY));
verify(this.errorResponseMessage).send(this.serverConnection);
}
@Test
public void oldSecurityShouldSucceedIfAuthorized() throws Exception {
when(this.securityService.isClientSecurityRequired()).thenReturn(true);
when(this.securityService.isIntegratedSecurity()).thenReturn(false);
this.put65.cmdExecute(this.message, this.serverConnection, 0);
ArgumentCaptor<byte[]> argument = ArgumentCaptor.forClass(byte[].class);
verify(this.replyMessage).addBytesPart(argument.capture());
assertThat(argument.getValue()).isEqualTo(OK_BYTES);
verify(this.authzRequest).putAuthorize(eq(REGION_NAME), eq(KEY), eq(VALUE), eq(true),
eq(CALLBACK_ARG));
verify(this.replyMessage).send(this.serverConnection);
}
@Test
public void oldSecurityShouldFailIfNotAuthorized() throws Exception {
when(this.securityService.isClientSecurityRequired()).thenReturn(true);
when(this.securityService.isIntegratedSecurity()).thenReturn(false);
doThrow(new NotAuthorizedException("")).when(this.authzRequest).putAuthorize(eq(REGION_NAME),
eq(KEY), eq(VALUE), eq(true), eq(CALLBACK_ARG));
this.put65.cmdExecute(this.message, this.serverConnection, 0);
verify(this.authzRequest).putAuthorize(eq(REGION_NAME), eq(KEY), eq(VALUE), eq(true),
eq(CALLBACK_ARG));
ArgumentCaptor<NotAuthorizedException> argument =
ArgumentCaptor.forClass(NotAuthorizedException.class);
verify(this.errorResponseMessage).addObjPart(argument.capture());
assertThat(argument.getValue()).isExactlyInstanceOf(NotAuthorizedException.class);
verify(this.errorResponseMessage).send(this.serverConnection);
}
}