/*
* Licensed to the Apache Software Foundation (ASF) under one or more contributor license
* agreements. See the NOTICE file distributed with this work for additional information regarding
* copyright ownership. The ASF licenses this file to You under the Apache License, Version 2.0 (the
* "License"); you may not use this file except in compliance with the License. You may obtain a
* copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software distributed under the License
* is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express
* or implied. See the License for the specific language governing permissions and limitations under
* the License.
*/
package org.apache.geode.security;
import static org.apache.geode.distributed.ConfigurationProperties.*;
import static org.apache.geode.internal.AvailablePortHelper.getRandomAvailableTCPPorts;
import static org.apache.geode.internal.security.IntegratedSecurityService.getSecurityService;
import static org.apache.geode.management.ManagementService.getExistingManagementService;
import static org.apache.geode.test.dunit.DistributedTestUtils.deleteLocatorStateFile;
import static org.apache.geode.test.dunit.Host.getHost;
import static org.apache.geode.test.dunit.NetworkUtils.getServerHostName;
import static org.assertj.core.api.Assertions.*;
import java.io.IOException;
import java.util.Properties;
import org.apache.geode.cache.server.CacheServer;
import org.apache.geode.cache30.CacheTestCase;
import org.apache.geode.management.ManagementService;
import org.apache.geode.test.dunit.Host;
import org.apache.geode.test.dunit.VM;
import org.apache.geode.test.junit.categories.DistributedTest;
import org.apache.geode.test.junit.categories.SecurityTest;
import org.junit.After;
import org.junit.Before;
import org.junit.Test;
import org.junit.experimental.categories.Category;
@Category({DistributedTest.class, SecurityTest.class})
public class SecurityManagerCallbacksDistributedTest extends CacheTestCase {
private String locators;
private VM locatorVM;
@Before
public void before() throws Exception {
Host host = getHost(0);
this.locatorVM = host.getVM(0);
int[] ports = getRandomAvailableTCPPorts(2);
int locatorPort = ports[0];
int managerPort = ports[1];
this.locators = getServerHostName(host) + "[" + locatorPort + "]";
this.locatorVM.invoke(() -> {
deleteLocatorStateFile(locatorPort);
Properties properties = new Properties();
properties.setProperty(LOCATORS, locators);
properties.setProperty(MCAST_PORT, "0");
properties.setProperty(START_LOCATOR, locators);
properties.setProperty(JMX_MANAGER, "true");
properties.setProperty(JMX_MANAGER_PORT, String.valueOf(managerPort));
properties.setProperty(JMX_MANAGER_START, "true");
properties.setProperty(USE_CLUSTER_CONFIGURATION, "false");
properties.setProperty(SECURITY_MANAGER, SpySecurityManager.class.getName());
properties.setProperty("security-username", "secure");
properties.setProperty("security-password", "secure");
getSystem(properties);
getCache();
});
}
@After
public void after() throws Exception {
closeAllCache();
}
@Test
public void callbacksShouldBeInvoked() throws Exception {
connectServer();
verifyCallbacksRegardlessOfManager(false);
this.locatorVM.invoke(() -> {
verifyCallbacksRegardlessOfManager(true);
});
}
private void connectServer() throws IOException {
Properties properties = new Properties();
properties.setProperty(LOCATORS, locators);
properties.setProperty(MCAST_PORT, "0");
properties.setProperty(USE_CLUSTER_CONFIGURATION, "false");
properties.setProperty(SECURITY_MANAGER, SpySecurityManager.class.getName());
properties.setProperty("security-username", "secure");
properties.setProperty("security-password", "secure");
getSystem(properties);
CacheServer server1 = getCache().addCacheServer();
server1.setPort(0);
server1.start();
getCache();
}
private void verifyCallbacksRegardlessOfManager(final boolean isManager) {
ManagementService ms = getExistingManagementService(getCache());
assertThat(ms).isNotNull();
assertThat(ms.isManager()).isEqualTo(isManager);
verifyInitAndCloseInvoked();
}
private void verifyInitAndCloseInvoked() {
SpySecurityManager ssm = (SpySecurityManager) getSecurityService().getSecurityManager();
assertThat(ssm.initInvoked).isEqualTo(1);
assertThat(ssm.closeInvoked).isEqualTo(0);
getCache().close();
assertThat(ssm.initInvoked).isEqualTo(1);
assertThat(ssm.closeInvoked).isEqualTo(1);
}
}