AuthnRequestTest.java example

Explorer

java-saml-master
- core
  - src
    - main
      - java
        com
        onelogin
        saml2
        authn
        AuthnRequest.java
        SamlResponse.java
        exception
        Error.java
        SettingsException.java
        ValidationError.java
        XMLEntityException.java
        http
        HttpRequest.java
        logout
        LogoutRequest.java
        LogoutResponse.java
        model
        AttributeConsumingService.java
        Contact.java
        Organization.java
        RequestedAttribute.java
        SamlResponseStatus.java
        SubjectConfirmationIssue.java
        settings
        Metadata.java
        Saml2Settings.java
        SettingsBuilder.java
        util
        Constants.java
        Preconditions.java
        SchemaFactory.java
        Util.java
        XMLErrorAccumulatorHandler.java
    - test
      - java
        com
        onelogin
        saml2
        http
        HttpRequestTest.java
        test
        NaiveUrlEncodeTest.java
        NaiveUrlEncoder.java
        authn
        AuthnRequestTest.java
        AuthnResponseTest.java
        logout
        LogoutRequestTest.java
        LogoutResponseTest.java
        model
        ContactTest.java
        OrganizationTest.java
        SamlResponseStatusTest.java
        settings
        MetadataTest.java
        Saml2SettingsTest.java
        SettingBuilderTest.java
        util
        UtilsTest.java
- toolkit
  - src
    - main
      - java
        com
        onelogin
        saml2
        Auth.java
        servlet
        ServletUtils.java
    - test
      - java
        com
        onelogin
        saml2
        test
        AuthTest.java
        servlet
        ServletUtilsTest.java

package com.onelogin.saml2.test.authn;

import static org.hamcrest.CoreMatchers.containsString;
import static org.hamcrest.CoreMatchers.not;
import static org.junit.Assert.assertEquals;
import static org.junit.Assert.assertNotEquals;
import static org.junit.Assert.assertThat;

import java.util.ArrayList;
import java.util.List;

import org.junit.Test;

import com.onelogin.saml2.authn.AuthnRequest;
import com.onelogin.saml2.settings.Saml2Settings;
import com.onelogin.saml2.settings.SettingsBuilder;
import com.onelogin.saml2.util.Util;

public class AuthnRequestTest {

	/**
	 * Tests the getEncodedAuthnRequest method of AuthnRequest
	 *
	 * @throws Exception
	 * 
	 * @see com.onelogin.saml2.authn.AuthnRequest#getEncodedAuthnRequest
	 */
	@Test
	public void testGetEncodedAuthnRequestSimulated() throws Exception {
		Saml2Settings settings = new SettingsBuilder().fromFile("config/config.min.properties").build();

		final String authnRequestString = Util.getFileAsString("data/requests/authn_request.xml");
		AuthnRequest authnRequest = new AuthnRequest(settings) {
			@Override
			public String getAuthnRequestXml() {
				return authnRequestString;
			}
		};

		String expectedAuthnRequestStringBase64Deflated = Util.getFileAsString("data/requests/authn_request.xml.deflated.base64");
		String expectedAuthnRequestStringBase64 = Util.getFileAsString("data/requests/authn_request.xml.base64");

		String authnRequestStringBase64Deflated = authnRequest.getEncodedAuthnRequest();
		assertEquals(authnRequestStringBase64Deflated, expectedAuthnRequestStringBase64Deflated);

		authnRequestStringBase64Deflated = authnRequest.getEncodedAuthnRequest(null);
		assertEquals(authnRequestStringBase64Deflated, expectedAuthnRequestStringBase64Deflated);

		authnRequestStringBase64Deflated = authnRequest.getEncodedAuthnRequest(true);
		assertEquals(authnRequestStringBase64Deflated, expectedAuthnRequestStringBase64Deflated);

		authnRequestStringBase64Deflated = authnRequest.getEncodedAuthnRequest(false);
		assertNotEquals(authnRequestStringBase64Deflated, expectedAuthnRequestStringBase64Deflated);
		assertEquals(authnRequestStringBase64Deflated,expectedAuthnRequestStringBase64);
		
		settings.setCompressRequest(true);		
		authnRequest = new AuthnRequest(settings) {
			@Override
			public String getAuthnRequestXml() {
				return authnRequestString;
			}
		};
		authnRequestStringBase64Deflated = authnRequest.getEncodedAuthnRequest(null);
		assertEquals(authnRequestStringBase64Deflated, expectedAuthnRequestStringBase64Deflated);

		settings.setCompressRequest(false);
		authnRequest = new AuthnRequest(settings) {
			@Override
			public String getAuthnRequestXml() {
				return authnRequestString;
			}
		};
		authnRequestStringBase64Deflated = authnRequest.getEncodedAuthnRequest(null);
		assertNotEquals(authnRequestStringBase64Deflated, expectedAuthnRequestStringBase64Deflated);
		assertEquals(authnRequestStringBase64Deflated, expectedAuthnRequestStringBase64);
	}

	/**
	 * Tests the getEncodedAuthnRequest method of AuthnRequest
	 * Case: Only settings provided.
	 *
	 * @throws Exception
	 * 
	 * @see com.onelogin.saml2.authn.AuthnRequest#getEncodedAuthnRequest
	 */
	@Test
	public void testGetEncodedAuthnRequestOnlySettings() throws Exception {
		Saml2Settings settings = new SettingsBuilder().fromFile("config/config.min.properties").build();
		AuthnRequest authnRequest = new AuthnRequest(settings);
		String authnRequestStringBase64 = authnRequest.getEncodedAuthnRequest();
		String authnRequestStr = Util.base64decodedInflated(authnRequestStringBase64);
		assertThat(authnRequestStr, containsString("<samlp:AuthnRequest"));
		assertThat(authnRequestStr, not(containsString("ProviderName=\"SP Java Example\"")));
		
		settings = new SettingsBuilder().fromFile("config/config.all.properties").build();
		authnRequest = new AuthnRequest(settings);
		authnRequestStringBase64 = authnRequest.getEncodedAuthnRequest();
		authnRequestStr = Util.base64decodedInflated(authnRequestStringBase64);
		assertThat(authnRequestStr, containsString("<samlp:AuthnRequest"));
		assertThat(authnRequestStr, containsString("ProviderName=\"SP Java Example\""));
	}

	/**
	 * Tests the getAuthnRequestXml method of AuthnRequest
	 *
	 * @throws Exception
	 * 
	 * @see com.onelogin.saml2.authn.getAuthnRequestXml
	 */
	@Test
	public void testGetAuthnRequestXml() throws Exception {
		Saml2Settings settings = new SettingsBuilder().fromFile("config/config.min.properties").build();
		AuthnRequest authnRequest = new AuthnRequest(settings);
		String authnRequestXML = authnRequest.getAuthnRequestXml();
		assertThat(authnRequestXML, containsString("<samlp:AuthnRequest"));
	}

	/**
	 * Tests the AuthnRequest Constructor
	 * The creation of a deflated SAML Request with the different values of ForceAuthn
	 *
	 * @throws Exception
	 * 
	 * @see com.onelogin.saml2.authn.AuthnRequest
	 */
	@Test
	public void testForceAuthN() throws Exception {
		Saml2Settings settings = new SettingsBuilder().fromFile("config/config.min.properties").build();

		AuthnRequest authnRequest = new AuthnRequest(settings);
		String authnRequestStringBase64 = authnRequest.getEncodedAuthnRequest();
		String authnRequestStr = Util.base64decodedInflated(authnRequestStringBase64);
		assertThat(authnRequestStr, containsString("<samlp:AuthnRequest"));
		assertThat(authnRequestStr, not(containsString("ForceAuthn=\"true\"")));

		authnRequest = new AuthnRequest(settings, false, false, false);
		authnRequestStringBase64 = authnRequest.getEncodedAuthnRequest();
		authnRequestStr = Util.base64decodedInflated(authnRequestStringBase64);		
		assertThat(authnRequestStr, containsString("<samlp:AuthnRequest"));
		assertThat(authnRequestStr, not(containsString("ForceAuthn=\"true\"")));		

		authnRequest = new AuthnRequest(settings, true, false, false);
		authnRequestStringBase64 = authnRequest.getEncodedAuthnRequest();
		authnRequestStr = Util.base64decodedInflated(authnRequestStringBase64);		
		assertThat(authnRequestStr, containsString("<samlp:AuthnRequest"));
		assertThat(authnRequestStr, containsString("ForceAuthn=\"true\""));
	}

	/**
	 * Tests the AuthnRequest Constructor
	 * The creation of a deflated SAML Request with the different values of IsPassive
	 *
	 * @throws Exception
	 * 
	 * @see com.onelogin.saml2.authn.AuthnRequest
	 */
	@Test
	public void testIsPassive() throws Exception {
		Saml2Settings settings = new SettingsBuilder().fromFile("config/config.min.properties").build();

		AuthnRequest authnRequest = new AuthnRequest(settings);
		String authnRequestStringBase64 = authnRequest.getEncodedAuthnRequest();
		String authnRequestStr = Util.base64decodedInflated(authnRequestStringBase64);
		assertThat(authnRequestStr, containsString("<samlp:AuthnRequest"));
		assertThat(authnRequestStr, not(containsString("IsPassive=\"true\"")));

		authnRequest = new AuthnRequest(settings, false, false, false);
		authnRequestStringBase64 = authnRequest.getEncodedAuthnRequest();
		authnRequestStr = Util.base64decodedInflated(authnRequestStringBase64);		
		assertThat(authnRequestStr, containsString("<samlp:AuthnRequest"));
		assertThat(authnRequestStr, not(containsString("IsPassive=\"true\"")));		

		authnRequest = new AuthnRequest(settings, false, true, false);
		authnRequestStringBase64 = authnRequest.getEncodedAuthnRequest();
		authnRequestStr = Util.base64decodedInflated(authnRequestStringBase64);		
		assertThat(authnRequestStr, containsString("<samlp:AuthnRequest"));
		assertThat(authnRequestStr, containsString("IsPassive=\"true\""));
	}

	/**
	 * Tests the AuthnRequest Constructor
	 * The creation of a deflated SAML Request with and without NameIDPolicy
	 *
	 * @throws Exception
	 * 
	 * @see com.onelogin.saml2.authn.AuthnRequest
	 */
	@Test
	public void testNameIDPolicy() throws Exception {
		Saml2Settings settings = new SettingsBuilder().fromFile("config/config.min.properties").build();

		AuthnRequest authnRequest = new AuthnRequest(settings);
		String authnRequestStringBase64 = authnRequest.getEncodedAuthnRequest();
		String authnRequestStr = Util.base64decodedInflated(authnRequestStringBase64);
		assertThat(authnRequestStr, containsString("<samlp:AuthnRequest"));
		assertThat(authnRequestStr, containsString("<samlp:NameIDPolicy"));
		assertThat(authnRequestStr, containsString("Format=\"urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified\""));

		authnRequest = new AuthnRequest(settings, false, false, false);
		authnRequestStringBase64 = authnRequest.getEncodedAuthnRequest();
		authnRequestStr = Util.base64decodedInflated(authnRequestStringBase64);		
		assertThat(authnRequestStr, containsString("<samlp:AuthnRequest"));
		assertThat(authnRequestStr, not(containsString("<samlp:NameIDPolicy")));		

		authnRequest = new AuthnRequest(settings, false, false, true);
		authnRequestStringBase64 = authnRequest.getEncodedAuthnRequest();
		authnRequestStr = Util.base64decodedInflated(authnRequestStringBase64);		
		assertThat(authnRequestStr, containsString("<samlp:AuthnRequest"));
		assertThat(authnRequestStr, containsString("<samlp:NameIDPolicy"));
		assertThat(authnRequestStr, containsString("Format=\"urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified\""));
	}

	/**
	 * Tests the AuthnRequest Constructor
	 * The creation of a deflated SAML Request with NameIDPolicy Encrypted
	 *
	 * @throws Exception
	 * 
	 * @see com.onelogin.saml2.authn.AuthnRequest
	 */
	@Test
	public void testCreateEncPolicySAMLRequest() throws Exception {
		Saml2Settings settings = new SettingsBuilder().fromFile("config/config.all.properties").build();

		AuthnRequest authnRequest = new AuthnRequest(settings);
		String authnRequestStringBase64 = authnRequest.getEncodedAuthnRequest();
		String authnRequestStr = Util.base64decodedInflated(authnRequestStringBase64);
		assertThat(authnRequestStr, containsString("<samlp:AuthnRequest"));
		assertThat(authnRequestStr, containsString("<samlp:NameIDPolicy"));
		assertThat(authnRequestStr, containsString("Format=\"urn:oasis:names:tc:SAML:2.0:nameid-format:encrypted\""));
	}

	/**
	 * Tests the AuthnRequest Constructor
	 * The creation of a deflated SAML Request with and without AuthNContext
	 *
	 * @throws Exception
	 * 
	 * @see com.onelogin.saml2.authn.AuthnRequest
	 */
	@Test
	public void testAuthNContext() throws Exception {
		Saml2Settings settings = new SettingsBuilder().fromFile("config/config.min.properties").build();

		List<String> requestedAuthnContext = new ArrayList<String>();
		settings.setRequestedAuthnContext(requestedAuthnContext);

		AuthnRequest authnRequest = new AuthnRequest(settings);
		String authnRequestStringBase64 = authnRequest.getEncodedAuthnRequest();
		String authnRequestStr = Util.base64decodedInflated(authnRequestStringBase64);
		assertThat(authnRequestStr, containsString("<samlp:AuthnRequest"));
		assertThat(authnRequestStr, not(containsString("<samlp:RequestedAuthnContext")));

		requestedAuthnContext.add("urn:oasis:names:tc:SAML:2.0:ac:classes:Password");
		settings.setRequestedAuthnContext(requestedAuthnContext);
		authnRequest = new AuthnRequest(settings);
		authnRequestStringBase64 = authnRequest.getEncodedAuthnRequest();
		authnRequestStr = Util.base64decodedInflated(authnRequestStringBase64);
		assertThat(authnRequestStr, containsString("<samlp:AuthnRequest"));
		assertThat(authnRequestStr, containsString("<samlp:RequestedAuthnContext Comparison=\"exact\">"));
		assertThat(authnRequestStr, containsString("<saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>"));

		requestedAuthnContext.add("urn:oasis:names:tc:SAML:2.0:ac:classes:X509");
		settings.setRequestedAuthnContext(requestedAuthnContext);
		settings.setRequestedAuthnContext(requestedAuthnContext);
		authnRequest = new AuthnRequest(settings);
		authnRequestStringBase64 = authnRequest.getEncodedAuthnRequest();
		authnRequestStr = Util.base64decodedInflated(authnRequestStringBase64);
		assertThat(authnRequestStr, containsString("<samlp:AuthnRequest"));
		assertThat(authnRequestStr, containsString("<samlp:RequestedAuthnContext Comparison=\"exact\">"));
		assertThat(authnRequestStr, containsString("<saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>"));
		assertThat(authnRequestStr, containsString("<saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:X509</saml:AuthnContextClassRef>"));
	}

	/**
	 * Tests the getId method of AuthnRequest
	 *
	 * @throws Exception
	 * 
	 * @see com.onelogin.saml2.authn.getId
	 */
	@Test
	public void testGetId() throws Exception
	{
		Saml2Settings settings = new SettingsBuilder().fromFile("config/config.min.properties").build();

		AuthnRequest authnRequest = new AuthnRequest(settings);
		final String authnRequestStr = Util.base64decodedInflated(authnRequest.getEncodedAuthnRequest());

		assertThat(authnRequestStr, containsString("<samlp:AuthnRequest"));
		assertThat(authnRequestStr, containsString("ID=\"" + authnRequest.getId() + "\""));
	}

	/**
	 * Tests the AuthnRequest Constructor
	 * The creation of a deflated SAML Request with and without Destination
	 *
	 * @throws Exception
	 * 
	 * @see com.onelogin.saml2.authn.AuthnRequest
	 */
	@Test
	public void testAuthNDestination() throws Exception {
		Saml2Settings settings = new SettingsBuilder().fromFile("config/config.min.properties").build();

		AuthnRequest authnRequest = new AuthnRequest(settings);
		String authnRequestStringBase64 = authnRequest.getEncodedAuthnRequest();
		String authnRequestStr = Util.base64decodedInflated(authnRequestStringBase64);
		assertThat(authnRequestStr, containsString("<samlp:AuthnRequest"));
		assertThat(authnRequestStr, containsString("Destination=\"http://idp.example.com/simplesaml/saml2/idp/SSOService.php\""));

		settings = new Saml2Settings();
		authnRequest = new AuthnRequest(settings);
		authnRequestStringBase64 = authnRequest.getEncodedAuthnRequest();
		authnRequestStr = Util.base64decodedInflated(authnRequestStringBase64);
		assertThat(authnRequestStr, containsString("<samlp:AuthnRequest"));
		assertThat(authnRequestStr, not(containsString("Destination=\"http://idp.example.com/simplesaml/saml2/idp/SSOService.php\"")));
	}
}