/*
* Copyright (c) 2002-2007 Sun Microsystems, Inc. All rights reserved.
*
* The Sun Project JXTA(TM) Software License
*
* Redistribution and use in source and binary forms, with or without
* modification, are permitted provided that the following conditions are met:
*
* 1. Redistributions of source code must retain the above copyright notice,
* this list of conditions and the following disclaimer.
*
* 2. Redistributions in binary form must reproduce the above copyright notice,
* this list of conditions and the following disclaimer in the documentation
* and/or other materials provided with the distribution.
*
* 3. The end-user documentation included with the redistribution, if any, must
* include the following acknowledgment: "This product includes software
* developed by Sun Microsystems, Inc. for JXTA(TM) technology."
* Alternately, this acknowledgment may appear in the software itself, if
* and wherever such third-party acknowledgments normally appear.
*
* 4. The names "Sun", "Sun Microsystems, Inc.", "JXTA" and "Project JXTA" must
* not be used to endorse or promote products derived from this software
* without prior written permission. For written permission, please contact
* Project JXTA at http://www.jxta.org.
*
* 5. Products derived from this software may not be called "JXTA", nor may
* "JXTA" appear in their name, without prior written permission of Sun.
*
* THIS SOFTWARE IS PROVIDED ``AS IS'' AND ANY EXPRESSED OR IMPLIED WARRANTIES,
* INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND
* FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL SUN
* MICROSYSTEMS OR ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT,
* INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
* LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA,
* OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF
* LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING
* NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE,
* EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
*
* JXTA is a registered trademark of Sun Microsystems, Inc. in the United
* States and other countries.
*
* Please see the license information page at :
* <http://www.jxta.org/project/www/license.html> for instructions on use of
* the license in source files.
*
* ====================================================================
*
* This software consists of voluntary contributions made by many individuals
* on behalf of Project JXTA. For more information on Project JXTA, please see
* http://www.jxta.org.
*
* This license is based on the BSD license adopted by the Apache Foundation.
*/
package net.jxta.impl.access.simpleACL;
import java.io.Reader;
import java.io.StringReader;
import java.io.StringWriter;
import java.net.URI;
import java.util.Map;
import java.util.Iterator;
import java.net.URISyntaxException;
import junit.framework.*;
import net.jxta.access.AccessService;
import net.jxta.access.AccessService.AccessResult;
import net.jxta.credential.Credential;
import net.jxta.credential.PrivilegedOperation;
import net.jxta.document.AdvertisementFactory;
import net.jxta.document.Element;
import net.jxta.document.MimeMediaType;
import net.jxta.document.StructuredDocument;
import net.jxta.document.StructuredDocumentFactory;
import net.jxta.document.XMLDocument;
import net.jxta.document.XMLElement;
import net.jxta.discovery.DiscoveryService;
import net.jxta.id.ID;
import net.jxta.id.IDFactory;
import net.jxta.membership.MembershipService;
import net.jxta.peergroup.PeerGroup;
import net.jxta.peergroup.PeerGroupFactory;
import net.jxta.platform.ModuleSpecID;
import net.jxta.protocol.ModuleImplAdvertisement;
import net.jxta.protocol.PeerGroupAdvertisement;
import net.jxta.impl.peergroup.StdPeerGroupParamAdv;
public class SimpleACLAccessServiceTest extends TestCase {
static PeerGroup npg = null;
static PeerGroup pg = null;
public SimpleACLAccessServiceTest(java.lang.String testName) {
super(testName);
synchronized (SimpleACLAccessServiceTest.class) {
try {
if (null == npg) {
npg = PeerGroupFactory.newNetPeerGroup();
ModuleImplAdvertisement newGroupImpl = npg.getAllPurposePeerGroupImplAdvertisement();
StdPeerGroupParamAdv params = new StdPeerGroupParamAdv(newGroupImpl.getParam());
Map services = params.getServices();
ModuleImplAdvertisement aModuleAdv = (ModuleImplAdvertisement) services.get(PeerGroup.accessClassID);
services.remove(PeerGroup.accessClassID);
ModuleImplAdvertisement implAdv = (ModuleImplAdvertisement)
AdvertisementFactory.newAdvertisement(ModuleImplAdvertisement.getAdvertisementType());
implAdv.setModuleSpecID(SimpleACLAccessService.simpleACLAccessSpecID);
implAdv.setCompat(aModuleAdv.getCompat());
implAdv.setCode(SimpleACLAccessService.class.getName());
implAdv.setUri(aModuleAdv.getUri());
implAdv.setProvider(aModuleAdv.getProvider());
implAdv.setDescription("Simple ACL Access Service");
// replace it
services.put(PeerGroup.accessClassID, implAdv);
newGroupImpl.setParam((Element) params.getDocument(MimeMediaType.XMLUTF8));
if (!newGroupImpl.getModuleSpecID().equals(PeerGroup.allPurposePeerGroupSpecID)) {
newGroupImpl.setModuleSpecID(IDFactory.newModuleSpecID(newGroupImpl.getModuleSpecID().getBaseClass()));
} else {
try {
ID simpleACLGrpModSpecID = ID.create(
new URI(ID.URIEncodingName, "jxta:uuid-" + "DeadBeefDeafBabaFeedBabe000000010406", null));
newGroupImpl.setModuleSpecID((ModuleSpecID) simpleACLGrpModSpecID);
} catch (URISyntaxException absurd) {// Fall through.
}
}
npg.getDiscoveryService().publish(newGroupImpl, PeerGroup.DEFAULT_LIFETIME, PeerGroup.DEFAULT_EXPIRATION);
npg.getDiscoveryService().remotePublish(newGroupImpl, PeerGroup.DEFAULT_LIFETIME);
PeerGroupAdvertisement newPGAdv = (PeerGroupAdvertisement) AdvertisementFactory.newAdvertisement(
PeerGroupAdvertisement.getAdvertisementType());
newPGAdv.setPeerGroupID(IDFactory.newPeerGroupID());
newPGAdv.setModuleSpecID(newGroupImpl.getModuleSpecID());
newPGAdv.setName("Test Group");
newPGAdv.setDescription("Created by Unit Test");
XMLDocument accessparams = (XMLDocument) StructuredDocumentFactory.newStructuredDocument(MimeMediaType.XMLUTF8
,
"Parm");
XMLElement perm = accessparams.createElement("perm", "<<DEFAULT>>:nobody,permit");
accessparams.appendChild(perm);
perm = accessparams.createElement("perm", "everyone:<<ALL>>");
accessparams.appendChild(perm);
perm = accessparams.createElement("perm", "permit:nobody,permit,allow");
accessparams.appendChild(perm);
perm = accessparams.createElement("perm", "deny:notpermit,notallow");
accessparams.appendChild(perm);
newPGAdv.putServiceParam(PeerGroup.accessClassID, accessparams);
npg.getDiscoveryService().publish(newPGAdv, PeerGroup.DEFAULT_LIFETIME, PeerGroup.DEFAULT_EXPIRATION);
npg.getDiscoveryService().remotePublish(newPGAdv, PeerGroup.DEFAULT_LIFETIME);
pg = npg.newGroup(newPGAdv);
}
} catch (Throwable all) {
all.printStackTrace();
fail("exception thrown : " + all.getMessage());
}
}
}
public static void main(java.lang.String[] args) {
junit.textui.TestRunner.run(suite());
synchronized (SimpleACLAccessServiceTest.class) {
if (null != pg) {
pg.stopApp();
pg.unref();
pg = null;
}
if (null != npg) {
npg.stopApp();
npg.unref();
npg = null;
}
}
}
public static Test suite() {
TestSuite suite = new TestSuite(SimpleACLAccessServiceTest.class);
return suite;
}
public void testAllow() {
try {
AccessService access = pg.getAccessService();
MembershipService membership = pg.getMembershipService();
Credential cred = membership.getDefaultCredential();
PrivilegedOperation allowed = access.newPrivilegedOperation("permit", cred);
assertTrue("Operation should be allowed", AccessResult.PERMITTED == access.doAccessCheck(allowed, cred));
} catch (Exception caught) {
caught.printStackTrace();
fail("exception thrown : " + caught.getMessage());
}
}
public void testDefault() {
try {
AccessService access = pg.getAccessService();
MembershipService membership = pg.getMembershipService();
Credential cred = membership.getDefaultCredential();
PrivilegedOperation allowed = access.newPrivilegedOperation("apermissionwhichijustmadeup", cred);
assertTrue("Operation should be allowed", AccessResult.PERMITTED == access.doAccessCheck(allowed, cred));
} catch (Exception caught) {
caught.printStackTrace();
fail("exception thrown : " + caught.getMessage());
}
}
public void testDeny() {
try {
AccessService access = pg.getAccessService();
MembershipService membership = pg.getMembershipService();
Credential cred = membership.getDefaultCredential();
PrivilegedOperation denied = access.newPrivilegedOperation("deny", cred);
assertTrue("Operation should be denied", AccessResult.DISALLOWED == access.doAccessCheck(denied, cred));
StringWriter serialed = new StringWriter();
((XMLDocument) denied.getDocument(MimeMediaType.XMLUTF8)).sendToWriter(serialed);
Reader deserial = new StringReader(serialed.toString());
PrivilegedOperation redenied = access.newPrivilegedOperation(
StructuredDocumentFactory.newStructuredDocument(MimeMediaType.XMLUTF8, deserial));
assertTrue("Operation should be denied", AccessResult.DISALLOWED == access.doAccessCheck(redenied, cred));
} catch (Exception caught) {
caught.printStackTrace();
fail("exception thrown : " + caught.getMessage());
}
}
}