SpringSecurityLoginModuleTest.java example

Explorer
pentaho-platform-master
/*!
 * This program is free software; you can redistribute it and/or modify it under the
 * terms of the GNU Lesser General Public License, version 2.1 as published by the Free Software
 * Foundation.
 *
 * You should have received a copy of the GNU Lesser General Public License along with this
 * program; if not, you can obtain a copy at http://www.gnu.org/licenses/old-licenses/lgpl-2.1.html
 * or from the Free Software Foundation, Inc.,
 * 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
 *
 * This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY;
 * without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.
 * See the GNU Lesser General Public License for more details.
 *
 * Copyright (c) 2002-2016 Pentaho Corporation..  All rights reserved.
 */

package org.pentaho.platform.repository2.unified.jcr.jackrabbit.security;

import org.junit.Test;
import org.pentaho.platform.engine.core.system.PentahoSystem;
import org.springframework.security.core.Authentication;
import org.springframework.security.authentication.AuthenticationManager;
import org.springframework.security.core.context.SecurityContextHolder;

import javax.jcr.Credentials;
import javax.jcr.SimpleCredentials;
import java.security.Principal;

import static junit.framework.Assert.assertTrue;
import static org.junit.Assert.assertFalse;
import static org.mockito.Matchers.any;
import static org.mockito.Mockito.mock;
import static org.mockito.Mockito.when;

/**
 * Created by nbaker on 8/5/15.
 */
public class SpringSecurityLoginModuleTest {


  Credentials credentials = new SimpleCredentials( "joe", "password".toCharArray() );
  SpringSecurityLoginModule loginModule = new SpringSecurityLoginModule();

  /**
   * Verifies that the LoginModule will respond as expected even if the Spring Security AuthenticationManager is not
   * present.
   */
  @Test
  public void testNullAuthenticationManager() throws Exception {

    SecurityContextHolder.clearContext();

    org.apache.jackrabbit.core.security.authentication.Authentication authentication =
        loginModule.getAuthentication( mock( Principal.class ), credentials );

    assertFalse( authentication.authenticate( credentials ) );


    // Now verify that when the AuthenticationManager does become available it will be used and function.

    Authentication springAuth = mock( Authentication.class );

    AuthenticationManager authenticationManager = mock( AuthenticationManager.class );
    when( authenticationManager.authenticate( any( Authentication.class ) ) ).thenReturn( springAuth );

    org.apache.jackrabbit.core.security.authentication.Authentication mockAuthentication =
        mock( org.apache.jackrabbit.core.security.authentication.Authentication.class );
    when( mockAuthentication.authenticate( credentials ) ).thenReturn( Boolean.TRUE );

    PentahoSystem.registerObject( authenticationManager );
    PentahoSystem.init();

    org.apache.jackrabbit.core.security.authentication.Authentication jackrabbitAuth =
        loginModule.getAuthentication( mock( Principal.class ), credentials );

    assertTrue( jackrabbitAuth.authenticate( credentials ) );
  }


}