AuditLogToTLSSyslogTestCase.java

/*
 * JBoss, Home of Professional Open Source
 * Copyright 2014, JBoss Inc., and individual contributors as indicated
 * by the @authors tag.
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 * http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 */
package org.jboss.as.test.integration.auditlog;

import static org.jboss.as.controller.descriptions.ModelDescriptionConstants.AUTHENTICATION;
import static org.jboss.as.controller.descriptions.ModelDescriptionConstants.CLIENT_CERT_STORE;
import static org.jboss.as.controller.descriptions.ModelDescriptionConstants.PROTOCOL;
import static org.jboss.as.controller.descriptions.ModelDescriptionConstants.TLS;
import static org.jboss.as.controller.descriptions.ModelDescriptionConstants.TRUSTSTORE;
import static org.jboss.as.domain.management.ModelDescriptionConstants.KEYSTORE_PASSWORD;
import static org.jboss.as.domain.management.ModelDescriptionConstants.KEYSTORE_PATH;

import java.io.File;
import java.io.FileOutputStream;
import java.io.IOException;
import java.util.ArrayList;
import java.util.List;

import org.apache.commons.io.FileUtils;
import org.apache.commons.io.IOUtils;
import org.jboss.as.controller.PathAddress;
import org.jboss.as.controller.operations.common.Util;
import org.jboss.as.test.syslogserver.TLSSyslogServerConfig;
import org.wildfly.core.testrunner.ManagementClient;
import org.wildfly.core.testrunner.ServerSetup;
import org.wildfly.core.testrunner.WildflyTestRunner;
import org.jboss.dmr.ModelNode;
import org.junit.runner.RunWith;
import org.productivity.java.syslog4j.server.SyslogServerConfigIF;

/**
 * Tests TLS protocol of auditlog-to-syslog handler.
 *
 * @author Josef Cacek
 */
@RunWith(WildflyTestRunner.class)
//@RunAsClient
@ServerSetup(AuditLogToTLSSyslogTestCase.AuditLogToTLSSyslogTestCaseSetup.class)
public class AuditLogToTLSSyslogTestCase extends AuditLogToSyslogTestCase {

    /**
     * {@link org.wildfly.core.testrunner.ServerSetupTask} implementation which configures syslog server and auditlog-to-syslog
     * handler for this test. It creates key material in a temporary folder in addition to actions described in the parent
     * class.
     *
     * @author Josef Cacek
     */
    static class AuditLogToTLSSyslogTestCaseSetup extends AuditLogToSyslogSetup {

        private static final File WORK_DIR = new File("audit-workdir");

        public static final File SERVER_KEYSTORE_FILE = new File(WORK_DIR, "server.keystore");
        public static final File SERVER_TRUSTSTORE_FILE = new File(WORK_DIR, "server.truststore");
        public static final File CLIENT_KEYSTORE_FILE = new File(WORK_DIR, "client.keystore");
        public static final File CLIENT_TRUSTSTORE_FILE = new File(WORK_DIR, "client.truststore");

        private static String PASSWORD = "123456";

        @Override
        protected String getSyslogProtocol() {
            return TLS;
        }

        @Override
        protected ModelNode addAuditlogSyslogProtocol(PathAddress syslogHandlerAddress) {
            ModelNode op = Util.createAddOperation(syslogHandlerAddress.append(PROTOCOL, TLS));
            op.get("message-transfer").set("OCTET_COUNTING");
            return op;
        }

        @Override
        protected SyslogServerConfigIF getSyslogConfig() {
            TLSSyslogServerConfig config = new TLSSyslogServerConfig();
            config.setKeyStore(SERVER_KEYSTORE_FILE.getAbsolutePath());
            config.setKeyStorePassword(PASSWORD);
            config.setTrustStore(SERVER_TRUSTSTORE_FILE.getAbsolutePath());
            config.setTrustStorePassword(PASSWORD);
            return config;
        }

        @Override
        protected List<ModelNode> addProtocolSettings(PathAddress syslogHandlerAddress) {
            PathAddress protocolAddress = syslogHandlerAddress.append(PROTOCOL, TLS);
            List<ModelNode> ops = new ArrayList<ModelNode>();
            ModelNode op1 = Util.createAddOperation(protocolAddress.append(AUTHENTICATION, TRUSTSTORE));
            op1.get(KEYSTORE_PATH).set(CLIENT_TRUSTSTORE_FILE.getAbsolutePath());
            op1.get(KEYSTORE_PASSWORD).set(PASSWORD);
            ops.add(op1);
            ModelNode op2 = Util.createAddOperation(protocolAddress.append(AUTHENTICATION, CLIENT_CERT_STORE));
            op2.get(KEYSTORE_PATH).set(CLIENT_KEYSTORE_FILE.getAbsolutePath());
            op2.get(KEYSTORE_PASSWORD).set(PASSWORD);
            ops.add(op2);
            return ops;
        }

        /**
         * Creates {@link #WORK_DIR} folder and copies keystores and truststores to it. Then calls parent
         * {@link org.wildfly.core.testrunner.ServerSetupTask#setup(org.wildfly.core.testrunner.ManagementClient)} method.
         *
         * @see org.jboss.as.test.integration.auditlog.AuditLogToSyslogSetup#setup(org.jboss.as.arquillian.container.ManagementClient,
         *      java.lang.String)
         */
        @Override
        public void setup(ManagementClient managementClient) throws Exception {
            FileUtils.deleteDirectory(WORK_DIR);
            WORK_DIR.mkdirs();
            createTestResource(SERVER_KEYSTORE_FILE);
            createTestResource(SERVER_TRUSTSTORE_FILE);
            createTestResource(CLIENT_KEYSTORE_FILE);
            createTestResource(CLIENT_TRUSTSTORE_FILE);
            super.setup(managementClient);
        }

        /**
         * Then calls parent {@link org.wildfly.core.testrunner.ServerSetupTask#tearDown(org.wildfly.core.testrunner.ManagementClient)} method and then deletes
         * {@link #WORK_DIR} folder. Creates {@link #WORK_DIR} folder and copies keystores and truststores to it.
         *
         * @see org.jboss.as.test.integration.auditlog.AuditLogToSyslogSetup#tearDown(org.jboss.as.arquillian.container.ManagementClient,
         *      java.lang.String)
         */
        @Override
        public void tearDown(ManagementClient managementClient) throws Exception {
            super.tearDown(managementClient);
            FileUtils.deleteDirectory(WORK_DIR);
        }

        /**
         * Copies a resource file from current package to location denoted by given {@link java.io.File} instance.
         *
         * @param file
         * @throws java.io.IOException
         */
        private void createTestResource(File file) throws IOException {
            FileOutputStream fos = null;
            try {
                fos = new FileOutputStream(file);
                IOUtils.copy(getClass().getResourceAsStream(file.getName()), fos);
            } finally {
                IOUtils.closeQuietly(fos);
            }
        }

    }
}