PropertiesFileCredentialStoreFactoryTests.java

/*******************************************************************************
 * Copyright (c) 2008, 2010 VMware Inc.
 * All rights reserved. This program and the accompanying materials
 * are made available under the terms of the Eclipse Public License v1.0
 * which accompanies this distribution, and is available at
 * http://www.eclipse.org/legal/epl-v10.html
 *
 * Contributors:
 *   VMware Inc. - initial contribution
 *******************************************************************************/

package org.eclipse.virgo.kernel.authentication;

import static org.junit.Assert.*;

import org.eclipse.virgo.kernel.authentication.CredentialStore;
import org.eclipse.virgo.kernel.authentication.PropertiesFileCredentialStoreFactory;
import org.eclipse.virgo.kernel.authentication.Role;
import org.eclipse.virgo.kernel.authentication.User;
import org.junit.Test;

import javax.security.auth.Subject;
import java.security.Principal;
import java.util.Properties;

public class PropertiesFileCredentialStoreFactoryTests {

    @Test
    public void success() {
        Properties properties = new Properties();
        properties.put("user.admin", "springsource");
        properties.put("role.superuser", "admin");

        CredentialStore credentialStore = PropertiesFileCredentialStoreFactory.create(properties);
        User user = credentialStore.getUser("admin");
        assertNotNull(user);
        assertTrue(user.authenticate("springsource"));

        Subject subject = new Subject();
        user.addPrincipals(subject);
        assertEquals(2, subject.getPrincipals().size());
        assertContainsRole(subject, "superuser");
    }

    @Test
    public void twoUsersOneRole() {
        Properties properties = new Properties();
        properties.put("user.admin1", "springsource");
        properties.put("user.admin2", "springsource");
        properties.put("role.superuser", "admin1");

        CredentialStore credentialStore = PropertiesFileCredentialStoreFactory.create(properties);
        User user1 = credentialStore.getUser("admin1");
        assertNotNull(user1);
        assertTrue(user1.authenticate("springsource"));
        Subject subject1 = new Subject();
        user1.addPrincipals(subject1);
        assertEquals(2, subject1.getPrincipals().size());
        assertContainsRole(subject1, "superuser");

        User user2 = credentialStore.getUser("admin2");
        assertNotNull(user2);
        assertTrue(user2.authenticate("springsource"));
        Subject subject2 = new Subject();
        user2.addPrincipals(subject2);
        assertEquals(1, subject2.getPrincipals().size());
    }

    @Test(expected = IllegalArgumentException.class)
    public void roleWithIllegalUser() {
        Properties properties = new Properties();
        properties.put("user.admin", "springsource");
        properties.put("role.superuser", "admin1");

        PropertiesFileCredentialStoreFactory.create(properties);
    }

    private void assertContainsRole(Subject subject, String roleName) {
        boolean foundRole = false;
        for(Principal principal : subject.getPrincipals()) {
            if(principal instanceof Role) {
                if(principal.getName().equals(roleName)) {
                    foundRole = true;
                    break;
                }
            }
        }
        assertTrue(foundRole);
    }

}