/*
* Licensed to the Apache Software Foundation (ASF) under one or more
* contributor license agreements. See the NOTICE file distributed with
* this work for additional information regarding copyright ownership.
* The ASF licenses this file to You under the Apache License, Version 2.0
* (the "License"); you may not use this file except in compliance with
* the License. You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
package org.apache.wicket.protocol.ws.util.tester;
import java.util.Arrays;
import java.util.concurrent.atomic.AtomicBoolean;
import javax.servlet.http.HttpServletRequest;
import org.apache.wicket.mock.MockApplication;
import org.apache.wicket.protocol.http.WebApplication;
import org.apache.wicket.protocol.http.mock.MockHttpServletRequest;
import org.apache.wicket.protocol.ws.WebSocketSettings;
import org.apache.wicket.protocol.ws.api.WebSocketConnectionOriginFilter;
import org.apache.wicket.request.http.WebRequest;
import org.apache.wicket.util.tester.WicketTester;
import org.junit.After;
import org.junit.Assert;
import org.junit.Before;
import org.junit.Test;
/**
* Tests for https://issues.apache.org/jira/browse/WICKET-5860
*/
public class WebSocketTesterProcessorTest extends Assert
{
final static AtomicBoolean messageReceived = new AtomicBoolean(false);
private static class TestProcessor extends TestWebSocketProcessor
{
private TestProcessor(HttpServletRequest request, WebApplication application)
{
super(request, application);
}
@Override
protected void onOutMessage(String message)
{
messageReceived.set(true);
}
@Override
protected void onOutMessage(byte[] message, int offset, int length)
{
messageReceived.set(true);
}
}
WicketTester tester;
WebApplication application = new MockApplication()
{
@Override
protected void init()
{
super.init();
getSharedResources().add(TestWebSocketResource.TEXT, new TestWebSocketResource("expected"));
}
};
@Before
public void before()
{
tester = new WicketTester(application);
application.getWicketFilter().setFilterPath("");
}
@After
public void after()
{
tester.destroy();
TestWebSocketResource.ON_ABORT_CALLED.set(false);
}
@Test
public void onConnectNoOrigin()
{
// Given header 'Origin' is missing
configureRequest(new String[] { "http://www.example.com" }, new String[] {});
// When we open a connection
TestWebSocketProcessor processor = new TestProcessor(tester.getRequest(), tester.getApplication());
processor.onOpen(new Object());
// Then it fails
assertTrue(TestWebSocketResource.ON_ABORT_CALLED.get());
}
// @Ignore
@Test
public void onConnectMultipleOrigins()
{
// Given the request contains multiple header 'Origin's
configureRequest(new String[] { "http://www.example.com" }, new String[] { "http://www.example.com", "http://ww2.example.com" });
// When we open a connection
TestWebSocketProcessor processor = new TestProcessor(tester.getRequest(), tester.getApplication());
processor.onOpen(new Object());
// Then it fails
assertTrue(TestWebSocketResource.ON_ABORT_CALLED.get());
}
@Test
public void onConnectMatchingOrigin()
{
// Given header 'Origin' matches the host origin
configureRequest(new String[] { "http://www.example.com" }, new String[] { "http://www.example.com" });
// When we open a connection
TestWebSocketProcessor processor = new TestProcessor(tester.getRequest(), tester.getApplication());
processor.onOpen(new Object());
// Then it succeeds
assertFalse(TestWebSocketResource.ON_ABORT_CALLED.get());
}
@Test
public void onConnectMismatchingOrigin()
{
// Given header 'Origin' does not match the host origin
configureRequest(new String[] { "http://www.example.com" }, new String[] { "http://ww2.example.com" });
// When we open a connection
TestWebSocketProcessor processor = new TestProcessor(tester.getRequest(), tester.getApplication());
processor.onOpen(new Object());
// Then it fails
assertTrue(TestWebSocketResource.ON_ABORT_CALLED.get());
}
protected void configureRequest(String[] allowedDomains, String[] origins)
{
WebSocketSettings webSocketSettings = WebSocketSettings.Holder.get(application);
WebSocketConnectionOriginFilter connectionFilter = new WebSocketConnectionOriginFilter(Arrays.asList(allowedDomains));
webSocketSettings.setConnectionFilter(connectionFilter);
MockHttpServletRequest request = tester.getRequest();
for (String origin : origins)
{
request.addHeader("Origin", origin);
}
request.addParameter("resourceName", TestWebSocketResource.TEXT);
request.addParameter(WebRequest.PARAM_AJAX_BASE_URL, ".");
}
}