package org.zstack.test.ldap;
import com.unboundid.ldap.sdk.LDAPException;
import org.junit.Assert;
import org.junit.Before;
import org.junit.Rule;
import org.junit.Test;
import org.junit.rules.ExpectedException;
import org.zstack.core.cloudbus.CloudBus;
import org.zstack.core.componentloader.ComponentLoader;
import org.zstack.header.identity.AccountInventory;
import org.zstack.header.identity.SessionInventory;
import org.zstack.header.message.APIEvent;
import org.zstack.header.query.QueryCondition;
import org.zstack.ldap.*;
import org.zstack.portal.apimediator.PortalSystemTags;
import org.zstack.test.Api;
import org.zstack.test.ApiSender;
import org.zstack.test.ApiSenderException;
import org.zstack.test.DBUtil;
import org.zstack.test.deployer.Deployer;
import org.zstack.utils.Utils;
import org.zstack.utils.logging.CLogger;
import java.util.ArrayList;
import java.util.Arrays;
import java.util.stream.Collectors;
public class TestLdapBindUnbindTLS {
@Rule
public ExpectedException thrown = ExpectedException.none();
CLogger logger = Utils.getLogger(TestLdapBindUnbindTLS.class);
Deployer deployer;
Api api;
ComponentLoader loader;
CloudBus bus;
SessionInventory session;
LdapManager ldapManager;
@Before
public void setUp() throws Exception {
DBUtil.reDeployDB();
deployer = new Deployer("deployerXml/ldap/TestLdap.xml");
deployer.addSpringConfig("LdapManagerImpl.xml");
deployer.build();
api = deployer.getApi();
loader = deployer.getComponentLoader();
ldapManager = loader.getComponent(LdapManager.class);
bus = loader.getComponent(CloudBus.class);
session = api.loginAsAdmin();
}
private void queryLdapServer() throws ApiSenderException {
ApiSender sender = api.getApiSender();
// query ldap server
APIQueryLdapServerMsg msg12 = new APIQueryLdapServerMsg();
msg12.setConditions(new ArrayList<QueryCondition>());
msg12.setSession(session);
APIQueryLdapServerReply reply12 = sender.call(msg12, APIQueryLdapServerReply.class);
logger.debug(reply12.getInventories().stream().map(LdapServerInventory::getUrl).collect(Collectors.joining(", ")));
}
@Test
public void test() throws ApiSenderException, LDAPException {
ApiSender sender = api.getApiSender();
String url = "ldap://172.20.12.176:389";
String basedn = "dc=learnitguide,dc=net";
String managerName = "cn=Manager,dc=learnitguide,dc=net";
String managerPassword = "password";
String uid = "star.guo";
String password = "miao";
// add ldap server
APIAddLdapServerMsg msg13 = new APIAddLdapServerMsg();
msg13.setName("miao");
msg13.setDescription("miao desc");
msg13.setUrl(url);
msg13.setBase(basedn);
msg13.setUsername("");
msg13.setPassword("");
msg13.setEncryption("TLS");
msg13.setSession(session);
APIAddLdapServerEvent evt13 = sender.send(msg13, APIAddLdapServerEvent.class);
logger.debug(evt13.getInventory().getName());
queryLdapServer();
// test conn
APIAddLdapServerMsg msg211 = new APIAddLdapServerMsg();
msg211.setSystemTags(Arrays.asList(PortalSystemTags.VALIDATION_ONLY.getTagFormat()));
msg211.setName("miao");
msg211.setDescription("miao desc");
msg211.setUrl(url);
msg211.setBase(basedn);
msg211.setUsername(managerName);
msg211.setPassword(managerPassword);
msg211.setEncryption("TLS");
msg211.setSession(session);
msg211.setTimeout(10);
APIEvent evt211 = sender.send(msg211, APIEvent.class);
Assert.assertTrue(evt211.isSuccess());
// bind account
AccountInventory ai1 = api.createAccount("ldapuser1", "hello-kitty");
APICreateLdapBindingMsg msg2 = new APICreateLdapBindingMsg();
msg2.setAccountUuid(ai1.getUuid());
msg2.setLdapUid(uid);
msg2.setSession(session);
APICreateLdapBindingEvent evt2 = sender.send(msg2, APICreateLdapBindingEvent.class);
logger.debug(evt2.getInventory().getUuid());
// login with right password
APILogInByLdapMsg msg3 = new APILogInByLdapMsg();
msg3.setUid(uid);
msg3.setPassword(password);
msg3.setServiceId(bus.makeLocalServiceId(LdapConstant.SERVICE_ID));
APILogInByLdapReply reply3 = sender.call(msg3, APILogInByLdapReply.class);
logger.debug(reply3.getInventory().getAccountUuid());
logger.debug(reply3.getAccountInventory().getName());
// login with wrong password
thrown.expect(ApiSenderException.class);
//thrown.expectMessage("");
APILogInByLdapMsg msg31 = new APILogInByLdapMsg();
msg31.setUid(uid);
msg31.setPassword("wrong password");
msg31.setServiceId(bus.makeLocalServiceId(LdapConstant.SERVICE_ID));
APILogInByLdapReply reply31 = sender.call(msg31, APILogInByLdapReply.class);
logger.debug(reply31.getInventory().getAccountUuid());
logger.debug(reply31.getAccountInventory().getName());
//
}
}