adding first test for REST authentication by flex auth

Evolveum · Jan 30, 2020 · 697d117 · 697d117
1 parent 250a14f
commit 697d117
Show file tree

Hide file tree

Showing 13 changed files with 504 additions and 31 deletions.
diff --git a/...min-gui/src/main/java/com/evolveum/midpoint/web/boot/EmbeddedTomcatAutoConfiguration.java b/...min-gui/src/main/java/com/evolveum/midpoint/web/boot/EmbeddedTomcatAutoConfiguration.java
@@ -22,6 +22,7 @@
 import org.springframework.context.annotation.Bean;
 import org.springframework.context.annotation.Configuration;
 import org.springframework.context.annotation.Import;
+import org.springframework.context.annotation.Profile;
 import org.springframework.core.Ordered;
 
 import com.evolveum.midpoint.util.logging.Trace;
@@ -42,6 +43,7 @@ public class EmbeddedTomcatAutoConfiguration {
 
     private static final Trace LOGGER = TraceManager.getTrace(EmbeddedTomcatAutoConfiguration.class);
 
+    @Profile("!test")
     @Configuration
     @ConditionalOnClass({ Servlet.class, Tomcat.class, UpgradeProtocol.class })
     @ConditionalOnMissingBean(value = TomcatServletWebServerFactory.class, search = SearchStrategy.CURRENT)
@@ -70,5 +72,4 @@ public TomcatServletWebServerFactory tomcatEmbeddedServletContainerFactory() {
         }
 
     }
-
 }
diff --git a/...admin-gui/src/test/java/com/evolveum/midpoint/gui/test/TestMidPointSpringApplication.java b/...admin-gui/src/test/java/com/evolveum/midpoint/gui/test/TestMidPointSpringApplication.java
@@ -9,13 +9,16 @@
 import java.lang.management.ManagementFactory;
 
 import com.evolveum.midpoint.common.configuration.api.MidpointConfiguration;
+import com.evolveum.midpoint.web.boot.AbstractSpringBootApplication;
 import org.apache.commons.lang.StringUtils;
 import org.springframework.boot.Banner;
 import org.springframework.boot.ExitCodeGenerator;
 import org.springframework.boot.SpringApplication;
 import org.springframework.boot.SpringBootConfiguration;
 import org.springframework.boot.builder.SpringApplicationBuilder;
+import org.springframework.boot.web.embedded.tomcat.TomcatServletWebServerFactory;
 import org.springframework.context.ConfigurableApplicationContext;
+import org.springframework.context.annotation.Bean;
 import org.springframework.context.annotation.ComponentScan;
 import org.springframework.context.annotation.ImportResource;
 import org.springframework.context.annotation.Profile;
@@ -24,7 +27,6 @@
 import com.evolveum.midpoint.gui.impl.registry.GuiComponentRegistryImpl;
 import com.evolveum.midpoint.util.logging.Trace;
 import com.evolveum.midpoint.util.logging.TraceManager;
-import com.evolveum.midpoint.web.boot.AbstractSpringBootApplication;
 
 /**
  * @author katka
@@ -59,7 +61,7 @@
 })
 @Profile({"test", "!default"})
 @SpringBootConfiguration
-@ComponentScan(basePackages = {"com.evolveum.midpoint.gui","com.evolveum.midpoint.gui.api"}, basePackageClasses = {TextAreaPanelFactory.class, GuiComponentRegistryImpl.class})
+@ComponentScan(basePackages = {"com.evolveum.midpoint.web.security.factory", "com.evolveum.midpoint.gui","com.evolveum.midpoint.gui.api"}, basePackageClasses = {TextAreaPanelFactory.class, GuiComponentRegistryImpl.class})
 public class TestMidPointSpringApplication extends AbstractSpringBootApplication {
 
     private static final transient Trace LOGGER = TraceManager.getTrace(TestMidPointSpringApplication.class);
@@ -127,4 +129,10 @@ private static SpringApplicationBuilder configureApplication(SpringApplicationBu
         return application.sources(TestMidPointSpringApplication.class);
     }
 
+    @Bean
+    public TomcatServletWebServerFactory tomcatEmbeddedServletContainerFactory() {
+        TomcatServletWebServerFactory tomcat = new TomcatServletWebServerFactory();
+        return tomcat;
+    }
+
 }
diff --git a/testing/rest/pom.xml b/testing/rest/pom.xml
@@ -40,6 +40,12 @@
             <groupId>com.evolveum.midpoint.infra</groupId>
             <artifactId>schema</artifactId>
             <version>4.1-SNAPSHOT</version>
+            <exclusions> <!-- we dont want bouncy castle to include into midPoint -->
+                <exclusion>
+                    <groupId>org.bouncycastle</groupId>
+                    <artifactId>bcprov-jdk15on</artifactId>
+                </exclusion>
+            </exclusions>
         </dependency>
       <dependency>
           <groupId>com.evolveum.midpoint.infra</groupId>
@@ -112,7 +118,21 @@
             <artifactId>repo-test-util</artifactId>
             <version>4.1-SNAPSHOT</version>
         </dependency>
-            <dependency>
+        <!--<dependency>-->
+        <!--    <groupId>com.evolveum.midpoint.gui</groupId>-->
+        <!--    <artifactId>admin-gui</artifactId>-->
+        <!--    <version>4.1-SNAPSHOT</version>-->
+        <!--    <type>jar</type>-->
+        <!--    <classifier>sources</classifier>-->
+        <!--</dependency>-->
+        <dependency>
+            <groupId>com.evolveum.midpoint.gui</groupId>
+            <artifactId>admin-gui</artifactId>
+            <version>4.1-SNAPSHOT</version>
+            <type>jar</type>
+            <classifier>tests</classifier>
+        </dependency>
+        <dependency>
             <groupId>javax.xml.bind</groupId>
             <artifactId>jaxb-api</artifactId>
         </dependency>
@@ -146,6 +166,39 @@
             <artifactId>testng</artifactId>
             <scope>test</scope>
         </dependency>
+      <dependency>
+          <groupId>org.springframework.boot</groupId>
+          <artifactId>spring-boot</artifactId>
+      </dependency>
+      <dependency>
+          <groupId>org.springframework.boot</groupId>
+          <artifactId>spring-boot-starter-web</artifactId>
+      </dependency>
+      <dependency>
+          <groupId>org.springframework.boot</groupId>
+          <artifactId>spring-boot-autoconfigure</artifactId>
+      </dependency>
+      <dependency>
+          <groupId>org.springframework.boot</groupId>
+          <artifactId>spring-boot-starter-tomcat</artifactId>
+          <scope>provided</scope>
+      </dependency>
+
+      <dependency>
+          <groupId>org.springframework.boot</groupId>
+          <artifactId>spring-boot-starter-security</artifactId>
+      </dependency>
+        <dependency>
+            <groupId>org.springframework.boot</groupId>
+            <artifactId>spring-boot-starter-test</artifactId>
+            <exclusions>
+                <exclusion>
+                    <artifactId>asm</artifactId>
+                    <groupId>org.ow2.asm</groupId>
+                </exclusion>
+            </exclusions>
+            <scope>test</scope>
+        </dependency>
 
         <dependency>
             <groupId>com.evolveum.midpoint.tools</groupId>

diff --git a/testing/rest/src/test/java/com/evolveum/midpoint/testing/boot/RestServiceInitializer.java b/testing/rest/src/test/java/com/evolveum/midpoint/testing/boot/RestServiceInitializer.java
@@ -0,0 +1,203 @@
+/*
+ * Copyright (c) 2010-2017 Evolveum and contributors
+ *
+ * This work is dual-licensed under the Apache License 2.0
+ * and European Union Public License. See LICENSE file for details.
+ */
+package com.evolveum.midpoint.testing.boot;
+
+import com.evolveum.midpoint.common.rest.MidpointAbstractProvider;
+import com.evolveum.midpoint.common.rest.MidpointJsonProvider;
+import com.evolveum.midpoint.common.rest.MidpointXmlProvider;
+import com.evolveum.midpoint.common.rest.MidpointYamlProvider;
+import com.evolveum.midpoint.model.api.ModelExecuteOptions;
+import com.evolveum.midpoint.model.api.ModelService;
+import com.evolveum.midpoint.prism.PrismContext;
+import com.evolveum.midpoint.prism.PrismObject;
+import com.evolveum.midpoint.provisioning.api.ProvisioningService;
+import com.evolveum.midpoint.repo.api.RepositoryService;
+import com.evolveum.midpoint.schema.internals.InternalMonitor;
+import com.evolveum.midpoint.schema.internals.InternalsConfig;
+import com.evolveum.midpoint.schema.result.OperationResult;
+import com.evolveum.midpoint.task.api.Task;
+import com.evolveum.midpoint.task.api.TaskManager;
+import com.evolveum.midpoint.test.DummyAuditService;
+import com.evolveum.midpoint.util.logging.Trace;
+import com.evolveum.midpoint.util.logging.TraceManager;
+import com.evolveum.midpoint.web.AbstractGuiIntegrationTest;
+import com.evolveum.midpoint.xml.ns._public.common.common_3.SystemConfigurationType;
+import org.apache.cxf.jaxrs.client.ClientConfiguration;
+import org.apache.cxf.jaxrs.client.WebClient;
+import org.apache.cxf.transport.local.LocalConduit;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.boot.web.server.LocalServerPort;
+
+import javax.ws.rs.core.Response;
+import java.io.File;
+import java.util.Arrays;
+
+import static org.testng.AssertJUnit.assertEquals;
+
+public abstract class RestServiceInitializer extends AbstractGuiIntegrationTest {
+
+    private static final Trace LOGGER = TraceManager.getTrace(RestServiceInitializer.class);
+
+    protected static final File BASE_REPO_DIR = new File("src/test/resources/repo/");
+
+    public static final File USER_ADMINISTRATOR_FILE = new File(BASE_REPO_DIR, "user-administrator.xml");
+    public static final String USER_ADMINISTRATOR_USERNAME = "administrator";
+    public static final String USER_ADMINISTRATOR_PASSWORD = "5ecr3t";
+
+    // No authorization
+    public static final File USER_NOBODY_FILE = new File(BASE_REPO_DIR, "user-nobody.xml");
+    public static final String USER_NOBODY_OID = "ffb9729c-d48b-11e4-9720-001e8c717e5b";
+    public static final String USER_NOBODY_USERNAME = "nobody";
+    public static final String USER_NOBODY_PASSWORD = "nopassword";
+
+    // REST authorization only
+    public static final File USER_CYCLOPS_FILE = new File(BASE_REPO_DIR, "user-cyclops.xml");
+    public static final String USER_CYCLOPS_OID = "6020bb52-d48e-11e4-9eaf-001e8c717e5b";
+    public static final String USER_CYCLOPS_USERNAME = "cyclops";
+    public static final String USER_CYCLOPS_PASSWORD = "cyclopassword";
+
+    // REST and reader authorization
+    public static final File USER_SOMEBODY_FILE = new File(BASE_REPO_DIR, "user-somebody.xml");
+    public static final String USER_SOMEBODY_OID = "a5f3e3c8-d48b-11e4-8d88-001e8c717e5b";
+    public static final String USER_SOMEBODY_USERNAME = "somebody";
+    public static final String USER_SOMEBODY_PASSWORD = "somepassword";
+
+    // other
+    public static final File USER_JACK_FILE = new File(BASE_REPO_DIR, "user-jack.xml");
+    public static final String USER_JACK_OID = "229487cb-59b6-490b-879d-7a6d925dd08c";
+
+    public static final File ROLE_SUPERUSER_FILE = new File(BASE_REPO_DIR, "role-superuser.xml");
+    public static final File ROLE_ENDUSER_FILE = new File(BASE_REPO_DIR, "role-enduser.xml");
+    public static final File ROLE_REST_FILE = new File(BASE_REPO_DIR, "role-rest.xml");
+    public static final File ROLE_READER_FILE = new File(BASE_REPO_DIR, "role-reader.xml");
+
+    public static final File SYSTEM_CONFIGURATION_FILE = new File(BASE_REPO_DIR, "system-configuration.xml");
+
+    public static final File VALUE_POLICY_GENERAL = new File(BASE_REPO_DIR, "value-policy-general.xml");
+    public static final File VALUE_POLICY_NUMERIC = new File(BASE_REPO_DIR, "value-policy-numeric.xml");
+    public static final File VALUE_POLICY_SIMPLE = new File(BASE_REPO_DIR, "value-policy-simple.xml");
+    public static final File VALUE_POLICY_SECURITY_ANSWER = new File(BASE_REPO_DIR, "value-policy-security-answer.xml");
+    public static final File SECURITY_POLICY = new File(BASE_REPO_DIR, "security-policy.xml");
+    public static final File SECURITY_POLICY_NO_HISTORY = new File(BASE_REPO_DIR, "security-policy-no-history.xml");
+
+    @LocalServerPort
+    private int port = 0;
+
+    @Autowired
+    private ProvisioningService provisioning;
+
+    @Autowired
+    protected MidpointXmlProvider xmlProvider;
+
+    @Autowired
+    protected MidpointJsonProvider jsonProvider;
+
+    @Autowired
+    protected MidpointYamlProvider yamlProvider;
+
+    protected abstract String getAcceptHeader();
+    protected abstract String getContentType();
+    protected abstract MidpointAbstractProvider getProvider();
+
+    protected String ENDPOINT_ADDRESS = "http://localhost:" + "8080" + "/ws/rest";
+
+    @Override
+    public void initSystem(Task initTask, OperationResult result) throws Exception {
+        super.initSystem(initTask, result);
+        LOGGER.trace("initSystem");
+
+        InternalsConfig.encryptionChecks = false;
+
+        addObject(ROLE_REST_FILE, initTask, result);
+        addObject(ROLE_READER_FILE, initTask, result);
+        addObject(USER_NOBODY_FILE, initTask, result);
+        addObject(USER_CYCLOPS_FILE, initTask, result);
+        addObject(USER_SOMEBODY_FILE, initTask, result);
+        addObject(USER_JACK_FILE, initTask, result);
+        addObject(VALUE_POLICY_GENERAL, initTask, result);
+        addObject(VALUE_POLICY_NUMERIC, initTask, result);
+        addObject(VALUE_POLICY_SIMPLE, initTask, result);
+        addObject(VALUE_POLICY_SECURITY_ANSWER, initTask, result);
+        addObject(SECURITY_POLICY, initTask, result);
+        PrismObject<SystemConfigurationType> systemConfig = parseObject(SYSTEM_CONFIGURATION_FILE);
+        addObject(systemConfig, ModelExecuteOptions.createOverwrite(), initTask, result);
+
+        dummyAuditService = getDummyAuditService().getInstance();
+
+        InternalMonitor.reset();
+
+        getModelService().postInit(result);
+
+        result.computeStatus();
+    }
+
+    protected WebClient prepareClient(String username, String password) {
+
+        WebClient client = WebClient.create(ENDPOINT_ADDRESS, Arrays.asList(getProvider()));// ,
+                                                                            // provider);
+        ClientConfiguration clientConfig = WebClient.getConfig(client);
+
+        clientConfig.getRequestContext().put(LocalConduit.DIRECT_DISPATCH, Boolean.TRUE);
+
+        client.accept(getAcceptHeader());
+        client.type(getContentType());
+
+        createAuthorizationHeader(client, username, password);
+        return client;
+
+    }
+
+    protected void createAuthorizationHeader(WebClient client, String username, String password) {
+        if (username != null) {
+            String authorizationHeader = "Basic " + org.apache.cxf.common.util.Base64Utility
+                    .encode((username + ":" + (password == null ? "" : password)).getBytes());
+            client.header("Authorization", authorizationHeader);
+        }
+    }
+
+    protected void assertStatus(Response response, int expStatus) {
+        assertEquals("Expected " + expStatus + " but got " + response.getStatus(), expStatus,
+                response.getStatus());
+    }
+
+    public PrismContext getPrismContext() {
+        return prismContext;
+    }
+
+    public TaskManager getTaskManager() {
+        return taskManager;
+    }
+
+    public ModelService getModelService() {
+        return modelService;
+    }
+
+    public RepositoryService getRepositoryService() {
+        return repositoryService;
+    }
+
+    public ProvisioningService getProvisioning() {
+        return provisioning;
+    }
+
+    public DummyAuditService getDummyAuditService() {
+        return dummyAuditService;
+    }
+
+    public MidpointXmlProvider getXmlProvider() {
+        return xmlProvider;
+    }
+
+    public MidpointJsonProvider getJsonProvider() {
+        return jsonProvider;
+    }
+
+    public MidpointYamlProvider getYamlProvider() {
+        return yamlProvider;
+    }
+
+}