add LDAP cache test

quarkusio · Mar 26, 2024 · d06787c · d06787c
1 parent b1ad7ec
commit d06787c
Show file tree

Hide file tree

Showing 3 changed files with 37 additions and 1 deletion.
diff --git a/integration-tests/elytron-security-ldap/src/main/resources/application.properties b/integration-tests/elytron-security-ldap/src/main/resources/application.properties
@@ -9,4 +9,8 @@ quarkus.security.ldap.identity-mapping.search-base-dn=ou=Users,dc=quarkus,dc=io
 
 quarkus.security.ldap.identity-mapping.attribute-mappings."0".from=cn
 quarkus.security.ldap.identity-mapping.attribute-mappings."0".filter=(member=uid={0},ou=Users,dc=quarkus,dc=io)
-quarkus.security.ldap.identity-mapping.attribute-mappings."0".filter-base-dn=ou=Roles,dc=quarkus,dc=io
+quarkus.security.ldap.identity-mapping.attribute-mappings."0".filter-base-dn=ou=Roles,dc=quarkus,dc=io
+
+quarkus.security.ldap.cache.enabled=true
+quarkus.security.ldap.cache.max-age=60s
+quarkus.security.ldap.cache.size=10
diff --git a/...urity-ldap/src/test/java/io/quarkus/elytron/security/ldap/it/ElytronSecurityLdapTest.java b/...urity-ldap/src/test/java/io/quarkus/elytron/security/ldap/it/ElytronSecurityLdapTest.java
@@ -4,12 +4,17 @@
 
 import org.junit.jupiter.api.Test;
 
+import com.unboundid.ldap.listener.InMemoryDirectoryServer;
+import com.unboundid.ldap.sdk.LDAPException;
+
 import io.quarkus.test.junit.QuarkusTest;
 import io.restassured.RestAssured;
 
 @QuarkusTest
 class ElytronSecurityLdapTest {
 
+    InMemoryDirectoryServer ldapServer;
+
     @Test
     void anonymous() {
         RestAssured.given()
@@ -82,4 +87,26 @@ void admin_role_not_authorized() {
                 .then()
                 .statusCode(403);
     }
+
+    @Test()
+    void standard_role_authenticated_cached() throws LDAPException {
+        RestAssured.given()
+                .redirects().follow(false)
+                .when()
+                .auth().preemptive().basic("standardUser", "standardUserPassword")
+                .get("/api/requiresStandardRole")
+                .then()
+                .statusCode(200);
+
+        ldapServer.shutDown(false);
+
+        RestAssured.given()
+                .redirects().follow(false)
+                .when()
+                .auth().preemptive().basic("standardUser", "standardUserPassword")
+                .get("/api/requiresStandardRole")
+                .then()
+                .statusCode(200);
+    }
+
 }
diff --git a/test-framework/ldap/src/main/java/io/quarkus/test/ldap/LdapServerTestResource.java b/test-framework/ldap/src/main/java/io/quarkus/test/ldap/LdapServerTestResource.java
@@ -49,4 +49,9 @@ public synchronized void stop() {
             ldapServer = null;
         }
     }
+
+    @Override
+    public void inject(TestInjector testInjector) {
+        testInjector.injectIntoFields(ldapServer, new TestInjector.MatchesType(InMemoryDirectoryServer.class));
+    }
 }