2 * ============LICENSE_START====================================================
4 * ===========================================================================
5 * Copyright (c) 2018 AT&T Intellectual Property. All rights reserved.
6 * ===========================================================================
7 * Licensed under the Apache License, Version 2.0 (the "License");
8 * you may not use this file except in compliance with the License.
9 * You may obtain a copy of the License at
11 * http://www.apache.org/licenses/LICENSE-2.0
13 * Unless required by applicable law or agreed to in writing, software
14 * distributed under the License is distributed on an "AS IS" BASIS,
15 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
16 * See the License for the specific language governing permissions and
17 * limitations under the License.
18 * ============LICENSE_END====================================================
21 package org.onap.aaf.cadi.shiro.test;
23 import java.util.ArrayList;
25 import org.apache.shiro.authc.AuthenticationInfo;
26 import org.apache.shiro.authc.UsernamePasswordToken;
27 import org.apache.shiro.authz.AuthorizationInfo;
28 import org.apache.shiro.authz.Permission;
29 import org.apache.shiro.subject.PrincipalCollection;
30 import org.onap.aaf.cadi.aaf.AAFPermission;
31 import org.onap.aaf.cadi.shiro.AAFRealm;
32 import org.onap.aaf.cadi.shiro.AAFShiroPermission;
34 import junit.framework.Assert;
36 public class JU_AAFRealm {
40 // NOTE This is a live test. This JUnit needs to be built with "Mock" before it can be
43 System.setProperty(Config.CADI_PROP_FILES, "/opt/app/osaaf/local/org.onap.aai.props");
44 TestAAFRealm ar = new TestAAFRealm();
46 //UsernamePasswordToken upt = new UsernamePasswordToken("demo@people.osaaf.org", "demo123456!");
47 /// UsernamePasswordToken upt = new UsernamePasswordToken("AAI", "AAI");
48 UsernamePasswordToken upt = new UsernamePasswordToken("admin","Kp8bJ4SXszM0WXlhak3eHlcse2gAw84vaoGGmJvUy2U");
50 AuthenticationInfo ani = ar.authn(upt);
52 AuthorizationInfo azi = ar.authz(ani.getPrincipals());
53 // Change this to something YOU have, Sai...
55 testAPerm(true,azi,"org.onap.aai","resources","something","get");
56 testAPerm(false,azi,"org.osaaf.nons","resources","something","get");
57 // testAPerm(true,azi,"name","org.access","something","*");
58 // testAPerm(false,azi,"org.accessX","something","*");
59 } catch (Throwable t) {
65 private void testAPerm(boolean expect, AuthorizationInfo azi, String ns, String type, String instance, String action) {
67 AAFShiroPermission testPerm = new AAFShiroPermission(new AAFPermission(ns,type,instance,action,new ArrayList<String>()));
70 for(Permission p : azi.getObjectPermissions()) {
71 if(p.implies(testPerm)) {
76 Assert.assertTrue(any);
78 Assert.assertFalse(any);
85 * Note, have to create a derived class, because "doGet"... are protected
87 private class TestAAFRealm extends AAFRealm {
88 public AuthenticationInfo authn(UsernamePasswordToken upt) {
89 return doGetAuthenticationInfo(upt);
91 public AuthorizationInfo authz(PrincipalCollection pc) {
92 return doGetAuthorizationInfo(pc);