2 * ============LICENSE_START====================================================
4 * ===========================================================================
5 * Copyright (c) 2018 AT&T Intellectual Property. All rights reserved.
6 * ===========================================================================
7 * Licensed under the Apache License, Version 2.0 (the "License");
8 * you may not use this file except in compliance with the License.
9 * You may obtain a copy of the License at
11 * http://www.apache.org/licenses/LICENSE-2.0
13 * Unless required by applicable law or agreed to in writing, software
14 * distributed under the License is distributed on an "AS IS" BASIS,
15 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
16 * See the License for the specific language governing permissions and
17 * limitations under the License.
18 * ============LICENSE_END====================================================
21 package org.onap.aaf.cadi.shiro.test;
23 import java.util.ArrayList;
25 import org.apache.shiro.authc.AuthenticationInfo;
26 import org.apache.shiro.authc.UsernamePasswordToken;
27 import org.apache.shiro.authz.AuthorizationInfo;
28 import org.apache.shiro.authz.Permission;
29 import org.apache.shiro.subject.PrincipalCollection;
30 import org.junit.Test;
31 import org.onap.aaf.cadi.aaf.AAFPermission;
32 import org.onap.aaf.cadi.config.Config;
33 import org.onap.aaf.cadi.shiro.AAFRealm;
34 import org.onap.aaf.cadi.shiro.AAFShiroPermission;
36 import junit.framework.Assert;
38 public class JU_AAFRealm {
41 // NOTE This is a live test. This JUnit needs to be built with "Mock" before it can be
45 System.setProperty(Config.CADI_PROP_FILES, "/opt/app/osaaf/local/org.onap.aai.props");
46 TestAAFRealm ar = new TestAAFRealm();
48 //UsernamePasswordToken upt = new UsernamePasswordToken("demo@people.osaaf.org", "demo123456!");
49 /// UsernamePasswordToken upt = new UsernamePasswordToken("AAI", "AAI");
50 UsernamePasswordToken upt = new UsernamePasswordToken("admin","Kp8bJ4SXszM0WXlhak3eHlcse2gAw84vaoGGmJvUy2U");
52 AuthenticationInfo ani = ar.authn(upt);
54 AuthorizationInfo azi = ar.authz(ani.getPrincipals());
55 // Change this to something YOU have, Sai...
57 testAPerm(true,azi,"org.onap.aai","resources","something","get");
58 testAPerm(false,azi,"org.osaaf.nons","resources","something","get");
59 // testAPerm(true,azi,"name","org.access","something","*");
60 // testAPerm(false,azi,"org.accessX","something","*");
61 } catch (Throwable t) {
67 private void testAPerm(boolean expect, AuthorizationInfo azi, String ns, String type, String instance, String action) {
69 AAFShiroPermission testPerm = new AAFShiroPermission(new AAFPermission(ns,type,instance,action,new ArrayList<String>()));
72 for(Permission p : azi.getObjectPermissions()) {
73 if(p.implies(testPerm)) {
78 Assert.assertTrue(any);
80 Assert.assertFalse(any);
87 * Note, have to create a derived class, because "doGet"... are protected
89 private class TestAAFRealm extends AAFRealm {
90 public AuthenticationInfo authn(UsernamePasswordToken upt) {
91 return doGetAuthenticationInfo(upt);
93 public AuthorizationInfo authz(PrincipalCollection pc) {
94 return doGetAuthorizationInfo(pc);