2 * ============LICENSE_START====================================================
4 * ===========================================================================
5 * Copyright (c) 2018 AT&T Intellectual Property. All rights reserved.
6 * ===========================================================================
7 * Licensed under the Apache License, Version 2.0 (the "License");
8 * you may not use this file except in compliance with the License.
9 * You may obtain a copy of the License at
11 * http://www.apache.org/licenses/LICENSE-2.0
13 * Unless required by applicable law or agreed to in writing, software
14 * distributed under the License is distributed on an "AS IS" BASIS,
15 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
16 * See the License for the specific language governing permissions and
17 * limitations under the License.
18 * ============LICENSE_END====================================================
21 package org.onap.aaf.cadi.shiro.test;
23 import java.util.ArrayList;
25 import org.apache.shiro.authc.AuthenticationInfo;
26 import org.apache.shiro.authc.UsernamePasswordToken;
27 import org.apache.shiro.authz.AuthorizationInfo;
28 import org.apache.shiro.authz.Permission;
29 import org.apache.shiro.subject.PrincipalCollection;
30 import org.junit.Assert;
31 import org.junit.Test;
32 import org.onap.aaf.cadi.aaf.AAFPermission;
33 import org.onap.aaf.cadi.config.Config;
34 import org.onap.aaf.cadi.shiro.AAFRealm;
35 import org.onap.aaf.cadi.shiro.AAFShiroPermission;
39 public class JU_AAFRealm {
43 // NOTE This is a live test. This JUnit needs to be built with "Mock" before it can be
47 System.setProperty(Config.CADI_PROP_FILES, "/opt/app/osaaf/local/org.onap.aai.props");
48 TestAAFRealm ar = new TestAAFRealm();
50 //UsernamePasswordToken upt = new UsernamePasswordToken("demo@people.osaaf.org", "demo123456!");
51 /// UsernamePasswordToken upt = new UsernamePasswordToken("AAI", "AAI");
52 UsernamePasswordToken upt = new UsernamePasswordToken("admin","Kp8bJ4SXszM0WXlhak3eHlcse2gAw84vaoGGmJvUy2U");
54 AuthenticationInfo ani = ar.authn(upt);
56 AuthorizationInfo azi = ar.authz(ani.getPrincipals());
57 // Change this to something YOU have, Sai...
59 testAPerm(true,azi,"org.onap.aai","resources","something","get");
60 testAPerm(false,azi,"org.osaaf.nons","resources","something","get");
61 // testAPerm(true,azi,"name","org.access","something","*");
62 // testAPerm(false,azi,"org.accessX","something","*");
64 Assert.assertEquals(true,ar.supports(upt));
65 } catch (Throwable t) {
71 private void testAPerm(boolean expect, AuthorizationInfo azi, String ns, String type, String instance, String action) {
73 AAFShiroPermission testPerm = new AAFShiroPermission(new AAFPermission(ns,type,instance,action,new ArrayList<String>()));
76 for(Permission p : azi.getObjectPermissions()) {
77 if(p.implies(testPerm)) {
82 Assert.assertTrue(any);
84 Assert.assertFalse(any);
91 * Note, have to create a derived class, because "doGet"... are protected
93 private class TestAAFRealm extends AAFRealm {
94 public AuthenticationInfo authn(UsernamePasswordToken upt) {
95 return doGetAuthenticationInfo(upt);
97 public AuthorizationInfo authz(PrincipalCollection pc) {
98 return doGetAuthorizationInfo(pc);